Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zamrzání počítače

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
kukmil
Návštěvník
Návštěvník
Příspěvky: 87
Registrován: 27 pro 2005 16:04

Zamrzání počítače

#1 Příspěvek od kukmil »

Ahoj lidi, dlouho jsem tu zase nebyl. Můžete mi prosím zkontrolovat logy? Zamrzá mi ntb bez zjevné příčiny. Není starej a ani se to nestává při složitějších operacích. Jindy zase běží tři dny v kuse. Předem díky.
Myšák

FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-11-2019 01
Ran by Myšák (administrator) on LAPTOP-N9MT0SG4 (LENOVO 80T3) (29-11-2019 11:48:27)
Running from H:\
Loaded Profiles: Myšák (Available Profiles: Myšák)
Platform: Windows 10 Home Version 1809 17763.864 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(Dolby Laboratories, Inc. -> ) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dolby Laboratories, Inc. -> ) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\Myšák\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Online Connect -> Intel Corporation) C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe
(Intel(R) Online Connect Access -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe
(Intel(R) Online Connect Access -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\IntelCpHeciSvc.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO -> Lenovo(beijing) Limited) C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Myšák\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare) C:\Program Files (x86)\Wondershare\MobileGo for Android\MobileGoService.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
(Wondershare Software Co., Ltd. -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16696832 2016-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1467400 2016-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1467400 2016-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1467400 2016-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [829632 2016-06-24] (Dolby Laboratories, Inc. -> )
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [177928 2019-03-13] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [OneLinkManager] => C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe [1083904 2015-05-30] () [File not signed]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6260544 2019-11-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1985824 2013-07-25] (Wondershare Software Co., Ltd. -> Wondershare)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1985824 2013-07-25] (Wondershare Software Co., Ltd. -> Wondershare)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [588288 2016-01-08] (Nikon Corporation) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Run: [Wondershare Helper Compact] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1985824 2013-07-25] (Wondershare Software Co., Ltd. -> Wondershare)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Run: [Gaijin.Net Updater] => C:\Users\Myšák\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2361600 2019-11-28] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2408312 2019-11-14] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\MountPoints2: {3d020510-fd6b-11e7-83f2-a81e8470a3c2} - "E:\HPLauncher.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-11-21] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-10-03]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo for Android\MobileGoService.exe (Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {18632CF1-C842-4087-A50D-307C55E05FC3} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3cf25edf-9814-443d-b6ef-f899ee69acbf => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {1E41E89B-08A6-4108-B44E-39350DA8DD42} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {25C15B4D-7E1A-4F10-A1B6-F077CAB762B8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-10-30] (Google Inc -> Google Inc.)
Task: {2E26D5F1-2A60-4EA2-94FC-635D68201017} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {356E793D-7707-4F59-A888-DEC1F0435F1B} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [909112 2016-07-27] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {3FC596D2-5E63-4902-9BF6-1429ACFDA63A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => %windir%\system32\sc.exe START ImControllerService
Task: {413D82EF-297F-4AA6-A42D-1A99EC8B4251} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2d0744ce-9d67-48c4-9d18-fb8bf0491084 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {5156B6E5-F38F-4287-823B-CB05E4BC207B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-10-30] (Google Inc -> Google Inc.)
Task: {53F10526-CB81-4C50-BE3A-DB50C7C594EF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16494464 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {54BEC458-113A-4482-A71F-21291981A51A} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-26] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5569B0B4-3AC7-413A-B3ED-387F9DE7EEA0} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [88344 2016-07-14] (CyberLink Corp. -> CyberLink Corp.)
Task: {62D31857-7091-46C1-9638-1968A54C8A95} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [190744 2016-10-07] (CyberLink Corp. -> CyberLink)
Task: {66B08125-27A0-44BD-9069-C4AED0E2FB6D} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7 => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-09-29] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {66BA6F80-A32E-4933-BED5-B66BAD194877} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {70C4D3E5-2687-4D02-9A8D-F769FD79A28F} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\832a83ae-f2d8-4c2f-9e27-147223573741 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {73C4C5DE-EF21-411C-A3AF-F823FB3CBD50} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {77248CD6-B809-436F-9570-AE21750690A6} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-26] (Dropbox, Inc -> Dropbox, Inc.)
Task: {78036D81-D4F0-4157-826D-3075C01A0EEC} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {793336FE-85F0-40A6-9D4F-D3176795396F} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {7F9B0984-9DE5-4958-884E-126E6F953903} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {8B38594C-5D0D-43CB-AD6E-4FB42D92621C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c7e08ac5-10dd-42b6-917e-7e647cb502fc => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {92E64F41-B455-454E-B651-8D302AA104B5} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\Lenovo\Power2Go\CLVDLauncher.exe [347416 2016-09-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {AD7306CB-FC2D-43B0-8E6B-49225C41F83C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4dfa147a-9e93-4f8a-8c5d-bfdae1912785 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {AFA97222-16BB-4EFB-AE91-9EDDB58E655E} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [54144 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {B16DDC07-33BF-4FE3-8A37-5322EFC8C788} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {C9127D58-211F-48D6-9C8E-5DB4DE142B12} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7-Logon => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-09-29] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {D86D3415-8731-4CC1-9AA1-E838801301C1} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [96136 2010-02-04] (Ask.com -> ) <==== ATTENTION
Task: {EC7A9321-1D18-4EAF-A945-902394F3DB5A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f99b99ef-a20f-4a40-b630-b186642c94bd => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f3417d49-412c-4182-ad25-0cf5e2f3e9ad}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-2706086993-1054045265-167977901-1001 -> DefaultScope {C49EB2A6-E0AC-4761-9F29-6D63A30F38EB} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2019-08-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-03-07] (Oracle America, Inc. -> Oracle Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-03-07] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2019-09-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04] (Ask.com -> Ask.com)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04] (Ask.com -> Ask.com)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-03-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-03-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-06] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-06] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.seznam.cz/ ... 2013-02-04 14:34:32&v=14.0.0.14&pid=avg&sg=&sap=hp","hxxp://isearch.avg.com/?cid={1FD6FF67-1F48-4D9D-82E3-AF7824AA2A00}&mid=1aab88c94a2047d69acf59e75b4723f4-9491d5b969a0e4aa1c50e20ede6b1ffb9790a464&lang=cs&ds=AVG&pr=fr&d=2013-02-04 14:34:32&v=14.2.0.1&pid=avg&sg=&sap=hp"
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://webmail.blueboard.cz; hxxps://www.mall.tv; hxxps://www.topserialy.to
CHR Profile: C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default [2019-11-29]
CHR Extension: (Prezentace) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-25]
CHR Extension: (Dokumenty) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-01]
CHR Extension: (Disk Google) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-12]
CHR Extension: (YouTube) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-30]
CHR Extension: (Tanki Online) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnamgoimgnbgkabfjkikldbfdhhfhdo [2017-10-30]
CHR Extension: (WGT Golf Challenge) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcilimldmomiaihcfkmaldanopfejefg [2017-10-30]
CHR Extension: (Vysoký kontrast) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\djcfdncoelnlbldjfhinnjlhdjlikmph [2019-11-19]
CHR Extension: (Tabulky) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-01]
CHR Extension: (Full Screen Weather) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2017-10-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-21]
CHR Extension: (The West) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilkgeioneoemibpddeiamfgiofnpjifm [2017-10-30]
CHR Extension: (Free Porn Movies | PornTube.com) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\incbldhmcmpjmnanonopbbchdkfgiafp [2017-10-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-15]
CHR Extension: (Psykopaint) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2017-10-30]
CHR Extension: (Weather Underground) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjejbgheonogbpfkkjigbmahaljipoej [2017-10-30]
CHR Extension: (Gmail) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-07]
CHR Extension: (the weather wizard) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\plpmmafapkkkeihidjoljendopobodpi [2017-10-30]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [688992 2017-02-27] (LENOVO -> Lenovo)
R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [154816 2016-07-18] (Dolby Laboratories, Inc. -> )
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-26] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-26] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-11-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [383016 2018-03-06] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55416 2019-03-13] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2375432 2019-03-13] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2375432 2019-03-13] (ESET, spol. s r.o. -> ESET)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134872 2017-10-30] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
R2 ImControllerService; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-27] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
U3 Intel(R) Online Connect; C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe [25824 2016-10-04] (Intel(R) Online Connect -> Intel Corporation)
S2 Intel(R) Online Connect Helper; C:\Program Files\Intel\Intel(R) Online Connect\iocHelperService.exe [22752 2016-10-04] (Intel(R) Online Connect -> Intel Corporation)
S3 Intel(R) Online Connect Software Asset Manager; C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-09-29] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe [173288 2016-10-05] (Intel(R) Online Connect Access -> Intel(R) Corporation)
R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe [496872 2016-10-05] (Intel(R) Online Connect Access -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-10-20] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2016-06-15] (HP Inc.) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2016-06-15] (HP Inc.) [File not signed]
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77832 2016-08-03] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48136 2016-08-03] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [145600 2019-03-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-06-20] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188240 2019-03-26] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82232 2019-03-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [114456 2019-03-26] (ESET, spol. s r.o. -> ESET)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [32344 2016-09-21] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [59792 2016-09-13] (Intel(R) Technology Access -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-01] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [418784 2016-08-05] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3138056 2016-08-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31480 2016-08-03] (Synaptics Inc. -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [47496 2019-08-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [344288 2019-08-29] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-08-29] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-28 18:44 - 2019-11-28 21:10 - 1533542400 _____ C:\Users\Myšák\Downloads\Star Wars 6 - Návrat Jediho HD.mkv.crdownload
2019-11-26 18:35 - 2019-11-26 18:36 - 000270842 _____ C:\Users\Myšák\Downloads\SKMBT_C35319111409502.pdf
2019-11-26 18:35 - 2019-11-26 18:35 - 000361766 _____ C:\Users\Myšák\Downloads\SKMBT_C35319111409501.pdf
2019-11-26 14:33 - 2019-11-26 14:44 - 179414849 _____ C:\Users\Myšák\Downloads\devendra-banhart-2005-cripple-crow-320-igalerie.rar
2019-11-26 14:06 - 2019-11-26 14:06 - 000259113 _____ C:\Users\Myšák\Downloads\expres-mapa-vektorova-cz.pdf
2019-11-26 14:06 - 2019-11-26 14:06 - 000258016 _____ C:\Users\Myšák\Downloads\expres-navod-vektorovy-cz.pdf
2019-11-26 14:05 - 2019-11-26 14:05 - 001094793 _____ C:\Users\Myšák\Downloads\expres-mapa-sken-cz.pdf
2019-11-26 13:54 - 2019-11-26 13:59 - 000000000 ____D C:\Users\Myšák\Downloads\MP3 nové
2019-11-26 13:44 - 2019-11-26 13:50 - 106989813 _____ C:\Users\Myšák\Downloads\Devendra Banhart - Ma (2019) [320].rar
2019-11-23 14:30 - 2019-11-23 14:30 - 000000000 ___HD C:\OneDriveTemp
2019-11-20 22:30 - 2019-11-20 22:31 - 000037884 _____ C:\Users\Myšák\Documents\cc_20191120_223055.reg
2019-11-20 14:24 - 2019-11-20 17:30 - 2936885103 _____ C:\Users\Myšák\Downloads\Star Wars VII - Hviezdne vojny - Epizóda VII - Sila sa prebúdza (2015) CZ dab. sk dab. en dab..mkv
2019-11-18 17:46 - 2019-11-18 17:46 - 000002959 _____ C:\Users\Myšák\Documents\Intel(R) HD Graphics 620 pondělí 18. listopadu 2019 nastavení.txt
2019-11-18 17:46 - 2019-11-18 17:46 - 000002767 _____ C:\Users\Myšák\Documents\Intel(R) HD Graphics 620 pondělí 18. listopadu 2019 nastavení_English.txt
2019-11-15 22:25 - 2019-11-15 22:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-11-15 11:31 - 2019-11-15 11:32 - 000183179 _____ C:\Users\Myšák\Downloads\investicni 2019 (15).xlsx
2019-11-15 11:31 - 2019-11-15 11:32 - 000106543 _____ C:\Users\Myšák\Downloads\Domky 2019 (27).xlsx
2019-11-14 13:19 - 2019-11-14 13:19 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-11-14 13:19 - 2019-11-14 13:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-11-14 13:19 - 2019-11-14 13:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-11-14 13:19 - 2019-11-14 13:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-11-14 08:38 - 2019-11-14 08:38 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 001267240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-11-14 08:38 - 2019-11-14 08:38 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 023455232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 012258816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 006547896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 006318328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 005770240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 005608336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 004873216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 003872336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 003656792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 002348544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 001677808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000661264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000481280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000473832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-14 08:37 - 2019-11-14 08:37 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-14 08:37 - 2019-11-14 08:37 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 022137120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 006934016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 005575168 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 002918200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 002871824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 002699976 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 002628112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001702600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-14 08:36 - 2019-11-14 08:36 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001486472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001473296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 001346216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-14 08:36 - 2019-11-14 08:36 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001183504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000808272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000773208 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000747536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000588816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000542320 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000535080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-14 08:36 - 2019-11-14 08:36 - 000465416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000435512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000427832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000262152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000112168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000086744 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000023768 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 009667896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 007656072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 004413936 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 004049920 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001666440 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 001050112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000862008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 000834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000160272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 007700696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-14 08:34 - 2019-11-14 08:34 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 001933408 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 001668784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 001538560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 001294792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 001054224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-14 08:34 - 2019-11-14 08:34 - 001049608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000888560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000856424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000536320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000514600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000509968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000450632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000445752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000389408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000385848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000087080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-14 08:34 - 2019-11-14 08:34 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-14 08:34 - 2019-11-14 08:34 - 000061480 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-11-14 08:33 - 2019-11-14 08:33 - 000667664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-11-14 08:33 - 2019-11-14 08:33 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-14 08:33 - 2019-11-14 08:33 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2019-11-14 08:33 - 2019-11-14 08:33 - 000198968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-11-13 10:28 - 2019-11-13 10:28 - 000046312 _____ C:\Users\Myšák\Downloads\N_208_2017 tabulka nalezu.xlsx
2019-11-12 17:03 - 2019-11-12 17:03 - 004419784 _____ C:\Users\Myšák\Downloads\vvi-2001-04_s159.pdf
2019-11-07 12:14 - 2019-11-07 12:14 - 000616242 _____ C:\Users\Myšák\Downloads\Výkaz_práce_Kukla.pdf
2019-11-04 17:10 - 2019-11-05 16:10 - 000106948 _____ C:\Users\Myšák\Downloads\Domky 2019 (26).xlsx
2019-11-04 00:24 - 2019-09-23 22:54 - 000206208 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.Modern.CoreTypes.dll
2019-11-04 00:24 - 2019-09-23 22:54 - 000131448 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.Modern.Utilities.dll
2019-11-04 00:24 - 2019-09-23 22:54 - 000098176 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.Modern.ImController.ImClient.dll
2019-11-04 00:24 - 2019-09-23 22:54 - 000044440 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.ImController.EventLogging.dll
2019-10-31 16:47 - 2019-10-31 16:47 - 000071538 _____ C:\Users\Myšák\Downloads\Star-Wars-Episode-V-The-Empire-Strikes-Back(0000202352).srt
2019-10-31 16:46 - 2019-10-31 16:46 - 000071817 _____ C:\Users\Myšák\Downloads\Star-Wars-Episode-V-The-Empire-Strikes-Back(0000181294).srt
2019-10-31 12:41 - 2019-10-31 14:14 - 000183516 _____ C:\Users\Myšák\Downloads\investicni 2019 (14).xlsx
2019-10-31 12:41 - 2019-10-31 12:41 - 000106543 _____ C:\Users\Myšák\Downloads\Domky 2019 (25).xlsx

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-29 11:49 - 2017-10-30 19:48 - 000000000 ____D C:\FRST
2019-11-29 11:48 - 2019-01-04 11:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-29 11:42 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-11-29 11:37 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-29 11:19 - 2017-09-26 08:32 - 000000000 ___RD C:\Users\Myšák\OneDrive
2019-11-29 11:14 - 2017-09-26 08:27 - 000000000 __SHD C:\Users\Myšák\IntelGraphicsProfiles
2019-11-29 11:11 - 2019-01-04 12:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-29 11:11 - 2017-09-26 10:51 - 000000000 ____D C:\ProgramData\Synaptics
2019-11-29 10:18 - 2019-04-04 07:29 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-11-29 09:59 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-28 21:08 - 2017-09-26 12:59 - 000000000 ____D C:\Users\Myšák\AppData\Local\WarThunder
2019-11-28 20:52 - 2017-09-26 12:36 - 000000000 ____D C:\Users\Myšák\AppData\Roaming\vlc
2019-11-26 12:56 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-23 14:29 - 2019-01-04 12:00 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2706086993-1054045265-167977901-1001
2019-11-23 14:29 - 2019-01-04 11:31 - 000002368 _____ C:\Users\Myšák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-22 19:50 - 2018-01-29 08:45 - 000000000 ____D C:\Users\Myšák\AppData\Local\PlaceholderTileLogoFolder
2019-11-22 19:50 - 2018-01-03 22:52 - 000000000 ____D C:\Users\Myšák\AppData\Local\Packages
2019-11-22 12:20 - 2019-03-20 09:54 - 000071587 _____ C:\Users\Myšák\Downloads\Investiční 2019 aktuální.xlsx
2019-11-21 22:32 - 2017-10-30 18:41 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-21 22:32 - 2017-10-30 18:41 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-11-20 22:25 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-11-20 20:14 - 2019-01-04 11:31 - 000000000 ____D C:\Users\Myšák
2019-11-19 12:27 - 2019-01-17 19:02 - 000000000 ____D C:\Users\Myšák\Documents\Fotky 2019
2019-11-15 22:27 - 2017-09-26 11:45 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-11-15 11:49 - 2019-03-05 10:31 - 000031494 _____ C:\Users\Myšák\Downloads\Domky 2019 aktuální info.xlsx
2019-11-14 22:01 - 2018-01-04 14:12 - 000000000 ___RD C:\Users\Myšák\3D Objects
2019-11-14 22:01 - 2016-07-29 18:27 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-14 22:00 - 2019-01-04 11:46 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-14 22:00 - 2018-09-15 18:32 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2019-11-14 22:00 - 2018-09-15 18:32 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2019-11-14 21:55 - 2019-01-04 11:22 - 000504640 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-14 21:52 - 2018-09-15 07:09 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2019-11-14 21:51 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-14 21:50 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-14 10:25 - 2016-07-16 12:47 - 000000167 _____ C:\WINDOWS\win.ini
2019-11-14 08:59 - 2017-09-26 13:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-14 08:54 - 2017-09-26 13:41 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-14 08:49 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-07 14:22 - 2017-11-13 13:28 - 000000000 ____D C:\Users\Myšák\AppData\Local\ElevatedDiagnostics
2019-11-06 17:24 - 2019-01-04 12:00 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-06 17:24 - 2019-01-04 12:00 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-06 17:17 - 2017-09-26 12:04 - 000000000 ____D C:\Program Files (x86)\Google
2019-11-05 16:10 - 2019-01-31 13:45 - 000000000 ____D C:\Users\Myšák\Downloads\Akce od Johany 2018
2019-11-01 17:53 - 2019-04-04 07:28 - 000000000 ____D C:\Program Files\CCleaner
2019-10-31 19:47 - 2017-10-03 16:56 - 000000000 ___RD C:\Users\Myšák\Dropbox
2019-10-31 12:02 - 2018-07-19 07:20 - 000000000 ____D C:\ProgramData\Packages

==================== Files in the root of some directories ========

2004-08-04 03:07 - 2004-08-04 03:07 - 000001999 _____ () C:\Users\Myšák\AppData\Roaming\netcache32.sys
2017-11-01 14:57 - 2017-11-01 14:57 - 000000036 _____ () C:\Users\Myšák\AppData\Local\housecall.guid.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

_____________________
Adition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-11-2019 01
Ran by Myšák (29-11-2019 11:54:25)
Running from H:\
Windows 10 Home Version 1809 17763.864 (X64) (2019-01-04 11:01:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2706086993-1054045265-167977901-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2706086993-1054045265-167977901-503 - Limited - Disabled)
Guest (S-1-5-21-2706086993-1054045265-167977901-501 - Limited - Disabled)
Myšák (S-1-5-21-2706086993-1054045265-167977901-1001 - Administrator - Enabled) => C:\Users\Myšák
WDAGUtilityAccount (S-1-5-21-2706086993-1054045265-167977901-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{13DA9C7C-EBFB-40D0-94A1-55B42883DF21}) (Version: 21.2.1 - HP Inc.) Hidden
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Advertising Center (HKLM-x32\...\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}) (Version: 0.0.0.2 - Nero AG) Hidden
Agisoft PhotoScan Professional (HKLM\...\{7F58380F-4674-4A07-B73A-4F15160777D4}) (Version: 1.4.2 - Agisoft)
Ask Toolbar (HKLM-x32\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.6.6.0 - Ask.com) <==== ATTENTION
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.5.1 - Nikon Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.6714 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dolby Audio X2 Windows API SDK (HKLM\...\{2A027A37-B09B-44FB-B1C9-2DD6BA0014E8}) (Version: 0.7.2.61 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 85.4.155 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
ESET Endpoint Antivirus (HKLM\...\{082F6817-E4B9-406D-8E59-0551070D7B97}) (Version: 7.1.2045.5 - ESET, spol. s r.o.)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.108 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.26) (Version: 9.26 - Artifex Software Inc.)
Heroes Studio (HKLM-x32\...\Heroes Studio_is1) (Version: 1.13 - Jiří Havlíček)
Intel(R) Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1036 - Intel Corporation)
Intel(R) Online Connect Software Asset Manager (HKLM-x32\...\{AE956AB9-CD98-4F1E-8B9E-C3C66E290D64}) (Version: 3.4.2072 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation) Hidden
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Lenovo App Explorer (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Host App Service) (Version: 0.272.1.560 - SweetLabs for Lenovo)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.)
Microsoft Office Professional Plus 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM-x32\...\{90160000-001F-0405-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM-x32\...\{90160000-001F-041B-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nero 9 Lite (HKLM-x32\...\{ce8f3873-99ee-4e70-8e40-31ed7e54281b}) (Version: - Nero AG)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.3.0 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{4D5EE11A-0D0A-4214-ABAC-72419F7BE24D}) (Version: 2.13.1 - Nikon Corporation)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Optimik (HKLM-x32\...\Optimik_is1) (Version: - Rastislav Korytár - RK Software)
Picture Control Utility 2 (HKLM\...\{46BEAB85-B86A-4AAB-B085-136ECA032CF4}) (Version: 2.4.1 - Nikon Corporation)
QGIS 2.18.27 'Las Palmas' (HKLM\...\QGIS 2.18) (Version: 2.18.27 - QGIS Development Team)
QGIS 3.4.2 'Madeira' (HKLM\...\QGIS 3.4) (Version: 3.4.2 - QGIS Development Team)
Rajče průvodce verze 1.59.54.269 (HKLM-x32\...\rajce.net_is1) (Version: - rajce.net)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7930 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
SD Card Recovery (HKLM-x32\...\{09907A60-5843-4E83-A471-3102A42231B8}_is1) (Version: - LC Technology International, Inc.)
Star Conflict Launcher 1.0.1.79 (HKLM-x32\...\StarConflictLauncher_is1) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
ThinkPad OneLink Plus Dock (HKLM-x32\...\{8E1CACF5-2493-4950-9AD5-189903FE57E7}) (Version: 1.10.10 - Lenovo)
Time Adjuster STANDARD 3.1 (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\TimeAdjuster) (Version: - IrekSoftware.com)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
Total War Arena (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\TWA.EU.PRODUCTION) (Version: - Wargaming.net)
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-012B-0405-0000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
War Thunder Launcher 1.0.3.48 (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Wargaming.net Game Center (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Wargaming.net Game Center) (Version: 19.7.0.7412 - Wargaming.net)
WinAce Archiver (HKLM-x32\...\WinAce Archiver) (Version: 2.69 - e-merge GmbH)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Wondershare MobileGo for Android ( Version 4.3.0 ) (HKLM-x32\...\{1E04C795-7359-4E05-8A0E-5644F777AA08}_is1) (Version: 4.3.0 - Wondershare)
World of Tanks EU (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\WOWS.EU.PRODUCTION) (Version: - Wargaming.net)
Youtube-mp3 (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Youtube) (Version: 1.0.0 - Med Zed INC)
YTD (pepak) (HKLM-x32\...\YTD_Pepak) (Version: - )
Zoner Photo Studio 12 (HKLM-x32\...\ZonerPhotoStudio12_CZ_is1) (Version: 12.0.1.12 - ZONER software)
Zoner Photo Studio X (HKLM\...\{FCD8CE83-6D4B-41AC-8E16-4F416CD741F3}) (Version: 19.0.93.93 - ZONER software, a.s.)

Packages:
=========
7Z Opener -> C:\Program Files\WindowsApps\DeviceDoctor.7ZipOpener_1.3.20.0_x64__mkdtfchztkfbm [2019-08-29] (Tiny Opener)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Autumn Colors -> C:\Program Files\WindowsApps\Microsoft.AutumnColors_1.0.0.0_neutral__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.3.4.0_x86__kgqvnymyfvs32 [2019-11-18] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.151.300.0_x86__kgqvnymyfvs32 [2019-11-01] (king.com)
Canon Office Printer Utility -> C:\Program Files\WindowsApps\34791E63.CanonOfficePrinterUtility_12.7.0.0_x64__6e5tt8cgb93ep [2019-08-29] (Canon Inc.)
Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_4.18.0.0_x86__q7m17pa7q8kj0 [2019-11-26] (Deezer SA)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_4.5.1.2_x86__h6adky7gbf63m [2019-11-25] (Gameloft.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2019-11-15] (HP Inc.)
Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_18.4.500.0_x64__4n2hpmxwrvr6p [2019-10-11] (XBMC Foundation)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.1909.24.0_x64__k1h2ywk1493x8 [2019-10-31] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.33.13094.0_x64__8wekyb3d8bbwe [2019-11-14] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.11052.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.33.13253.0_x64__8wekyb3d8bbwe [2019-11-25] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-11-22] (Netflix, Inc.)
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe [2019-11-26] (Microsoft Corporation) [MS Ad]
Prince of Persia PC -> C:\Program Files\WindowsApps\4235VladimirKuznetsov.PrinceofPersiaPC_1.1.70.0_x64__dezqr7eax3k0g [2019-08-29] (Vlad K) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0 [2019-11-25] (Spotify AB) [Startup Task]
Uživatelský portál Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2019-08-29] (LENOVO INCORPORATED.)
ViaMichelin -> C:\Program Files\WindowsApps\MICHELIN.ViaMichelin_1.1.0.29_neutral__hm8jrmvzsgywe [2019-08-29] (Michelin Travel Partner) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2706086993-1054045265-167977901-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Myšák\Dropbox [2017-10-03 16:56]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1-x32: [ZFAdd] -> {8FF88D27-7BD0-11D1-BFB7-00AA00262A11} => C:\Program Files (x86)\WinAce\arcext.dll [2007-11-08] (e-merge GmbH) [File not signed]
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4-x32: [ZFAdd] -> {8FF88D27-7BD0-11D1-BFB7-00AA00262A11} => C:\Program Files (x86)\WinAce\arcext.dll [2007-11-08] (e-merge GmbH) [File not signed]
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igfxDTCM.dll [2016-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Myšák\Desktop\IS AMČR.lnk -> C:\ProgramData\Oracle\Java\javapath\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://stahnout.archeologickamapa.cz/launch.jnlp "C:\Users\Myšák\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\9c22370-7d9ff41e"
ShortcutWithArgument: C:\Users\Myšák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IS AMČR\IS AMČR.lnk -> C:\ProgramData\Oracle\Java\javapath\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://stahnout.archeologickamapa.cz/launch.jnlp "C:\Users\Myšák\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\9c22370-7d9ff41e"
ShortcutWithArgument: C:\Users\Myšák\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2017-10-03 16:32 - 2013-07-24 08:24 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2016-06-15 03:36 - 2016-06-15 03:36 - 000050688 _____ (HP Inc.) [File not signed] c:\windows\system32\hpzinw12.dll
2016-06-15 03:36 - 2016-06-15 03:36 - 000066048 _____ (HP Inc.) [File not signed] c:\windows\system32\hpzipm12.dll
2017-10-03 16:32 - 2013-07-25 16:46 - 000708096 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:87C79266 [134]
AlternateDataStreams: C:\Users\Myšák\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Myšák\appdata\local\microsoft\windows\themes\transcodedwallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{5C6785E3-0C4E-47AC-8A54-CE54D8E77DED}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{4BC3DD88-B7DF-4060-BD1A-D4A31E0C4453}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{FE817A01-3DB6-4B29-BF53-9176953892F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HITMAN2\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{D6894697-3EB0-4628-8F0E-65A37DC607D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HITMAN2\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{F32FA6D0-E23D-492B-840E-157BE8A46A52}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{68B8B406-55CF-47C3-ABE8-7209035EA613}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1E1F36F6-5190-41FD-9A8F-28B1D7F37A73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\We Are The Dwarves\watd.exe () [File not signed]
FirewallRules: [{8F9D02ED-B824-44D9-9BD9-DE8DEFFC5067}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\We Are The Dwarves\watd.exe () [File not signed]
FirewallRules: [{A21DDC1C-B0DD-48B0-954D-531C6DED9971}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Railroads\RailRoads.exe (Take-Two Interactive Software, Inc. -> Firaxis Games, Inc)
FirewallRules: [{4C2948F1-70CC-44BA-8A34-C69E6BE80C92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Railroads\RailRoads.exe (Take-Two Interactive Software, Inc. -> Firaxis Games, Inc)
FirewallRules: [{EA81B321-1250-4C4F-B4BF-D78424D4439E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Argonauts\Binaries\RiseOfTheArgonauts.exe () [File not signed]
FirewallRules: [{39F9E910-0D94-4612-A875-CD749B150499}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Argonauts\Binaries\RiseOfTheArgonauts.exe () [File not signed]
FirewallRules: [{11AF27E0-29DC-43A7-AF3B-7ADD393E4D96}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spintires\SpinTires.exe (Oovee Ltd.) [File not signed]
FirewallRules: [{3F7C94FD-2EEE-424F-8DDC-7D81B201E685}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spintires\SpinTires.exe (Oovee Ltd.) [File not signed]
FirewallRules: [UDP Query User{BDC2B83E-28B6-4B97-B30D-8180E0799AEA}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{277E1E11-AE2E-4F46-9308-538DEE50666F}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{A2317759-3CD3-4CA7-9591-A41920DFA3EA}C:\users\myšák\downloads\agisoft_photoscan_professional_1.4.2_build_6185_x64_downloadly.ir\agisoft photoscan professional 1.4.2 build 6185 x64\crack\agisoft_rlm_win_x64\rlm.exe] => (Allow) C:\users\myšák\downloads\agisoft_photoscan_professional_1.4.2_build_6185_x64_downloadly.ir\agisoft photoscan professional 1.4.2 build 6185 x64\crack\agisoft_rlm_win_x64\rlm.exe (Reprise Software Inc.) [File not signed]
FirewallRules: [TCP Query User{AAE55E92-CC34-43BF-8DE1-FD9320F22F63}C:\users\myšák\downloads\agisoft_photoscan_professional_1.4.2_build_6185_x64_downloadly.ir\agisoft photoscan professional 1.4.2 build 6185 x64\crack\agisoft_rlm_win_x64\rlm.exe] => (Allow) C:\users\myšák\downloads\agisoft_photoscan_professional_1.4.2_build_6185_x64_downloadly.ir\agisoft photoscan professional 1.4.2 build 6185 x64\crack\agisoft_rlm_win_x64\rlm.exe (Reprise Software Inc.) [File not signed]
FirewallRules: [UDP Query User{B4D0913C-3BD0-411E-9070-5098289A42BE}C:\users\myšák\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\myšák\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{903BB853-601D-4971-A73B-51C063A5CEC5}C:\users\myšák\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\myšák\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{E0D9D1DE-8D0B-48E9-AAF0-C971D25E5366}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheRoomTwo\TheRoomTwo.exe () [File not signed]
FirewallRules: [{4B82155B-E563-446A-8DA9-B76DFE70AF1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheRoomTwo\TheRoomTwo.exe () [File not signed]
FirewallRules: [{D3B6E498-AACE-4D7C-9E2B-C8515103D531}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheRoom\TheRoom.exe () [File not signed]
FirewallRules: [{2AEBDF11-4A42-4466-8683-C307885922D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheRoom\TheRoom.exe () [File not signed]
FirewallRules: [{64611D86-9F68-46DE-98BE-AE3C2D9E5B78}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{2C1AF3C3-8287-4575-AE4E-284A99832BDA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{82568460-47B2-42E4-A27D-754BFF5112DA}C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe (Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare)
FirewallRules: [TCP Query User{7C1B512F-E0D5-48B2-B45E-BF00D51BDF0D}C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe (Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare)
FirewallRules: [UDP Query User{04BC9356-5183-4883-B6DF-F9E19B60CB30}C:\users\myšák\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\myšák\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{38E2D121-1647-4042-AEBF-A91520432051}C:\users\myšák\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\myšák\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{ABDC9618-1B67-4A91-B61E-5F875FACDC70}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{71A588EE-18D5-4B06-8939-B6ECF94E2CCF}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{E227EB60-5D53-40CC-A065-58233C37D6E6}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{F33D5A71-15A2-47EC-98B0-51569802A3D5}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{0B85E1AF-0E5F-4743-B169-5B609FE8DB2C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7D3E87BA-1F87-4E88-829F-CA97E76CB4EA}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E1CC8D1F-8F03-4495-BEA9-89DBCE9337FA}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{36CECAB3-9886-4813-B015-37F51C1970F0}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{85507AFE-A4A7-40E7-A68E-4280A18037C9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{55C6B9D9-0004-439F-8517-C674AFE03798}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{61298D27-5545-493E-A1D9-945A31D03259}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{A53711B9-1C26-48B0-8BEA-AFB5980CEFED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Oracle\Oracle.exe () [File not signed]
FirewallRules: [{611B264F-68D6-4C61-A370-5C92F5451A9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Oracle\Oracle.exe () [File not signed]
FirewallRules: [{9350BB51-5FA5-4AFF-A758-449449791F8F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe (Valve Corp. -> Firaxis Games) [File not signed]
FirewallRules: [{42D28C14-6405-47A2-84E2-16E1C93E26C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe (Valve Corp. -> Firaxis Games) [File not signed]
FirewallRules: [{84C2E31F-8EE4-41AC-8F60-3E8B315F3624}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 4\Tropico4.exe (Haemimont Games) [File not signed]
FirewallRules: [{B0A6E641-6D4F-4321-903E-DC2240194C1E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 4\Tropico4.exe (Haemimont Games) [File not signed]
FirewallRules: [{7C1604BC-7766-4854-AC63-A62E98FD41F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks Art of War\dmcr.exe (GSC Game World -> -GSC-)
FirewallRules: [{B53F9821-2AC4-49E8-BB14-CC339E82D4E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks Art of War\dmcr.exe (GSC Game World -> -GSC-)
FirewallRules: [TCP Query User{EE71326C-C232-4FA6-8DB7-943A0EC93CBF}C:\program files (x86)\star conflict\launcher.exe] => (Allow) C:\program files (x86)\star conflict\launcher.exe (Gaijin Entertainment LLP -> Gaijin Entertainment Corp.)
FirewallRules: [UDP Query User{E521167D-9699-4DB5-800A-5D9A0F534BDB}C:\program files (x86)\star conflict\launcher.exe] => (Allow) C:\program files (x86)\star conflict\launcher.exe (Gaijin Entertainment LLP -> Gaijin Entertainment Corp.)
FirewallRules: [TCP Query User{1DE0DF41-8345-422B-91B8-0CA0EE98C2B3}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{49D36792-A852-4D12-8091-B128A531F47D}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{7E7C930E-714F-4A11-BB4D-AD39D96CCDD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{5D23476E-B4A1-4E33-B6E3-613829B8307F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{1F64CD41-BCF4-4D8B-BD8C-2681C3A510D2}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BB49FBCE-FC5A-4114-8119-93B4C149885B}] => (Allow) LPort=2869
FirewallRules: [{75CC9B18-FD38-4501-8947-F8FB1992BE1C}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{1DA5381D-AC13-4C65-B892-F2A13A7C1418}C:\users\myšák\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\myšák\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{241ECCD6-6B79-4979-8718-CDEEA75C6E84}C:\users\myšák\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\myšák\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{1560C520-B044-4538-A2B6-202EC8376D95}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F90B8806-FFF5-4577-8F45-0224B5CCB4EB}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AF004188-60CC-4B52-A096-989DFF0BF0F4}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4E44448E-2727-4AE0-ACDD-0E9A87F803B0}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{58305AC8-6360-4D3B-91AB-31F9E8B0A49B}C:\windows\splwow64.exe] => (Allow) C:\windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{5294722B-E66D-4312-A5E6-7987F615377F}C:\windows\splwow64.exe] => (Allow) C:\windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{89B9A2DF-AC28-4F25-BF11-0C6859943271}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Journeys in Middle-earth\JiME.exe () [File not signed]
FirewallRules: [{95EC0C02-8E3C-4391-BADB-45449FBE54AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Journeys in Middle-earth\JiME.exe () [File not signed]
FirewallRules: [TCP Query User{90783E77-9B77-4A3A-BBDC-DB95AC3E15A1}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{F7B1587E-30CF-4685-ACEB-6C41A7180AE3}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{419572C4-A9F8-4288-88D3-4F073D471598}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{574BC625-DF9D-4D96-B38C-1861EEFB62B2}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{62F4BA7D-91FC-4B73-9CA8-C0EFB61C3B08}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{849913D7-035E-43E0-83CC-ABE58843DAA3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5D845EA0-3D24-4FD9-8714-5524A2FF2AC3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DEC216C1-560D-44A6-9646-B9AB74EA73B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F29E5306-8B37-419F-971F-838437AA878D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6A2B8F23-881F-4929-96B2-48A8A3479025}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CB89812E-2872-44A5-9B3B-81B55B5B16E0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{14BC97EC-BA14-49A4-8382-40AE3BF369C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A005A5BA-C6D0-4975-BA9F-2EFFA92FA67B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9F92EC2B-34A3-4561-884B-5CE78599F156}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

20-11-2019 18:18:46 Naplánovaný kontrolní bod
29-11-2019 07:51:52 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (11/29/2019 11:28:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Lenovo.Modern.ImController.PluginHost.CompanionApp.exe, verze: 1.1.18.3, časové razítko: 0x5d852bfe
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.17763.864, časové razítko: 0xf9f56179
Kód výjimky: 0xe0434352
Posun chyby: 0x001219b2
ID chybujícího procesu: 0x25b8
Čas spuštění chybující aplikace: 0x01d5a69ee4197ebc
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 52452c4c-1824-46e9-b4e2-e043ce3d9cbf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/29/2019 11:28:24 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: Lenovo.Modern.ImController.ImClient.Services.BrokerRequestAgentException
na Lenovo.Modern.ImController.ImClient.Services.BrokerRequestAgent+<GetResponseAsync>d__5.MoveNext()
na System.Runtime.CompilerServices.TaskAwaiter.ThrowForNonSuccess(System.Threading.Tasks.Task)
na System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(System.Threading.Tasks.Task)
na Lenovo.Modern.ImController.ImClient.Services.BrokerRequestAgent+<GetFinalContractResponseAsync>d__6.MoveNext()

Informace o výjimce: System.AggregateException
na System.Threading.Tasks.Task.ThrowIfExceptional(Boolean)
na System.Threading.Tasks.Task`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].GetResultCore(Boolean)
na System.Threading.Tasks.Task`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].get_Result()
na Lenovo.Modern.Plugins.LenovoWiFiSecurityPlugin.Services.NotificationAgent+<>c__DisplayClass6_0+<<SendToastPopupContractRequest>b__0>d.MoveNext()
na System.Runtime.CompilerServices.AsyncMethodBuilderCore+<>c.<ThrowAsync>b__6_1(System.Object)
na System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
na System.Threading.ThreadPoolWorkQueue.Dispatch()
na System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (11/28/2019 06:28:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchUI.exe verze 10.0.17763.719 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1028

Čas spuštění: 01d5a610b8018154

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

ID hlášení: 10d4a698-e8ec-4f90-a84e-1cc5a828e74b

Úplný název balíčku s chybou: Microsoft.Windows.Cortana_1.11.6.17763_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: CortanaUI

Typ zablokování: Activation

Error: (11/28/2019 06:26:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchUI.exe verze 10.0.17763.719 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 4534

Čas spuštění: 01d5a610ebdd3025

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

ID hlášení:

Úplný název balíčku s chybou: Microsoft.Windows.Cortana_1.11.6.17763_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: CortanaUI

Typ zablokování: Quiesce

Error: (11/28/2019 06:22:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: dwm.exe, verze: 10.0.17763.831, časové razítko: 0xd5c9fdea
Název chybujícího modulu: KERNEL32.DLL, verze: 10.0.17763.475, časové razítko: 0x250a0626
Kód výjimky: 0xe0464645
Posun chyby: 0x0000000000017974
ID chybujícího procesu: 0x504
Čas spuštění chybující aplikace: 0x01d5a44c5567062d
Cesta k chybující aplikaci: C:\WINDOWS\system32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNEL32.DLL
ID zprávy: 162f66e0-489c-470c-b167-b639581737d8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/28/2019 09:24:00 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program svchost.exe verze 10.0.17763.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 89c

Čas spuštění: 01d5a44c59811764

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\System32\svchost.exe

ID hlášení: d9ce73c3-24a7-4a40-bac5-033831933c2f

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (11/25/2019 03:39:24 PM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (17028,R,98) WebCacheLocal: Při otevírání souboru protokolu C:\Users\Myšák\AppData\Local\Microsoft\Windows\WebCache\V01.log došlo k chybě -1032 (0xfffffbf8).

Error: (11/25/2019 03:39:24 PM) (Source: ESENT) (EventID: 490) (User: )
Description: DllHost (17028,R,98) WebCacheLocal: Pokus o otevření souboru C:\Users\Myšák\AppData\Local\Microsoft\Windows\WebCache\V01.log pro čtení nebo zápis selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).


System errors:
=============
Error: (11/29/2019 11:31:29 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {B91D5831-B1BD-4608-8198-D72E155020F7} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/29/2019 11:26:05 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Update Orchestrator Service přestala během spouštění reagovat.

Error: (11/29/2019 11:23:59 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Zprostředkovatel monitorování Ochrany System Guard v režimu runtime přestala během spouštění reagovat.

Error: (11/29/2019 11:21:50 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Správce stažených map přestala během spouštění reagovat.

Error: (11/29/2019 11:19:43 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service přestala během spouštění reagovat.

Error: (11/29/2019 11:18:11 AM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-N9MT0SG4)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-N9MT0SG4\Myšák (SID: S-1-5-21-2706086993-1054045265-167977901-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0 – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/29/2019 11:17:06 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.

Error: (11/29/2019 11:17:06 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2019-08-29 16:22:23.398
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze podpisu: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

CodeIntegrity:
===================================

Date: 2019-11-29 10:11:46.133
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:46.126
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:46.112
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:46.106
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:36.858
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:36.851
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:36.834
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:36.820
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: LENOVO 2WCN29WW 07/12/2017
Motherboard: LENOVO
Processor: Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Percentage of memory in use: 80%
Total physical RAM: 3988.58 MB
Available physical RAM: 758.02 MB
Total Virtual: 10132.58 MB
Available Virtual: 5962.71 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:891.5 GB) (Free:89.92 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.17 GB) NTFS
Drive f: (Civilization V) (CDROM) (Total:6.41 GB) (Free:0 GB) CDFS
Drive h: () (Removable) (Total:7.45 GB) (Free:6.05 GB) FAT32

\\?\Volume{7e6da18f-fb31-42f3-8f9f-f6cd0e45ea21}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.52 GB) NTFS
\\?\Volume{0616cddf-09d7-4405-95cb-91b3e92fe0d7}\ (LENOVO_PART) (Fixed) (Total:12.78 GB) (Free:1.75 GB) NTFS
\\?\Volume{95dcfbf0-3b5b-4598-9117-c687710b346f}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 6A360EC5)

Partition: GPT.

==========================================================
Disk: 1 (Size: 7.5 GB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.

==================== End of Addition.txt =======================

___________
RSIT:
přiložen v souboru
Přílohy
log.rar
(19.04 KiB) Staženo 59 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zamrzání počítače

#2 Příspěvek od Rudy »

Zdravím! Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kukmil
Návštěvník
Návštěvník
Příspěvky: 87
Registrován: 27 pro 2005 16:04

Re: Zamrzání počítače

#3 Příspěvek od kukmil »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.0.0
# -------------------------------
# Build: 11-21-2019
# Database: 2019-11-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 11-29-2019
# Duration: 00:02:10
# OS: Windows 10 Home
# Scanned: 35225
# Detected: 75


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Legacy C:\ProgramData\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583
PUP.Optional.Legacy C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
PUP.Optional.Seznam.cz C:\Program Files (x86)\Seznam.cz
PUP.Optional.Seznam.cz C:\Users\Myšák\AppData\Roaming\Seznam.cz

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Ask C:\Windows\System32\Tasks\SCHEDULED UPDATE FOR ASK TOOLBAR

***** [ Registry ] *****

Adware.pokki HKCU\Software\Host App Service
Adware.pokki HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
PUP.Optional.Ask HKCU\Software\AppDataLow\Software\AskToolbar
PUP.Optional.Ask HKCU\Software\Ask.com
PUP.Optional.Ask HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D86D3415-8731-4CC1-9AA1-E838801301C1}
PUP.Optional.Ask HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D86D3415-8731-4CC1-9AA1-E838801301C1}
PUP.Optional.Ask HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar
PUP.Optional.Ask HKU\.DEFAULT\Software\AskToolbar
PUP.Optional.Ask HKU\S-1-5-18\Software\AskToolbar
PUP.Optional.FrostwireTB.A HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
PUP.Optional.FrostwireTB.A HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
PUP.Optional.FrostwireTB.A HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
PUP.Optional.FrostwireTB.A HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
PUP.Optional.FrostwireTB.A HKLM\Software\Wow6432Node\\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
PUP.Optional.FrostwireTB.A HKLM\Software\Wow6432Node\\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
PUP.Optional.FrostwireTB.A HKLM\Software\Wow6432Node\\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
PUP.Optional.FrostwireTB.A HKLM\Software\Wow6432Node\\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
PUP.Optional.Legacy HKCU\Software\AppDataLow\AskToolbarInfo
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
PUP.Optional.Legacy HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
PUP.Optional.Legacy HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
PUP.Optional.Legacy HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
PUP.Optional.Legacy HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
PUP.Optional.Legacy HKLM\Software\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\AppID\GenericAskToolbar.DLL
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
PUP.Optional.Seznam.cz HKCU\Software\Seznam.cz
PUP.Optional.Seznam.cz HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce
PUP.Optional.Seznam.cz HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce

***** [ Chromium (and derivatives) ] *****

PUP.Optional.Seznam.cz Seznam pro Chrome - Email
PUP.Optional.Seznam.cz Seznam pro Chrome - Esko

***** [ Chromium URLs ] *****

PUP.Optional.Legacy AVG Secure Search
PUP.Optional.Legacy http://isearch.avg.com/?cid={1FD6FF67-1 ... 2013-02-04 14:34:32&v=14.0.0.14&pid=avg&sg=&sap=hp
PUP.Optional.Legacy http://isearch.avg.com/?cid={1FD6FF67-1 ... 2013-02-04 14:34:32&v=14.2.0.1&pid=avg&sg=&sap=hp
PUP.Optional.SofTonicAssistant Softonic EN

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Preinstalled Software ] *****

Preinstalled.CyberLinkShellExtension Registry HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2}
Preinstalled.LenovoCCSDK Folder C:\Program Files (x86)\LENOVO\CCSDK
Preinstalled.LenovoCCSDK Folder C:\ProgramData\LENOVO\CCSDK
Preinstalled.LenovoCCSDK Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{67827BB6-4B05-6181-921A-E49FC484E859}
Preinstalled.LenovoIMController Folder C:\Program Files (x86)\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Program Files\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Users\Myšák\AppData\Local\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Windows\System32\drivers\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1
Preinstalled.LenovoPower2Go Folder C:\Program Files (x86)\LENOVO\POWER2GO
Preinstalled.LenovoPower2Go Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{92E64F41-B455-454E-B651-8D302AA104B5}
Preinstalled.LenovoPower2Go Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CLVDLauncher
Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Preinstalled.LenovoPower2Go Task C:\Windows\System32\Tasks\CLVDLAUNCHER
Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LenovoUtility
Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|LenovoUtility



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zamrzání počítače

#4 Příspěvek od Rudy »

Nálezy smažte a dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kukmil
Návštěvník
Návštěvník
Příspěvky: 87
Registrován: 27 pro 2005 16:04

Re: Zamrzání počítače

#5 Příspěvek od kukmil »

FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-11-2019 01
Ran by Myšák (administrator) on LAPTOP-N9MT0SG4 (LENOVO 80T3) (30-11-2019 19:03:16)
Running from H:\
Loaded Profiles: Myšák (Available Profiles: Myšák)
Platform: Windows 10 Home Version 1809 17763.864 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe
(Dolby Laboratories, Inc. -> ) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dolby Laboratories, Inc. -> ) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\Myšák\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Online Connect -> Intel Corporation) C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe
(Intel(R) Online Connect Access -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe
(Intel(R) Online Connect Access -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\IntelCpHeciSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Myšák\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare) C:\Program Files (x86)\Wondershare\MobileGo for Android\MobileGoService.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
(Wondershare Software Co., Ltd. -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16696832 2016-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1467400 2016-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1467400 2016-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1467400 2016-09-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [829632 2016-06-24] (Dolby Laboratories, Inc. -> )
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [177928 2019-03-13] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [OneLinkManager] => C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe [1083904 2015-05-30] () [File not signed]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6260544 2019-11-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1985824 2013-07-25] (Wondershare Software Co., Ltd. -> Wondershare)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1985824 2013-07-25] (Wondershare Software Co., Ltd. -> Wondershare)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [588288 2016-01-08] (Nikon Corporation) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Run: [Wondershare Helper Compact] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1985824 2013-07-25] (Wondershare Software Co., Ltd. -> Wondershare)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Run: [Gaijin.Net Updater] => C:\Users\Myšák\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2361600 2019-11-28] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2408312 2019-11-14] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\MountPoints2: {3d020510-fd6b-11e7-83f2-a81e8470a3c2} - "E:\HPLauncher.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-11-21] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-10-03]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo for Android\MobileGoService.exe (Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {18632CF1-C842-4087-A50D-307C55E05FC3} - \Lenovo\ImController\TimeBasedEvents\3cf25edf-9814-443d-b6ef-f899ee69acbf -> No File <==== ATTENTION
Task: {1E41E89B-08A6-4108-B44E-39350DA8DD42} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {25C15B4D-7E1A-4F10-A1B6-F077CAB762B8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-10-30] (Google Inc -> Google Inc.)
Task: {2E26D5F1-2A60-4EA2-94FC-635D68201017} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {356E793D-7707-4F59-A888-DEC1F0435F1B} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [909112 2016-07-27] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {3FC596D2-5E63-4902-9BF6-1429ACFDA63A} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {413D82EF-297F-4AA6-A42D-1A99EC8B4251} - \Lenovo\ImController\TimeBasedEvents\2d0744ce-9d67-48c4-9d18-fb8bf0491084 -> No File <==== ATTENTION
Task: {5156B6E5-F38F-4287-823B-CB05E4BC207B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-10-30] (Google Inc -> Google Inc.)
Task: {53F10526-CB81-4C50-BE3A-DB50C7C594EF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16494464 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {54BEC458-113A-4482-A71F-21291981A51A} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-26] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5569B0B4-3AC7-413A-B3ED-387F9DE7EEA0} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [88344 2016-07-14] (CyberLink Corp. -> CyberLink Corp.)
Task: {62D31857-7091-46C1-9638-1968A54C8A95} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
Task: {66B08125-27A0-44BD-9069-C4AED0E2FB6D} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7 => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-09-29] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {66BA6F80-A32E-4933-BED5-B66BAD194877} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {70C4D3E5-2687-4D02-9A8D-F769FD79A28F} - \Lenovo\ImController\TimeBasedEvents\832a83ae-f2d8-4c2f-9e27-147223573741 -> No File <==== ATTENTION
Task: {73C4C5DE-EF21-411C-A3AF-F823FB3CBD50} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {77248CD6-B809-436F-9570-AE21750690A6} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-26] (Dropbox, Inc -> Dropbox, Inc.)
Task: {78036D81-D4F0-4157-826D-3075C01A0EEC} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {793336FE-85F0-40A6-9D4F-D3176795396F} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {7F9B0984-9DE5-4958-884E-126E6F953903} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {8B38594C-5D0D-43CB-AD6E-4FB42D92621C} - \Lenovo\ImController\TimeBasedEvents\c7e08ac5-10dd-42b6-917e-7e647cb502fc -> No File <==== ATTENTION
Task: {AD7306CB-FC2D-43B0-8E6B-49225C41F83C} - \Lenovo\ImController\TimeBasedEvents\4dfa147a-9e93-4f8a-8c5d-bfdae1912785 -> No File <==== ATTENTION
Task: {AFA97222-16BB-4EFB-AE91-9EDDB58E655E} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {B16DDC07-33BF-4FE3-8A37-5322EFC8C788} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {C9127D58-211F-48D6-9C8E-5DB4DE142B12} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7-Logon => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-09-29] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {EC7A9321-1D18-4EAF-A945-902394F3DB5A} - \Lenovo\ImController\TimeBasedEvents\f99b99ef-a20f-4a40-b630-b186642c94bd -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f3417d49-412c-4182-ad25-0cf5e2f3e9ad}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-2706086993-1054045265-167977901-1001 -> DefaultScope {C49EB2A6-E0AC-4761-9F29-6D63A30F38EB} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2019-08-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-03-07] (Oracle America, Inc. -> Oracle Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-03-07] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2019-09-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-03-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-03-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-06] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-06] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.seznam.cz/ ... 2013-02-04 14:34:32&v=14.0.0.14&pid=avg&sg=&sap=hp","hxxp://isearch.avg.com/?cid={1FD6FF67-1F48-4D9D-82E3-AF7824AA2A00}&mid=1aab88c94a2047d69acf59e75b4723f4-9491d5b969a0e4aa1c50e20ede6b1ffb9790a464&lang=cs&ds=AVG&pr=fr&d=2013-02-04 14:34:32&v=14.2.0.1&pid=avg&sg=&sap=hp","hxxps://www.google.com/"
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://webmail.blueboard.cz; hxxps://www.mall.tv; hxxps://www.topserialy.to
CHR Profile: C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default [2019-11-30]
CHR Extension: (Prezentace) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-25]
CHR Extension: (Dokumenty) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-01]
CHR Extension: (Disk Google) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-12]
CHR Extension: (YouTube) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-30]
CHR Extension: (Tanki Online) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnamgoimgnbgkabfjkikldbfdhhfhdo [2017-10-30]
CHR Extension: (WGT Golf Challenge) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcilimldmomiaihcfkmaldanopfejefg [2017-10-30]
CHR Extension: (Vysoký kontrast) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\djcfdncoelnlbldjfhinnjlhdjlikmph [2019-11-19]
CHR Extension: (Tabulky) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-01]
CHR Extension: (Full Screen Weather) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2017-10-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-21]
CHR Extension: (The West) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilkgeioneoemibpddeiamfgiofnpjifm [2017-10-30]
CHR Extension: (Free Porn Movies | PornTube.com) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\incbldhmcmpjmnanonopbbchdkfgiafp [2017-10-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-15]
CHR Extension: (Psykopaint) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2017-10-30]
CHR Extension: (Weather Underground) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjejbgheonogbpfkkjigbmahaljipoej [2017-10-30]
CHR Extension: (Gmail) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-07]
CHR Extension: (the weather wizard) - C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Default\Extensions\plpmmafapkkkeihidjoljendopobodpi [2017-10-30]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [154816 2016-07-18] (Dolby Laboratories, Inc. -> )
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-26] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-26] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-11-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [383016 2018-03-06] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55416 2019-03-13] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2375432 2019-03-13] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2375432 2019-03-13] (ESET, spol. s r.o. -> ESET)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134872 2017-10-30] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-27] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
U3 Intel(R) Online Connect; C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe [25824 2016-10-04] (Intel(R) Online Connect -> Intel Corporation)
S2 Intel(R) Online Connect Helper; C:\Program Files\Intel\Intel(R) Online Connect\iocHelperService.exe [22752 2016-10-04] (Intel(R) Online Connect -> Intel Corporation)
S3 Intel(R) Online Connect Software Asset Manager; C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-09-29] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe [173288 2016-10-05] (Intel(R) Online Connect Access -> Intel(R) Corporation)
R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe [496872 2016-10-05] (Intel(R) Online Connect Access -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-10-20] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2016-06-15] (HP Inc.) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2016-06-15] (HP Inc.) [File not signed]
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77832 2016-08-03] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48136 2016-08-03] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 CCSDK; "C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe" [X]
S2 ImControllerService; "%SystemDrive%\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [145600 2019-03-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-06-20] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188240 2019-03-26] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82232 2019-03-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [114456 2019-03-26] (ESET, spol. s r.o. -> ESET)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [32344 2016-09-21] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [59792 2016-09-13] (Intel(R) Technology Access -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-01] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [418784 2016-08-05] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3138056 2016-08-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31480 2016-08-03] (Synaptics Inc. -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [47496 2019-08-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [344288 2019-08-29] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-08-29] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-29 13:54 - 2019-11-29 13:26 - 008218800 _____ (Malwarebytes) C:\Users\Myšák\Desktop\adwcleaner_8.0.0.exe
2019-11-29 12:01 - 2019-11-29 12:02 - 000000000 ____D C:\rsit
2019-11-29 12:01 - 2019-11-29 12:02 - 000000000 ____D C:\Program Files\trend micro
2019-11-28 18:44 - 2019-11-28 21:10 - 1533542400 _____ C:\Users\Myšák\Downloads\Star Wars 6 - Návrat Jediho HD.mkv.crdownload
2019-11-26 18:35 - 2019-11-26 18:36 - 000270842 _____ C:\Users\Myšák\Downloads\SKMBT_C35319111409502.pdf
2019-11-26 18:35 - 2019-11-26 18:35 - 000361766 _____ C:\Users\Myšák\Downloads\SKMBT_C35319111409501.pdf
2019-11-26 14:33 - 2019-11-26 14:44 - 179414849 _____ C:\Users\Myšák\Downloads\devendra-banhart-2005-cripple-crow-320-igalerie.rar
2019-11-26 14:06 - 2019-11-26 14:06 - 000259113 _____ C:\Users\Myšák\Downloads\expres-mapa-vektorova-cz.pdf
2019-11-26 14:06 - 2019-11-26 14:06 - 000258016 _____ C:\Users\Myšák\Downloads\expres-navod-vektorovy-cz.pdf
2019-11-26 14:05 - 2019-11-26 14:05 - 001094793 _____ C:\Users\Myšák\Downloads\expres-mapa-sken-cz.pdf
2019-11-26 13:54 - 2019-11-26 13:59 - 000000000 ____D C:\Users\Myšák\Downloads\MP3 nové
2019-11-26 13:44 - 2019-11-26 13:50 - 106989813 _____ C:\Users\Myšák\Downloads\Devendra Banhart - Ma (2019) [320].rar
2019-11-23 14:30 - 2019-11-23 14:30 - 000000000 ___HD C:\OneDriveTemp
2019-11-20 22:30 - 2019-11-20 22:31 - 000037884 _____ C:\Users\Myšák\Documents\cc_20191120_223055.reg
2019-11-20 14:24 - 2019-11-20 17:30 - 2936885103 _____ C:\Users\Myšák\Downloads\Star Wars VII - Hviezdne vojny - Epizóda VII - Sila sa prebúdza (2015) CZ dab. sk dab. en dab..mkv
2019-11-18 17:46 - 2019-11-18 17:46 - 000002959 _____ C:\Users\Myšák\Documents\Intel(R) HD Graphics 620 pondělí 18. listopadu 2019 nastavení.txt
2019-11-18 17:46 - 2019-11-18 17:46 - 000002767 _____ C:\Users\Myšák\Documents\Intel(R) HD Graphics 620 pondělí 18. listopadu 2019 nastavení_English.txt
2019-11-15 22:25 - 2019-11-15 22:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-11-15 11:31 - 2019-11-15 11:32 - 000183179 _____ C:\Users\Myšák\Downloads\investicni 2019 (15).xlsx
2019-11-15 11:31 - 2019-11-15 11:32 - 000106543 _____ C:\Users\Myšák\Downloads\Domky 2019 (27).xlsx
2019-11-14 13:19 - 2019-11-14 13:19 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-11-14 13:19 - 2019-11-14 13:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-11-14 13:19 - 2019-11-14 13:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-11-14 13:19 - 2019-11-14 13:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-11-14 08:38 - 2019-11-14 08:38 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 001267240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-11-14 08:38 - 2019-11-14 08:38 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-11-14 08:38 - 2019-11-14 08:38 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 023455232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 012258816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 006547896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 006318328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 005770240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 005608336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 004873216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 003872336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 003656792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 002348544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 001677808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000661264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000481280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000473832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-14 08:37 - 2019-11-14 08:37 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-14 08:37 - 2019-11-14 08:37 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-11-14 08:37 - 2019-11-14 08:37 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-14 08:37 - 2019-11-14 08:37 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 022137120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 006934016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 005575168 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 002918200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 002871824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 002699976 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 002628112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001702600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-14 08:36 - 2019-11-14 08:36 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001486472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001473296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 001346216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-14 08:36 - 2019-11-14 08:36 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 001183504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000808272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000773208 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000747536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000588816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000542320 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000535080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-14 08:36 - 2019-11-14 08:36 - 000465416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000435512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000427832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000262152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000112168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-11-14 08:36 - 2019-11-14 08:36 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000086744 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-11-14 08:36 - 2019-11-14 08:36 - 000023768 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-11-14 08:36 - 2019-11-14 08:36 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 009667896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 007656072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 004413936 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 004049920 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001666440 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 001050112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000862008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 000834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000160272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-14 08:35 - 2019-11-14 08:35 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-11-14 08:35 - 2019-11-14 08:35 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-14 08:35 - 2019-11-14 08:35 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 007700696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-14 08:34 - 2019-11-14 08:34 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 001933408 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 001668784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 001538560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 001294792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 001054224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-14 08:34 - 2019-11-14 08:34 - 001049608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000888560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000856424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000536320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000514600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000509968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000450632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000445752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000389408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000385848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000087080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-14 08:34 - 2019-11-14 08:34 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-14 08:34 - 2019-11-14 08:34 - 000061480 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-14 08:34 - 2019-11-14 08:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-11-14 08:34 - 2019-11-14 08:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-11-14 08:33 - 2019-11-14 08:33 - 000667664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-11-14 08:33 - 2019-11-14 08:33 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-14 08:33 - 2019-11-14 08:33 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2019-11-14 08:33 - 2019-11-14 08:33 - 000198968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-11-13 10:28 - 2019-11-13 10:28 - 000046312 _____ C:\Users\Myšák\Downloads\N_208_2017 tabulka nalezu.xlsx
2019-11-12 17:03 - 2019-11-12 17:03 - 004419784 _____ C:\Users\Myšák\Downloads\vvi-2001-04_s159.pdf
2019-11-07 12:14 - 2019-11-07 12:14 - 000616242 _____ C:\Users\Myšák\Downloads\Výkaz_práce_Kukla.pdf
2019-11-04 17:10 - 2019-11-05 16:10 - 000106948 _____ C:\Users\Myšák\Downloads\Domky 2019 (26).xlsx
2019-11-04 00:24 - 2019-09-23 22:54 - 000206208 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.Modern.CoreTypes.dll
2019-11-04 00:24 - 2019-09-23 22:54 - 000131448 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.Modern.Utilities.dll
2019-11-04 00:24 - 2019-09-23 22:54 - 000098176 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.Modern.ImController.ImClient.dll
2019-11-04 00:24 - 2019-09-23 22:54 - 000044440 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.ImController.EventLogging.dll
2019-10-31 16:47 - 2019-10-31 16:47 - 000071538 _____ C:\Users\Myšák\Downloads\Star-Wars-Episode-V-The-Empire-Strikes-Back(0000202352).srt
2019-10-31 16:46 - 2019-10-31 16:46 - 000071817 _____ C:\Users\Myšák\Downloads\Star-Wars-Episode-V-The-Empire-Strikes-Back(0000181294).srt
2019-10-31 12:41 - 2019-10-31 14:14 - 000183516 _____ C:\Users\Myšák\Downloads\investicni 2019 (14).xlsx
2019-10-31 12:41 - 2019-10-31 12:41 - 000106543 _____ C:\Users\Myšák\Downloads\Domky 2019 (25).xlsx

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-30 19:04 - 2017-10-30 19:48 - 000000000 ____D C:\FRST
2019-11-30 18:59 - 2019-01-04 11:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-30 18:59 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-30 03:40 - 2017-09-26 08:32 - 000000000 ___RD C:\Users\Myšák\OneDrive
2019-11-30 03:37 - 2017-09-26 08:27 - 000000000 __SHD C:\Users\Myšák\IntelGraphicsProfiles
2019-11-30 03:36 - 2019-01-04 12:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-30 03:36 - 2017-09-26 10:51 - 000000000 ____D C:\ProgramData\Synaptics
2019-11-30 03:33 - 2019-01-04 11:31 - 000000000 ____D C:\Users\Myšák
2019-11-30 03:33 - 2018-09-15 07:09 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2019-11-29 22:46 - 2019-01-04 12:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2019-11-29 22:46 - 2018-03-19 11:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\Lenovo
2019-11-29 22:46 - 2017-09-26 11:42 - 000000000 ____D C:\Users\Myšák\AppData\Local\Lenovo
2019-11-29 22:46 - 2017-03-07 23:10 - 000000000 ____D C:\Program Files\Lenovo
2019-11-29 22:46 - 2017-03-07 23:10 - 000000000 ____D C:\Program Files (x86)\Lenovo
2019-11-29 22:46 - 2017-03-07 22:50 - 000000000 ____D C:\ProgramData\Lenovo
2019-11-29 21:57 - 2017-12-18 22:41 - 000000000 ____D C:\Users\Myšák\Downloads\Stahovák
2019-11-29 13:58 - 2017-10-30 20:26 - 000000000 ____D C:\AdwCleaner
2019-11-29 11:42 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-11-29 10:18 - 2019-04-04 07:29 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-11-29 09:59 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-28 21:08 - 2017-09-26 12:59 - 000000000 ____D C:\Users\Myšák\AppData\Local\WarThunder
2019-11-28 20:52 - 2017-09-26 12:36 - 000000000 ____D C:\Users\Myšák\AppData\Roaming\vlc
2019-11-26 12:56 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-23 14:29 - 2019-01-04 12:00 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2706086993-1054045265-167977901-1001
2019-11-23 14:29 - 2019-01-04 11:31 - 000002368 _____ C:\Users\Myšák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-22 19:50 - 2018-01-29 08:45 - 000000000 ____D C:\Users\Myšák\AppData\Local\PlaceholderTileLogoFolder
2019-11-22 19:50 - 2018-01-03 22:52 - 000000000 ____D C:\Users\Myšák\AppData\Local\Packages
2019-11-22 12:20 - 2019-03-20 09:54 - 000071587 _____ C:\Users\Myšák\Downloads\Investiční 2019 aktuální.xlsx
2019-11-21 22:32 - 2017-10-30 18:41 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-21 22:32 - 2017-10-30 18:41 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-11-20 22:25 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-11-19 12:27 - 2019-01-17 19:02 - 000000000 ____D C:\Users\Myšák\Documents\Fotky 2019
2019-11-15 22:27 - 2017-09-26 11:45 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-11-15 11:49 - 2019-03-05 10:31 - 000031494 _____ C:\Users\Myšák\Downloads\Domky 2019 aktuální info.xlsx
2019-11-14 22:01 - 2018-01-04 14:12 - 000000000 ___RD C:\Users\Myšák\3D Objects
2019-11-14 22:01 - 2016-07-29 18:27 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-14 22:00 - 2019-01-04 11:46 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-14 22:00 - 2018-09-15 18:32 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2019-11-14 22:00 - 2018-09-15 18:32 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2019-11-14 21:55 - 2019-01-04 11:22 - 000504640 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-14 21:51 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-14 21:50 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-14 21:50 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-14 10:25 - 2016-07-16 12:47 - 000000167 _____ C:\WINDOWS\win.ini
2019-11-14 08:59 - 2017-09-26 13:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-14 08:54 - 2017-09-26 13:41 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-14 08:49 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-07 14:22 - 2017-11-13 13:28 - 000000000 ____D C:\Users\Myšák\AppData\Local\ElevatedDiagnostics
2019-11-06 17:24 - 2019-01-04 12:00 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-06 17:24 - 2019-01-04 12:00 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-06 17:17 - 2017-09-26 12:04 - 000000000 ____D C:\Program Files (x86)\Google
2019-11-05 16:10 - 2019-01-31 13:45 - 000000000 ____D C:\Users\Myšák\Downloads\Akce od Johany 2018
2019-11-01 17:53 - 2019-04-04 07:28 - 000000000 ____D C:\Program Files\CCleaner
2019-10-31 19:47 - 2017-10-03 16:56 - 000000000 ___RD C:\Users\Myšák\Dropbox
2019-10-31 12:02 - 2018-07-19 07:20 - 000000000 ____D C:\ProgramData\Packages

==================== Files in the root of some directories ========

2004-08-04 03:07 - 2004-08-04 03:07 - 000001999 _____ () C:\Users\Myšák\AppData\Roaming\netcache32.sys
2017-11-01 14:57 - 2017-11-01 14:57 - 000000036 _____ () C:\Users\Myšák\AppData\Local\housecall.guid.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

kukmil
Návštěvník
Návštěvník
Příspěvky: 87
Registrován: 27 pro 2005 16:04

Re: Zamrzání počítače

#6 Příspěvek od kukmil »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Myšák at 2019-11-30 19:25:46
Microsoft Windows 10 Home
System drive C: has 262 GB (29%) free of 913 GB
Total RAM: 3989 MB (24% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:25:58, on 30.11.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17763.0771)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe
C:\Users\Myšák\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Users\Myšák\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
C:\ProgramData\Wargaming.net\GameCenter\WargamingErrorMonitor.exe
C:\Program Files (x86)\Wondershare\MobileGo for Android\MobileGoService.exe
C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe
C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\trend micro\Myšák.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo17win10.msn.com/?pc=LCTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo17win10.msn.com/?pc=LCTE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL
O4 - HKLM\..\Run: [OneLinkManager] C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe 1.10.10
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [Wondershare Helper Compact] "C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Myšák\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Wondershare Helper Compact] "C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Gaijin.Net Updater] "C:\Users\Myšák\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
O4 - HKCU\..\Run: [Wargaming.net Game Center] "C:\ProgramData\Wargaming.net\GameCenter\wgc.exe" --background ''
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: MobileGo Service.lnk = C:\Program Files (x86)\Wondershare\MobileGo for Android\MobileGoService.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Poslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Poslat do On&eNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Unknown owner - C:\WINDOWS\system32\AdminService.exe (file missing)
O23 - Service: CCSDK - Unknown owner - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\IntelCpHDCPSvc.exe
O23 - Service: Dolby DAX2 API Service (DAX2API) - Unknown owner - C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\WINDOWS\system32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\WINDOWS\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EHttpSrv) - ESET - C:\Program Files\ESET\ESET Security\ehttpsrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igfxCUIService.exe
O23 - Service: @oem9.inf,%ImcSvcDisplayName%;System Interface Foundation Service (ImControllerService) - Unknown owner - C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Online Connect - Intel Corporation - C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe
O23 - Service: Intel(R) Online Connect Helper - Intel Corporation - C:\Program Files\Intel\Intel(R) Online Connect\iocHelperService.exe
O23 - Service: Intel(R) Online Connect Software Asset Manager - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe
O23 - Service: Intel(R) Online Connect Access Legacy CS Loader (Intel(R) TechnologyAccessLegacyCSLoader) - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe
O23 - Service: Intel(R) Online Connect Access (Intel(R) TechnologyAccessService) - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @oem26.inf,%WBFService_SvcDesc%;Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\WINDOWS\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @oem26.inf,%BioSyncService_SvcDesc%;BiometricSensorDataSynchronization (valWbioSyncSvc) - Unknown owner - C:\WINDOWS\system32\valWbioSyncSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15163 bytes

======Listing Processes======








winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-ee7189fb-d24c-4c0a-ae87-75a45fa6231c -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-6b960a54-299a-4b4e-971b-cadb66afd55e -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-e5f81a6d-bf08-485b-ae63-3194e89f141d -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-66463caf-efa9-41fd-82f5-a1c9fb56eb91 -LifetimeId:19957932-680a-4a1b-bcfb-a31d3657799c -DeviceGroupId: -HostArg:0
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-b0de17c5-28e7-4d13-b57e-1a6cb930b90f -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-acfe4b0e-54fe-444a-ac8e-c0c566e5771f -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-c0f4755d-e88a-4d4e-aca9-0cfbbff8db24 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-24006739-2dde-41dd-90b3-aa49b6fa319b -LifetimeId:d119585e-8ac0-4d50-bcb5-2a4c8ebd6fde -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-40f579d5-c3f4-45f6-b7c6-cdd68ed4757b -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-257f9394-7370-455d-8b53-c862cf27897a -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-88116087-40e0-4bf0-a61f-167bb3805d3c -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-df2656ba-55e4-47bc-a6a0-7f2b14962e38 -LifetimeId:d9b8d6c3-6dc7-4d8d-b1c6-17d8351b0fe6 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
dashost.exe {21f30067-b34c-4c4c-9563678f9cdd044c}
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm

C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k LocalService -p

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\AdminService.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\IntelCpHDCPSvc.exe
C:\WINDOWS\system32\DbxSvc.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe"
"C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\valWBFPolicyService.exe
C:\WINDOWS\system32\valWbioSyncSvc.exe
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\IntelCpHeciSvc.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k netsvcs
dashost.exe {f141ef93-47a2-4200-908bd0b75e18ed50}
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Synaptics\SynFp\Shared\SensorDBSynch.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe" /c
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igfxEM.exe"
C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19102.525.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe"

"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe" -Hide
"C:\Program Files\ESET\ESET Security\eguiproxy.exe" /hide
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Myšák\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
"C:\Users\Myšák\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
"C:\ProgramData\Wargaming.net\GameCenter\wgc.exe" --background ''
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\ProgramData\Wargaming.net\GameCenter\WargamingErrorMonitor.exe" --pipe "parent_pid_9608saf1492z-4za1-za14-z1a4-4a9sz64fe12k" --superuserid "WGC" --self_crash_handling_folder "C:\ProgramData\Wargaming.net\GameCenter\cat " --self_crash_handling_receiver_url "http://cat.wargaming.net " Logs " "

"C:\Program Files (x86)\Wondershare\MobileGo for Android\MobileGoService.exe"
Spotify.exe --autostart
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe" 1.10.10
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:crashpad-handler --no-upload-gzip --no-rate-limit --capture-python --no-identify-client-via-url --database=C:\Users\Myšák\AppData\Local\Dropbox\Crashpad --metrics-dir=0 --url=https://d.dropbox.com/report_crashpad_minidump --https-pin=0x23,0xf2,0xed,0xff,0x3e,0xde,0x90,0x25,0x9a,0x9e,0x30,0xf4,0xa,0xf8,0xf9,0x12,0xa5,0xe5,0xb3,0x69,0x4e,0x69,0x38,0x44,0x3,0x41,0xf6,0x6,0xe,0x1,0x4f,0xfa --https-pin=0xaf,0xf9,0x88,0x90,0x6d,0xde,0x12,0x95,0x5d,0x9b,0xeb,0xbf,0x92,0x8f,0xdc,0xc3,0x1c,0xce,0x32,0x8d,0x5b,0x93,0x84,0xf2,0x1c,0x89,0x41,0xca,0x26,0xe2,0x3,0x91 --https-pin=0x5a,0x88,0x96,0x47,0x22,0xe,0x54,0xd6,0xbd,0x8a,0x16,0x81,0x72,0x24,0x52,0xb,0xb5,0xc7,0x8e,0x58,0x98,0x4b,0xd5,0x70,0x50,0x63,0x88,0xb9,0xde,0xf,0x7,0x5f --https-pin=0xfe,0xa2,0xb7,0xd6,0x45,0xfb,0xa7,0x3d,0x75,0x3c,0x1e,0xc9,0xa7,0x87,0xc,0x40,0xe1,0xf7,0xb0,0xc5,0x61,0xe9,0x27,0xb9,0x85,0xbf,0x71,0x18,0x66,0xe3,0x6f,0x22 --https-pin=0x76,0xee,0x85,0x90,0x37,0x4c,0x71,0x54,0x37,0xbb,0xca,0x6b,0xba,0x60,0x28,0xea,0xdd,0xe2,0xdc,0x6d,0xbb,0xb8,0xc3,0xf6,0x10,0xe8,0x51,0xf1,0x1d,0x1a,0xb7,0xf5 --https-pin=0x6d,0xbf,0xae,0x0,0xd3,0x7b,0x9c,0xd7,0x3f,0x8f,0xb4,0x7d,0xe6,0x59,0x17,0xaf,0x0,0xe0,0xdd,0xdf,0x42,0xdb,0xce,0xac,0x20,0xc1,0x7c,0x2,0x75,0xee,0x20,0x95 --https-pin=0x1e,0xa3,0xc5,0xe4,0x3e,0xd6,0x6c,0x2d,0xa2,0x98,0x3a,0x42,0xa4,0xa7,0x9b,0x1e,0x90,0x67,0x86,0xce,0x9f,0x1b,0x58,0x62,0x14,0x19,0xa0,0x4,0x63,0xa8,0x7d,0x38 --https-pin=0x87,0xaf,0x34,0xd6,0x6f,0xb3,0xf2,0xfd,0xf3,0x6e,0x9,0x11,0x1e,0x9a,0xba,0x2f,0x6f,0x44,0xb2,0x7,0xf3,0x86,0x3f,0x3d,0xb,0x54,0xb2,0x50,0x23,0x90,0x9a,0xa5 --https-pin=0xbc,0xfb,0x44,0xaa,0xb9,0xad,0x2,0x10,0x15,0x70,0x6b,0x41,0x21,0xea,0x76,0x1c,0x81,0xc9,0xe8,0x89,0x67,0x59,0xf,0x6f,0x94,0xae,0x74,0x4d,0xc8,0x8b,0x78,0xfb --https-pin=0xab,0x98,0x49,0x52,0x76,0xad,0xf1,0xec,0xaf,0xf2,0x8f,0x35,0xc5,0x30,0x48,0x78,0x1e,0x5c,0x17,0x18,0xda,0xb9,0xc8,0xe6,0x7a,0x50,0x4f,0x4f,0x6a,0x51,0x32,0x8f --https-pin=0x49,0x5,0x46,0x66,0x23,0xab,0x41,0x78,0xbe,0x92,0xac,0x5c,0xbd,0x65,0x84,0xf7,0xa1,0xe1,0x7f,0x27,0x65,0x2d,0x5a,0x85,0xaf,0x89,0x50,0x4e,0xa2,0x39,0xaa,0xaa --https-pin=0x56,0x32,0xd9,0x7b,0xfa,0x77,0x5b,0xf3,0xc9,0x9d,0xde,0xa5,0x2f,0xc2,0x55,0x34,0x10,0x86,0x40,0x16,0x72,0x9c,0x52,0xdd,0x65,0x24,0xc8,0xa9,0xc3,0xb4,0x48,0x9f --https-pin=0x2a,0x8f,0x2d,0x8a,0xf0,0xeb,0x12,0x38,0x98,0xf7,0x4c,0x86,0x6a,0xc3,0xfa,0x66,0x90,0x54,0xe2,0x3c,0x17,0xbc,0x7a,0x95,0xbd,0x2,0x34,0x19,0x2d,0xc6,0x35,0xd0 --https-pin=0x32,0xb6,0x4b,0x66,0x72,0x7a,0x20,0x63,0xe4,0x6,0x6f,0x3b,0x95,0x8c,0xb0,0xaa,0xee,0x57,0x6a,0x5e,0xce,0xfd,0x95,0x33,0x99,0xbb,0x88,0x74,0x73,0x1d,0x95,0x87 --https-pin=0xf5,0x3c,0x22,0x5,0x98,0x17,0xdd,0x96,0xf4,0x0,0x65,0x16,0x39,0xd2,0xf8,0x57,0xe2,0x10,0x70,0xa5,0x9a,0xbe,0xd9,0x7,0x94,0x0,0xd9,0xf6,0x95,0x50,0x69,0x0 --https-pin=0x67,0xdc,0x4f,0x32,0xfa,0x10,0xe7,0xd0,0x1a,0x79,0xa0,0x73,0xaa,0xc,0x9e,0x2,0x12,0xec,0x2f,0xfc,0x3d,0x77,0x9e,0xa,0xa7,0xf9,0xc0,0xf0,0xe1,0xc2,0xc8,0x93 --https-pin=0x19,0x6,0xc6,0x12,0x4d,0xbb,0x43,0x85,0x78,0xd0,0xe,0x6,0x6d,0x50,0x54,0xc6,0xc3,0x7f,0xf,0xa6,0x2,0x8c,0x5,0x54,0x5e,0x9,0x94,0xed,0xda,0xec,0x86,0x29 --https-pin=0x1d,0x75,0xd0,0x83,0x1b,0x9e,0x8,0x85,0x39,0x4d,0x32,0xc7,0xa1,0xbf,0xdb,0x3d,0xbc,0x1c,0x28,0xe2,0xb0,0xe8,0x39,0x1f,0xb1,0x35,0x98,0x1d,0xbc,0x5b,0xa9,0x36 --annotation=host_int_account1_boot=28277804208 --annotation=machine_id=62ae90c2-bc92-4cef-98e2-55449849d79f --annotation=platform=win "--annotation=platform_version=10 1809" --initial-client-data=0xb8,0x248,0xbc,0x24c,0x250,0x6c670560,0x6c670588,0x6c670570
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:exit-monitor -method:collectupload -session-token:2decd37e-9ae4-4405-a1aa-9b28b35aa35f -target-handle:604 -target-shutdown-event:632 -target-restart-event:608 "-target-command-line:\"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe\" /systemstartup" -python-version:3.7.2 -handler-pipe:\\.\pipe\crashpad_9004_HTGNMNKKDEWEGQMA

"C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe" --type=gpu-process --field-trial-handle=2600,4990577370127852975,11157877870382572025,131072 --no-sandbox --log-file="C:\ProgramData\Wargaming.net\GameCenter\logs\cef_20191130_034014_879.log" --log-severity=info --user-agent="Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 WGC/19.07.00.7412" --lang=en-US --gpu-preferences=KAAAAAAAAADgAAAgAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\ProgramData\Wargaming.net\GameCenter\logs\cef_20191130_034014_879.log" --service-request-channel-token=27298933652398111 --mojo-platform-channel-handle=2620 /prefetch:2
"C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe" --type=utility --field-trial-handle=2600,4990577370127852975,11157877870382572025,131072 --lang=en-US --service-sandbox-type=network --no-sandbox --log-file="C:\ProgramData\Wargaming.net\GameCenter\logs\cef_20191130_034014_879.log" --log-severity=info --user-agent="Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 WGC/19.07.00.7412" --lang=en-US --log-file="C:\ProgramData\Wargaming.net\GameCenter\logs\cef_20191130_034014_879.log" --service-request-channel-token=4866066020388392221 --mojo-platform-channel-handle=3076 /prefetch:8
"C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe" --type=renderer --no-sandbox --force-device-scale-factor=1 --log-file="C:\ProgramData\Wargaming.net\GameCenter\logs\cef_20191130_034014_879.log" --field-trial-handle=2600,4990577370127852975,11157877870382572025,131072 --lang=en-US --log-file="C:\ProgramData\Wargaming.net\GameCenter\logs\cef_20191130_034014_879.log" --log-severity=info --user-agent="Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 WGC/19.07.00.7412" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=6598430512671508946 --renderer-client-id=4 --mojo-platform-channel-handle=3188 /prefetch:1
"C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Myšák\AppData\Local\SpotifyAppX\User Data\Crashpad" "--metrics-dir=C:\Users\Myšák\AppData\Local\SpotifyAppX\User Data" --url=https://crashdump.spotify.com:443/ --annotation=platform=win32 --annotation=product=spotify --annotation=version=1.1.20.510 --initial-client-data=0x618,0x614,0x610,0x62c,0x604,0x5d2768b0,0x5d2768c0,0x5d2768cc
"C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe" --type=gpu-process --field-trial-handle=2184,7412001075224632423,9612946021310412351,131072 --disable-features=ExtendedMouseButtons --disable-d3d11 --log-file="C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\debug.log" --log-severity=disable --product-version=Spotify/1.1.20.510 --lang=cs --gpu-preferences=IAAAAAAAAADgAAAgAAAAAAAAYAAAAAAACAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAABQAAABAAAAAAAAAAAAAAAAYAAAAQAAAAAAAAAAEAAAAFAAAAEAAAAAAAAAABAAAABgAAAA== --log-file="C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\debug.log" --service-request-channel-token=7037873378790717071 --mojo-platform-channel-handle=2276 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe" --type=utility --field-trial-handle=2184,7412001075224632423,9612946021310412351,131072 --disable-features=ExtendedMouseButtons --lang=cs --service-sandbox-type=network --log-file="C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\debug.log" --log-severity=disable --product-version=Spotify/1.1.20.510 --lang=cs --log-file="C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\debug.log" --service-request-channel-token=272870410195275381 --mojo-platform-channel-handle=3396 /prefetch:8
"C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe" --type=renderer --log-file="C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\debug.log" --field-trial-handle=2184,7412001075224632423,9612946021310412351,131072 --disable-features=ExtendedMouseButtons --lang=cs --log-file="C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\debug.log" --log-severity=disable --product-version=Spotify/1.1.20.510 --disable-spell-checking --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=10389735253467027277 --renderer-client-id=5 --mojo-platform-channel-handle=3544 /prefetch:1
"C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe" --type=renderer --no-sandbox --disable-gpu-memory-buffer-video-frames --enable-threaded-compositing --enable-features=AllowContentInitiatedDataUrlNavigations --disable-features=MojoVideoCapture,SurfaceSynchronization,UseModernMediaControls,UseVideoCaptureApiForDevToolsSnapshots --disable-databases --disable-gpu-compositing --service-pipe-token=3444873583145530415 --lang=cs --webengine-schemes=dbx-local:hs;qrc:sLV --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=3444873583145530415 --renderer-client-id=2 --mojo-platform-channel-handle=6804 /prefetch:1
"C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe" --type=renderer --no-sandbox --disable-gpu-memory-buffer-video-frames --enable-threaded-compositing --enable-features=AllowContentInitiatedDataUrlNavigations --disable-features=MojoVideoCapture,SurfaceSynchronization,UseModernMediaControls,UseVideoCaptureApiForDevToolsSnapshots --disable-databases --disable-gpu-compositing --service-pipe-token=4663363200087174282 --lang=cs --webengine-schemes=dbx-local:hs;qrc:sLV --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4663363200087174282 --renderer-client-id=3 --mojo-platform-channel-handle=6336 /prefetch:1
"C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe" --type=renderer --no-sandbox --disable-gpu-memory-buffer-video-frames --enable-threaded-compositing --enable-features=AllowContentInitiatedDataUrlNavigations --disable-features=MojoVideoCapture,SurfaceSynchronization,UseModernMediaControls,UseVideoCaptureApiForDevToolsSnapshots --disable-databases --disable-gpu-compositing --service-pipe-token=17733477898411082740 --lang=cs --webengine-schemes=dbx-local:hs;qrc:sLV --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17733477898411082740 --renderer-client-id=4 --mojo-platform-channel-handle=5340 /prefetch:1
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -scheduled -critical
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe" /InvokerPRAID: App
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
taskhostw.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Myšák\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Myšák\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Myšák\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=78.0.3904.108 --initial-client-data=0x88,0x8c,0x90,0x80,0x94,0x7ffa3f2ded58,0x7ffa3f2ded68,0x7ffa3f2ded78
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=3188 --on-initialized-event-handle=72 --parent-handle=176 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1636,8472025227588078868,3761750021359883967,131072 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=5262194612256940584 --mojo-platform-channel-handle=1704 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1636,8472025227588078868,3761750021359883967,131072 --lang=cs --service-sandbox-type=network --service-request-channel-token=4056946813792565388 --mojo-platform-channel-handle=1812 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,8472025227588078868,3761750021359883967,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17387142004430690889 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3348 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,8472025227588078868,3761750021359883967,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=5660534005066379439 --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3944 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
notepad "H:\\FRST.txt"

"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe40_ Global\UsGthrCtrlFltPipeMssGthrPipe40 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 780 784 792 8192 788
"C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,8472025227588078868,3761750021359883967,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=268745274464204019 --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2528 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,8472025227588078868,3761750021359883967,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14370120701918740299 --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4176 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,8472025227588078868,3761750021359883967,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=16950697892898417818 --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5628 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x51c
"H:\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost

======Scheduled tasks folder======

C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2019-08-13 245664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-03-07 582008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~1\MICROS~1\Office16\GROOVEEX.DLL [2018-07-20 2179864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-03-07 245112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2019-09-10 179704]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL [2018-07-22 1525016]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2018-09-15 83968]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-09-09 16696832]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-09-09 1467400]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-09-09 1467400]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-09-09 1467400]
"DAX2_APP"=C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [2016-06-24 829632]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2019-03-13 177928]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Myšák\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2019-11-23 1585000]
"Wondershare Helper Compact"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2013-07-25 1985824]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-03-11 22488952]
"Gaijin.Net Updater"=C:\Users\Myšák\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2019-11-28 2361600]
"Wargaming.net Game Center"=C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2019-11-14 2408312]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"OneLinkManager"=C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe [2015-05-30 1083904]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2019-11-14 6260544]
"Wondershare Helper Compact"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2013-07-25 1985824]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2013-07-25 1985824]
"Nikon Message Center 2"=C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [2016-01-08 588288]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-12-16 601424]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
MobileGo Service.lnk - C:\Program Files (x86)\Wondershare\MobileGo for Android\MobileGoService.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2019-11-29 12:01:38 ----D---- C:\Program Files\trend micro
2019-11-29 12:01:37 ----D---- C:\rsit
2019-11-23 14:30:10 ----HD---- C:\OneDriveTemp
2019-11-14 13:19:58 ----A---- C:\WINDOWS\system32\drivers\dbx-stable.sys
2019-11-14 13:19:58 ----A---- C:\WINDOWS\system32\drivers\dbx-dev.sys
2019-11-14 13:19:58 ----A---- C:\WINDOWS\system32\drivers\dbx-canary.sys
2019-11-14 13:19:58 ----A---- C:\WINDOWS\system32\DbxSvc.exe
2019-11-14 08:38:55 ----A---- C:\WINDOWS\system32\wmp.dll
2019-11-14 08:38:54 ----A---- C:\WINDOWS\SYSWOW64\gnsdk_fp.dll
2019-11-14 08:38:51 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-11-14 08:38:19 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2019-11-14 08:38:18 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2019-11-14 08:38:18 ----A---- C:\WINDOWS\system32\mfps.dll
2019-11-14 08:38:17 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-14 08:38:17 ----A---- C:\WINDOWS\system32\mfcore.dll
2019-11-14 08:38:01 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-11-14 08:38:01 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2019-11-14 08:38:00 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2019-11-14 08:37:58 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-11-14 08:37:54 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-11-14 08:37:53 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-11-14 08:37:52 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2019-11-14 08:37:51 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-11-14 08:37:51 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2019-11-14 08:37:51 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-11-14 08:37:50 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2019-11-14 08:37:50 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2019-11-14 08:37:50 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2019-11-14 08:37:49 ----A---- C:\WINDOWS\system32\VAN.dll
2019-11-14 08:37:49 ----A---- C:\WINDOWS\system32\AcGenral.dll
2019-11-14 08:37:47 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-11-14 08:37:47 ----A---- C:\WINDOWS\system32\msi.dll
2019-11-14 08:37:46 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-11-14 08:37:46 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-11-14 08:37:44 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-11-14 08:37:41 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-11-14 08:37:40 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2019-11-14 08:37:40 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-11-14 08:37:39 ----A---- C:\WINDOWS\system32\werui.dll
2019-11-14 08:37:39 ----A---- C:\WINDOWS\system32\jscript9.dll
2019-11-14 08:37:38 ----A---- C:\WINDOWS\system32\jscript.dll
2019-11-14 08:37:35 ----A---- C:\WINDOWS\system32\sud.dll
2019-11-14 08:37:35 ----A---- C:\WINDOWS\system32\spacebridge.dll
2019-11-14 08:37:33 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2019-11-14 08:37:33 ----A---- C:\WINDOWS\system32\upnphost.dll
2019-11-14 08:37:33 ----A---- C:\WINDOWS\system32\udhisapi.dll
2019-11-14 08:37:33 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-14 08:37:31 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-11-14 08:37:31 ----A---- C:\WINDOWS\SYSWOW64\prntvpt.dll
2019-11-14 08:37:30 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-11-14 08:37:17 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2019-11-14 08:37:17 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2019-11-14 08:37:16 ----A---- C:\WINDOWS\SYSWOW64\usp10.dll
2019-11-14 08:37:16 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-11-14 08:37:15 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2019-11-14 08:37:14 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2019-11-14 08:37:14 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2019-11-14 08:37:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-14 08:37:13 ----A---- C:\WINDOWS\SYSWOW64\compact.exe
2019-11-14 08:37:12 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2019-11-14 08:37:11 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-11-14 08:37:11 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-11-14 08:37:10 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-14 08:37:10 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-11-14 08:37:09 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-11-14 08:37:09 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2019-11-14 08:37:09 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-11-14 08:37:07 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-11-14 08:37:07 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-14 08:37:07 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2019-11-14 08:37:06 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2019-11-14 08:37:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.AI.MachineLearning.dll
2019-11-14 08:37:05 ----A---- C:\WINDOWS\SYSWOW64\AssignedAccessRuntime.dll
2019-11-14 08:37:05 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-14 08:37:04 ----A---- C:\WINDOWS\SYSWOW64\ComposableShellProxyStub.dll
2019-11-14 08:37:03 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-11-14 08:37:02 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2019-11-14 08:37:01 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-11-14 08:37:00 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2019-11-14 08:36:59 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2019-11-14 08:36:58 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-11-14 08:36:57 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2019-11-14 08:36:57 ----A---- C:\WINDOWS\system32\policymanager.dll
2019-11-14 08:36:57 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-14 08:36:56 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2019-11-14 08:36:56 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-14 08:36:55 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-14 08:36:55 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2019-11-14 08:36:54 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-11-14 08:36:54 ----A---- C:\WINDOWS\system32\cryptui.dll
2019-11-14 08:36:53 ----A---- C:\WINDOWS\system32\usp10.dll
2019-11-14 08:36:53 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2019-11-14 08:36:53 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2019-11-14 08:36:53 ----A---- C:\WINDOWS\system32\atmlib.dll
2019-11-14 08:36:52 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-11-14 08:36:52 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2019-11-14 08:36:52 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2019-11-14 08:36:51 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2019-11-14 08:36:51 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2019-11-14 08:36:50 ----A---- C:\WINDOWS\system32\ntdll.dll
2019-11-14 08:36:50 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2019-11-14 08:36:50 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2019-11-14 08:36:49 ----A---- C:\WINDOWS\system32\nsi.dll
2019-11-14 08:36:49 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-11-14 08:36:48 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-11-14 08:36:48 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-11-14 08:36:47 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-11-14 08:36:46 ----A---- C:\WINDOWS\SYSWOW64\nsi.dll
2019-11-14 08:36:46 ----A---- C:\WINDOWS\system32\uxtheme.dll
2019-11-14 08:36:46 ----A---- C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-14 08:36:45 ----A---- C:\WINDOWS\system32\uDWM.dll
2019-11-14 08:36:45 ----A---- C:\WINDOWS\system32\dwm.exe
2019-11-14 08:36:45 ----A---- C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-14 08:36:45 ----A---- C:\WINDOWS\system32\CoreShell.dll
2019-11-14 08:36:44 ----A---- C:\WINDOWS\system32\twinui.dll
2019-11-14 08:36:43 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2019-11-14 08:36:43 ----A---- C:\WINDOWS\system32\schedsvc.dll
2019-11-14 08:36:42 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2019-11-14 08:36:42 ----A---- C:\WINDOWS\system32\compact.exe
2019-11-14 08:36:41 ----A---- C:\WINDOWS\system32\ubpm.dll
2019-11-14 08:36:41 ----A---- C:\WINDOWS\system32\taskschd.dll
2019-11-14 08:36:41 ----A---- C:\WINDOWS\system32\taskhostw.exe
2019-11-14 08:36:40 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-11-14 08:36:40 ----A---- C:\WINDOWS\system32\msctf.dll
2019-11-14 08:36:40 ----A---- C:\WINDOWS\system32\devinv.dll
2019-11-14 08:36:39 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-14 08:36:39 ----A---- C:\WINDOWS\system32\aitstatic.exe
2019-11-14 08:36:39 ----A---- C:\WINDOWS\system32\aeinv.dll
2019-11-14 08:36:38 ----A---- C:\WINDOWS\system32\invagent.dll
2019-11-14 08:36:38 ----A---- C:\WINDOWS\system32\appraiser.dll
2019-11-14 08:36:37 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-11-14 08:36:37 ----A---- C:\WINDOWS\system32\acmigration.dll
2019-11-14 08:36:36 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-14 08:36:35 ----A---- C:\WINDOWS\system32\winresume.exe
2019-11-14 08:36:35 ----A---- C:\WINDOWS\system32\winload.exe
2019-11-14 08:36:34 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-11-14 08:36:33 ----A---- C:\WINDOWS\system32\generaltel.dll
2019-11-14 08:36:32 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-14 08:36:32 ----A---- C:\WINDOWS\system32\NotificationController.dll
2019-11-14 08:36:12 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-14 08:36:11 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-14 08:36:06 ----A---- C:\WINDOWS\system32\OpenWith.exe
2019-11-14 08:36:04 ----A---- C:\WINDOWS\system32\shell32.dll
2019-11-14 08:36:03 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-11-14 08:36:02 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-11-14 08:36:02 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-11-14 08:36:02 ----A---- C:\WINDOWS\system32\rascustom.dll
2019-11-14 08:36:01 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-14 08:36:00 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-14 08:36:00 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2019-11-14 08:35:59 ----A---- C:\WINDOWS\system32\prntvpt.dll
2019-11-14 08:35:59 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-11-14 08:35:58 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2019-11-14 08:35:57 ----A---- C:\WINDOWS\system32\hal.dll
2019-11-14 08:35:57 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2019-11-14 08:35:55 ----A---- C:\WINDOWS\system32\user32.dll
2019-11-14 08:35:55 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-14 08:35:55 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-11-14 08:35:54 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-11-14 08:35:53 ----A---- C:\WINDOWS\system32\wpnprv.dll
2019-11-14 08:35:53 ----A---- C:\WINDOWS\system32\wpncore.dll
2019-11-14 08:35:52 ----A---- C:\WINDOWS\system32\wpnservice.dll
2019-11-14 08:35:52 ----A---- C:\WINDOWS\system32\drivers\pacer.sys
2019-11-14 08:35:51 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-11-14 08:35:51 ----A---- C:\WINDOWS\system32\mssprxy.dll
2019-11-14 08:35:51 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-11-14 08:35:50 ----A---- C:\WINDOWS\system32\tquery.dll
2019-11-14 08:35:49 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-14 08:35:49 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-14 08:35:49 ----A---- C:\WINDOWS\system32\mssph.dll
2019-11-14 08:35:49 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-11-14 08:35:48 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-14 08:35:48 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-11-14 08:35:47 ----A---- C:\WINDOWS\system32\mssvp.dll
2019-11-14 08:35:47 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2019-11-14 08:35:47 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-11-14 08:35:46 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-11-14 08:35:46 ----A---- C:\WINDOWS\system32\FntCache.dll
2019-11-14 08:35:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-14 08:35:45 ----A---- C:\WINDOWS\system32\DWrite.dll
2019-11-14 08:35:45 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-14 08:35:45 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-14 08:35:44 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2019-11-14 08:35:43 ----A---- C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-14 08:35:42 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-14 08:35:42 ----A---- C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-14 08:35:42 ----A---- C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-14 08:35:41 ----A---- C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-14 08:35:41 ----A---- C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-14 08:35:40 ----A---- C:\WINDOWS\system32\dssvc.dll
2019-11-14 08:35:39 ----A---- C:\WINDOWS\system32\qmgr.dll
2019-11-14 08:35:39 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-14 08:35:38 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-14 08:35:37 ----A---- C:\WINDOWS\system32\wow64win.dll
2019-11-14 08:35:37 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-14 08:35:36 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-14 08:35:35 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-14 08:35:35 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-14 08:35:34 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-14 08:35:33 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-11-14 08:35:32 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2019-11-14 08:35:32 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-14 08:35:32 ----A---- C:\WINDOWS\explorer.exe
2019-11-14 08:35:31 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-14 08:35:31 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2019-11-14 08:35:29 ----A---- C:\WINDOWS\system32\spoolsv.exe
2019-11-14 08:35:29 ----A---- C:\WINDOWS\splwow64.exe
2019-11-14 08:35:28 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2019-11-14 08:35:28 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2019-11-14 08:35:01 ----A---- C:\WINDOWS\system32\AudioSes.dll
2019-11-14 08:35:01 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-14 08:35:00 ----A---- C:\WINDOWS\system32\audiosrv.dll
2019-11-14 08:34:59 ----A---- C:\WINDOWS\system32\AudioEng.dll
2019-11-14 08:34:59 ----A---- C:\WINDOWS\system32\audiodg.exe
2019-11-14 08:34:55 ----A---- C:\WINDOWS\system32\wbengine.exe
2019-11-14 08:34:54 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-11-14 08:34:54 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-11-14 08:34:53 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-11-14 08:34:52 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-11-14 08:34:52 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-11-14 08:34:51 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-11-14 08:34:51 ----A---- C:\WINDOWS\system32\wer.dll
2019-11-14 08:34:50 ----A---- C:\WINDOWS\system32\wersvc.dll
2019-11-14 08:34:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-11-14 08:34:50 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-11-14 08:34:49 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-14 08:34:49 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-14 08:34:48 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2019-11-14 08:34:47 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-11-14 08:34:47 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-11-14 08:34:46 ----A---- C:\WINDOWS\system32\securekernel.exe
2019-11-14 08:34:45 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-11-14 08:34:45 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-11-14 08:34:44 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2019-11-14 08:34:43 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2019-11-14 08:34:42 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2019-11-14 08:34:42 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-11-14 08:34:42 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2019-11-14 08:34:41 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2019-11-14 08:34:41 ----A---- C:\WINDOWS\system32\wldp.dll
2019-11-14 08:34:41 ----A---- C:\WINDOWS\system32\aepic.dll
2019-11-14 08:34:40 ----A---- C:\WINDOWS\system32\crypt32.dll
2019-11-14 08:34:40 ----A---- C:\WINDOWS\system32\ci.dll
2019-11-14 08:34:39 ----A---- C:\WINDOWS\system32\Wldap32.dll
2019-11-14 08:34:39 ----A---- C:\WINDOWS\system32\tzres.dll
2019-11-14 08:34:39 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2019-11-14 08:34:39 ----A---- C:\WINDOWS\system32\dcntel.dll
2019-11-14 08:34:38 ----A---- C:\WINDOWS\system32\userenv.dll
2019-11-14 08:34:38 ----A---- C:\WINDOWS\system32\msv1_0.dll
2019-11-14 08:34:36 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-11-14 08:34:34 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2019-11-14 08:34:33 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2019-11-14 08:34:32 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2019-11-14 08:34:31 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2019-11-14 08:34:30 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-11-14 08:34:29 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-11-14 08:34:28 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2019-11-14 08:34:28 ----A---- C:\WINDOWS\SYSWOW64\spacebridge.dll
2019-11-14 08:34:11 ----A---- C:\WINDOWS\system32\hvloader.dll
2019-11-14 08:34:11 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-11-14 08:34:11 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2019-11-14 08:34:10 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-11-14 08:34:10 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-11-14 08:34:09 ----A---- C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-14 08:34:09 ----A---- C:\WINDOWS\system32\hvhostsvc.dll
2019-11-14 08:33:41 ----A---- C:\WINDOWS\system32\drivers\BthA2dp.sys
2019-11-14 08:33:39 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2019-11-14 08:33:39 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2019-11-14 08:33:38 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2019-11-04 00:24:37 ----A---- C:\WINDOWS\system32\Lenovo.Modern.Utilities.dll
2019-11-04 00:24:37 ----A---- C:\WINDOWS\system32\Lenovo.Modern.ImController.ImClient.dll
2019-11-04 00:24:37 ----A---- C:\WINDOWS\system32\Lenovo.Modern.CoreTypes.dll
2019-11-04 00:24:37 ----A---- C:\WINDOWS\system32\Lenovo.ImController.EventLogging.dll

======List of files/folders modified in the last 1 month======

2019-11-30 19:24:00 ----D---- C:\WINDOWS\system32\SleepStudy
2019-11-30 19:14:07 ----D---- C:\FRST
2019-11-30 19:14:06 ----D---- C:\WINDOWS\Prefetch
2019-11-30 19:05:49 ----D---- C:\WINDOWS\Temp
2019-11-30 19:04:36 ----SHD---- C:\System Volume Information
2019-11-30 19:02:00 ----D---- C:\WINDOWS\system32\sru
2019-11-30 18:59:51 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-11-30 13:37:26 ----RD---- C:\WINDOWS\Microsoft.NET
2019-11-30 03:40:40 ----D---- C:\WINDOWS\system32\Tasks
2019-11-30 03:36:32 ----D---- C:\ProgramData\Synaptics
2019-11-29 22:46:42 ----D---- C:\ProgramData\Lenovo
2019-11-29 22:46:37 ----D---- C:\WINDOWS\system32\drivers\Lenovo
2019-11-29 22:46:37 ----D---- C:\Program Files\Lenovo
2019-11-29 22:46:37 ----D---- C:\Program Files (x86)\Lenovo
2019-11-29 22:46:35 ----RD---- C:\Program Files (x86)
2019-11-29 22:46:08 ----HD---- C:\ProgramData
2019-11-29 22:46:04 ----SHDC---- C:\WINDOWS\Installer
2019-11-29 13:58:20 ----D---- C:\AdwCleaner
2019-11-29 12:44:09 ----D---- C:\WINDOWS\Logs
2019-11-29 12:01:38 ----RD---- C:\Program Files
2019-11-29 11:42:51 ----D---- C:\WINDOWS\INF
2019-11-29 09:59:11 ----D---- C:\WINDOWS\AppReadiness
2019-11-29 08:14:11 ----D---- C:\WINDOWS\system32\config
2019-11-28 21:59:38 ----D---- C:\WINDOWS\system32\catroot2
2019-11-28 20:52:11 ----D---- C:\Users\Myšák\AppData\Roaming\vlc
2019-11-26 12:56:51 ----HD---- C:\Program Files\WindowsApps
2019-11-21 23:00:22 ----D---- C:\WINDOWS\WinSxS
2019-11-20 23:03:02 ----D---- C:\Windows
2019-11-20 22:25:07 ----D---- C:\WINDOWS\LiveKernelReports
2019-11-20 22:25:07 ----D---- C:\WINDOWS\debug
2019-11-19 18:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2019-11-15 22:27:07 ----D---- C:\Program Files (x86)\Dropbox
2019-11-15 22:25:20 ----D---- C:\WINDOWS\system32\drivers
2019-11-15 22:25:20 ----D---- C:\WINDOWS\System32
2019-11-14 22:00:57 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-14 21:55:57 ----D---- C:\WINDOWS\system32\DriverStore
2019-11-14 21:51:07 ----D---- C:\WINDOWS\SYSWOW64\Dism
2019-11-14 21:51:07 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2019-11-14 21:51:06 ----D---- C:\WINDOWS\SysWOW64
2019-11-14 21:50:51 ----D---- C:\WINDOWS\system32\wbem
2019-11-14 21:50:48 ----D---- C:\WINDOWS\system32\oobe
2019-11-14 21:50:48 ----D---- C:\WINDOWS\system32\en-US
2019-11-14 21:50:47 ----D---- C:\WINDOWS\system32\drivers\en-US
2019-11-14 21:50:47 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2019-11-14 21:50:46 ----D---- C:\WINDOWS\system32\Dism
2019-11-14 21:50:46 ----D---- C:\WINDOWS\system32\cs-CZ
2019-11-14 21:50:46 ----D---- C:\WINDOWS\system32\Boot
2019-11-14 21:50:45 ----D---- C:\WINDOWS\system32\ar-SA
2019-11-14 21:50:45 ----D---- C:\WINDOWS\system32\appraiser
2019-11-14 21:50:26 ----D---- C:\WINDOWS\ShellExperiences
2019-11-14 21:50:24 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2019-11-14 21:50:24 ----D---- C:\WINDOWS\PolicyDefinitions
2019-11-14 21:50:23 ----D---- C:\WINDOWS\bcastdvr
2019-11-14 21:50:23 ----D---- C:\WINDOWS\apppatch
2019-11-14 21:47:03 ----SHD---- C:\Config.Msi
2019-11-14 21:47:01 ----D---- C:\WINDOWS\system32\drivers\UMDF
2019-11-14 10:28:38 ----D---- C:\ProgramData\Microsoft Help
2019-11-14 10:25:55 ----A---- C:\WINDOWS\win.ini
2019-11-14 08:59:33 ----D---- C:\WINDOWS\system32\MRT
2019-11-14 08:54:04 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-11-14 08:49:23 ----D---- C:\WINDOWS\CbsTemp
2019-11-06 17:17:49 ----D---- C:\Program Files (x86)\Google
2019-11-01 17:53:13 ----D---- C:\Program Files\CCleaner
2019-10-31 12:02:38 ----D---- C:\ProgramData\Packages

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-01-04 55608]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-09-15 87552]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-09-15 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-09-15 63288]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2015-06-09 100624]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2019-03-26 145600]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2019-03-26 188240]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2019-03-26 82232]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2019-03-26 114456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-09-15 60416]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-09-15 8704]
R1 ndisrd;@oem18.inf,%ndisrfl_Desc%;Intel(R) Technology Access Filter Driver; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [2016-09-13 59792]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-03-13 452096]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-01-04 51712]
R3 ACPIVPC;@oem22.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2016-10-19 45048]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2017-01-18 605608]
R3 BthA2DP;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-11-14 215040]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-01-04 111104]
R3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2018-09-15 56832]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-07-15 91136]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-09-15 133120]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-08-22 92672]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-09-15 63288]
R3 ETD;@oem39.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2017-10-30 615496]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [2016-09-21 32344]
R3 igfx;igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igdkmd64.sys [2016-12-20 11039712]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-09-09 5310472]
R3 IntcDAud;@oem7.inf,%IntcAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-11-21 822248]
R3 MEIx64;@oem23.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-09-22 204896]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2018-09-15 53760]
R3 Qcamain10x64;@netathr10x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN 11AC device driver; C:\WINDOWS\System32\drivers\Qcamain10x64.sys [2018-09-15 2338304]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-09-15 202240]
R3 rt640x64;@oem50.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-08-01 943112]
R3 RTSUER;@oem42.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2016-08-05 418784]
R3 rtsuvc;@oem31.inf,%rtsuvc.DeviceDesc%;EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2016-08-04 3138056]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-09-15 42504]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2019-06-20 15800]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-09-15 319488]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-09-15 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-09-15 148480]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-09-15 124416]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-09-15 128512]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-09-15 75264]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-09-15 79872]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-09-15 58880]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-09-15 68608]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-09-15 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-08-22 134968]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-09-15 19968]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-09-15 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-10-11 104464]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2018-09-15 34816]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2019-08-22 1232384]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-09-15 40960]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-09-15 125952]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-09-15 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-09-15 51512]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2018-09-15 60928]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-11-14 80400]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-09-15 27648]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-09-15 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-09-15 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-09-15 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-09-15 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-09-15 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2018-09-15 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2018-09-15 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-09-15 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-09-15 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2018-09-15 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2018-09-15 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-09-15 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-09-15 45568]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-09-15 42496]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-09-15 124928]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-09-15 515384]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-09-15 58680]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-10-04 290304]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-09-15 1150496]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-09-15 153616]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-09-15 184320]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-09-15 148480]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2018-09-15 85504]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-08-22 117248]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-09-15 17408]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-04-15 981816]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-09-15 108032]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-09-15 33080]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-09-15 33280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2019-09-10 88136]
R2 AtherosSvc;AtherosSvc; C:\WINDOWS\system32\AdminService.exe [2017-01-18 347056]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CDPUserSvc_63f31;Uživatelská služba platformy připojených zařízení_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 cplspcon;Intel(R) Content Protection HDCP Service; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\IntelCpHDCPSvc.exe [2016-12-20 480224]
R2 DAX2API;Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [2016-07-18 154816]
R2 DbxSvc;DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [2019-11-14 51024]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2019-03-13 2375432]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2017-10-30 134872]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igfxCUIService.exe [2016-12-20 341984]
R2 Intel(R) TechnologyAccessLegacyCSLoader;Intel(R) Online Connect Access Legacy CS Loader; C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe [2016-10-05 173288]
R2 Intel(R) TechnologyAccessService;Intel(R) Online Connect Access; C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe [2016-10-05 496872]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2016-10-20 177440]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2016-10-20 419616]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 OneSyncSvc_63f31;Hostitel synchronizace_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2019-04-15 255128]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 cbdhsvc_63f31;Uživatelská služba schránky_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\IntelCpHeciSvc.exe [2016-12-20 301536]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Security\ekrn.exe [2019-03-13 2375432]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-01-04 43632]
R3 Intel(R) Online Connect;Intel(R) Online Connect; C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe [2016-10-04 25824]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 PimIndexMaintenanceSvc_63f31;Data kontaktů_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2019-08-22 864568]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe []
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-09-26 143144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-30 107848]
S2 ImControllerService;@oem9.inf,%ImcSvcDisplayName%;System Interface Foundation Service; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe []
S2 Intel(R) Online Connect Helper;Intel(R) Online Connect Helper; C:\Program Files\Intel\Intel(R) Online Connect\iocHelperService.exe [2016-10-04 22752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService_63f31;Uživatelská služba pro GameDVR a vysílání her_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService_63f31;Služba pro podporu uživatelů Bluetooth_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService_63f31;CaptureService_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc_63f31;ConsentUX_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-09-26 143144]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc_63f31;DevicePicker_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc_63f31;Tok zařízení_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-05-20 92672]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 EasyAntiCheat;EasyAntiCheat; C:\WINDOWS\system32\EasyAntiCheat.exe []
S3 EHttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [2019-03-13 55416]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe [2019-11-16 1110512]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-30 107848]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2016-07-27 987432]
S3 Intel(R) Online Connect Software Asset Manager;Intel(R) Online Connect Software Asset Manager; C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2016-09-29 18152]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService_63f31;Služba zasílání zpráv_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-13 213696]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2018-09-15 78848]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc_63f31;PrintWorkflow_63f31; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-09-15 1269248]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]

-----------------EOF-----------------

kukmil
Návštěvník
Návštěvník
Příspěvky: 87
Registrován: 27 pro 2005 16:04

Re: Zamrzání počítače

#7 Příspěvek od kukmil »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-11-2019 01
Ran by Myšák (30-11-2019 19:09:51)
Running from H:\
Windows 10 Home Version 1809 17763.864 (X64) (2019-01-04 11:01:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2706086993-1054045265-167977901-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2706086993-1054045265-167977901-503 - Limited - Disabled)
Guest (S-1-5-21-2706086993-1054045265-167977901-501 - Limited - Disabled)
Myšák (S-1-5-21-2706086993-1054045265-167977901-1001 - Administrator - Enabled) => C:\Users\Myšák
WDAGUtilityAccount (S-1-5-21-2706086993-1054045265-167977901-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{13DA9C7C-EBFB-40D0-94A1-55B42883DF21}) (Version: 21.2.1 - HP Inc.) Hidden
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Advertising Center (HKLM-x32\...\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}) (Version: 0.0.0.2 - Nero AG) Hidden
Agisoft PhotoScan Professional (HKLM\...\{7F58380F-4674-4A07-B73A-4F15160777D4}) (Version: 1.4.2 - Agisoft)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.5.1 - Nikon Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.6714 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dolby Audio X2 Windows API SDK (HKLM\...\{2A027A37-B09B-44FB-B1C9-2DD6BA0014E8}) (Version: 0.7.2.61 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 85.4.155 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
ESET Endpoint Antivirus (HKLM\...\{082F6817-E4B9-406D-8E59-0551070D7B97}) (Version: 7.1.2045.5 - ESET, spol. s r.o.)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.108 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.26) (Version: 9.26 - Artifex Software Inc.)
Heroes Studio (HKLM-x32\...\Heroes Studio_is1) (Version: 1.13 - Jiří Havlíček)
Intel(R) Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1036 - Intel Corporation)
Intel(R) Online Connect Software Asset Manager (HKLM-x32\...\{AE956AB9-CD98-4F1E-8B9E-C3C66E290D64}) (Version: 3.4.2072 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation) Hidden
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.)
Microsoft Office Professional Plus 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM-x32\...\{90160000-001F-0405-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM-x32\...\{90160000-001F-041B-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nero 9 Lite (HKLM-x32\...\{ce8f3873-99ee-4e70-8e40-31ed7e54281b}) (Version: - Nero AG)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.3.0 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{4D5EE11A-0D0A-4214-ABAC-72419F7BE24D}) (Version: 2.13.1 - Nikon Corporation)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Optimik (HKLM-x32\...\Optimik_is1) (Version: - Rastislav Korytár - RK Software)
Picture Control Utility 2 (HKLM\...\{46BEAB85-B86A-4AAB-B085-136ECA032CF4}) (Version: 2.4.1 - Nikon Corporation)
QGIS 2.18.27 'Las Palmas' (HKLM\...\QGIS 2.18) (Version: 2.18.27 - QGIS Development Team)
QGIS 3.4.2 'Madeira' (HKLM\...\QGIS 3.4) (Version: 3.4.2 - QGIS Development Team)
Rajče průvodce verze 1.59.54.269 (HKLM-x32\...\rajce.net_is1) (Version: - rajce.net)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7930 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
SD Card Recovery (HKLM-x32\...\{09907A60-5843-4E83-A471-3102A42231B8}_is1) (Version: - LC Technology International, Inc.)
Star Conflict Launcher 1.0.1.79 (HKLM-x32\...\StarConflictLauncher_is1) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
ThinkPad OneLink Plus Dock (HKLM-x32\...\{8E1CACF5-2493-4950-9AD5-189903FE57E7}) (Version: 1.10.10 - Lenovo)
Time Adjuster STANDARD 3.1 (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\TimeAdjuster) (Version: - IrekSoftware.com)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
Total War Arena (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\TWA.EU.PRODUCTION) (Version: - Wargaming.net)
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-012B-0405-0000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
War Thunder Launcher 1.0.3.48 (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Wargaming.net Game Center (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Wargaming.net Game Center) (Version: 19.7.0.7412 - Wargaming.net)
WinAce Archiver (HKLM-x32\...\WinAce Archiver) (Version: 2.69 - e-merge GmbH)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Wondershare MobileGo for Android ( Version 4.3.0 ) (HKLM-x32\...\{1E04C795-7359-4E05-8A0E-5644F777AA08}_is1) (Version: 4.3.0 - Wondershare)
World of Tanks EU (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\WOWS.EU.PRODUCTION) (Version: - Wargaming.net)
Youtube-mp3 (HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\Youtube) (Version: 1.0.0 - Med Zed INC)
YTD (pepak) (HKLM-x32\...\YTD_Pepak) (Version: - )
Zoner Photo Studio 12 (HKLM-x32\...\ZonerPhotoStudio12_CZ_is1) (Version: 12.0.1.12 - ZONER software)
Zoner Photo Studio X (HKLM\...\{FCD8CE83-6D4B-41AC-8E16-4F416CD741F3}) (Version: 19.0.93.93 - ZONER software, a.s.)

Packages:
=========
7Z Opener -> C:\Program Files\WindowsApps\DeviceDoctor.7ZipOpener_1.3.20.0_x64__mkdtfchztkfbm [2019-08-29] (Tiny Opener)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Autumn Colors -> C:\Program Files\WindowsApps\Microsoft.AutumnColors_1.0.0.0_neutral__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.3.4.0_x86__kgqvnymyfvs32 [2019-11-18] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.151.300.0_x86__kgqvnymyfvs32 [2019-11-01] (king.com)
Canon Office Printer Utility -> C:\Program Files\WindowsApps\34791E63.CanonOfficePrinterUtility_12.7.0.0_x64__6e5tt8cgb93ep [2019-08-29] (Canon Inc.)
Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_4.18.0.0_x86__q7m17pa7q8kj0 [2019-11-26] (Deezer SA)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_4.5.1.2_x86__h6adky7gbf63m [2019-11-25] (Gameloft.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2019-11-15] (HP Inc.)
Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_18.4.500.0_x64__4n2hpmxwrvr6p [2019-10-11] (XBMC Foundation)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.1909.24.0_x64__k1h2ywk1493x8 [2019-10-31] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.33.13094.0_x64__8wekyb3d8bbwe [2019-11-14] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.11052.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.33.13253.0_x64__8wekyb3d8bbwe [2019-11-25] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-11-22] (Netflix, Inc.)
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe [2019-11-26] (Microsoft Corporation) [MS Ad]
Prince of Persia PC -> C:\Program Files\WindowsApps\4235VladimirKuznetsov.PrinceofPersiaPC_1.1.70.0_x64__dezqr7eax3k0g [2019-08-29] (Vlad K) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0 [2019-11-25] (Spotify AB) [Startup Task]
Uživatelský portál Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2019-08-29] (LENOVO INCORPORATED.)
ViaMichelin -> C:\Program Files\WindowsApps\MICHELIN.ViaMichelin_1.1.0.29_neutral__hm8jrmvzsgywe [2019-08-29] (Michelin Travel Partner) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2706086993-1054045265-167977901-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Myšák\Dropbox [2017-10-03 16:56]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1-x32: [ZFAdd] -> {8FF88D27-7BD0-11D1-BFB7-00AA00262A11} => C:\Program Files (x86)\WinAce\arcext.dll [2007-11-08] (e-merge GmbH) [File not signed]
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4-x32: [ZFAdd] -> {8FF88D27-7BD0-11D1-BFB7-00AA00262A11} => C:\Program Files (x86)\WinAce\arcext.dll [2007-11-08] (e-merge GmbH) [File not signed]
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ca615c91f47053ea\igfxDTCM.dll [2016-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Myšák\Desktop\IS AMČR.lnk -> C:\ProgramData\Oracle\Java\javapath\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://stahnout.archeologickamapa.cz/launch.jnlp "C:\Users\Myšák\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\9c22370-7d9ff41e"
ShortcutWithArgument: C:\Users\Myšák\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IS AMČR\IS AMČR.lnk -> C:\ProgramData\Oracle\Java\javapath\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://stahnout.archeologickamapa.cz/launch.jnlp "C:\Users\Myšák\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\9c22370-7d9ff41e"
ShortcutWithArgument: C:\Users\Myšák\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2017-10-03 16:32 - 2013-07-24 08:24 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2016-06-15 03:36 - 2016-06-15 03:36 - 000050688 _____ (HP Inc.) [File not signed] c:\windows\system32\hpzinw12.dll
2016-06-15 03:36 - 2016-06-15 03:36 - 000066048 _____ (HP Inc.) [File not signed] c:\windows\system32\hpzipm12.dll
2017-10-03 16:32 - 2013-07-25 16:46 - 000708096 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:87C79266 [134]
AlternateDataStreams: C:\Users\Myšák\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Myšák\appdata\local\microsoft\windows\themes\transcodedwallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{5C6785E3-0C4E-47AC-8A54-CE54D8E77DED}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{4BC3DD88-B7DF-4060-BD1A-D4A31E0C4453}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{FE817A01-3DB6-4B29-BF53-9176953892F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HITMAN2\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{D6894697-3EB0-4628-8F0E-65A37DC607D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HITMAN2\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{F32FA6D0-E23D-492B-840E-157BE8A46A52}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{68B8B406-55CF-47C3-ABE8-7209035EA613}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1E1F36F6-5190-41FD-9A8F-28B1D7F37A73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\We Are The Dwarves\watd.exe () [File not signed]
FirewallRules: [{8F9D02ED-B824-44D9-9BD9-DE8DEFFC5067}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\We Are The Dwarves\watd.exe () [File not signed]
FirewallRules: [{A21DDC1C-B0DD-48B0-954D-531C6DED9971}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Railroads\RailRoads.exe (Take-Two Interactive Software, Inc. -> Firaxis Games, Inc)
FirewallRules: [{4C2948F1-70CC-44BA-8A34-C69E6BE80C92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Railroads\RailRoads.exe (Take-Two Interactive Software, Inc. -> Firaxis Games, Inc)
FirewallRules: [{EA81B321-1250-4C4F-B4BF-D78424D4439E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Argonauts\Binaries\RiseOfTheArgonauts.exe () [File not signed]
FirewallRules: [{39F9E910-0D94-4612-A875-CD749B150499}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Argonauts\Binaries\RiseOfTheArgonauts.exe () [File not signed]
FirewallRules: [{11AF27E0-29DC-43A7-AF3B-7ADD393E4D96}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spintires\SpinTires.exe (Oovee Ltd.) [File not signed]
FirewallRules: [{3F7C94FD-2EEE-424F-8DDC-7D81B201E685}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spintires\SpinTires.exe (Oovee Ltd.) [File not signed]
FirewallRules: [UDP Query User{BDC2B83E-28B6-4B97-B30D-8180E0799AEA}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{277E1E11-AE2E-4F46-9308-538DEE50666F}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{A2317759-3CD3-4CA7-9591-A41920DFA3EA}C:\users\myšák\downloads\agisoft_photoscan_professional_1.4.2_build_6185_x64_downloadly.ir\agisoft photoscan professional 1.4.2 build 6185 x64\crack\agisoft_rlm_win_x64\rlm.exe] => (Allow) C:\users\myšák\downloads\agisoft_photoscan_professional_1.4.2_build_6185_x64_downloadly.ir\agisoft photoscan professional 1.4.2 build 6185 x64\crack\agisoft_rlm_win_x64\rlm.exe (Reprise Software Inc.) [File not signed]
FirewallRules: [TCP Query User{AAE55E92-CC34-43BF-8DE1-FD9320F22F63}C:\users\myšák\downloads\agisoft_photoscan_professional_1.4.2_build_6185_x64_downloadly.ir\agisoft photoscan professional 1.4.2 build 6185 x64\crack\agisoft_rlm_win_x64\rlm.exe] => (Allow) C:\users\myšák\downloads\agisoft_photoscan_professional_1.4.2_build_6185_x64_downloadly.ir\agisoft photoscan professional 1.4.2 build 6185 x64\crack\agisoft_rlm_win_x64\rlm.exe (Reprise Software Inc.) [File not signed]
FirewallRules: [UDP Query User{B4D0913C-3BD0-411E-9070-5098289A42BE}C:\users\myšák\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\myšák\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{903BB853-601D-4971-A73B-51C063A5CEC5}C:\users\myšák\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\myšák\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{E0D9D1DE-8D0B-48E9-AAF0-C971D25E5366}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheRoomTwo\TheRoomTwo.exe () [File not signed]
FirewallRules: [{4B82155B-E563-446A-8DA9-B76DFE70AF1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheRoomTwo\TheRoomTwo.exe () [File not signed]
FirewallRules: [{D3B6E498-AACE-4D7C-9E2B-C8515103D531}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheRoom\TheRoom.exe () [File not signed]
FirewallRules: [{2AEBDF11-4A42-4466-8683-C307885922D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheRoom\TheRoom.exe () [File not signed]
FirewallRules: [{64611D86-9F68-46DE-98BE-AE3C2D9E5B78}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{2C1AF3C3-8287-4575-AE4E-284A99832BDA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{82568460-47B2-42E4-A27D-754BFF5112DA}C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe (Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare)
FirewallRules: [TCP Query User{7C1B512F-E0D5-48B2-B45E-BF00D51BDF0D}C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego for android\mobilegoservice.exe (Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare)
FirewallRules: [UDP Query User{04BC9356-5183-4883-B6DF-F9E19B60CB30}C:\users\myšák\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\myšák\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{38E2D121-1647-4042-AEBF-A91520432051}C:\users\myšák\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\myšák\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{ABDC9618-1B67-4A91-B61E-5F875FACDC70}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{71A588EE-18D5-4B06-8939-B6ECF94E2CCF}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{E227EB60-5D53-40CC-A065-58233C37D6E6}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{F33D5A71-15A2-47EC-98B0-51569802A3D5}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{0B85E1AF-0E5F-4743-B169-5B609FE8DB2C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7D3E87BA-1F87-4E88-829F-CA97E76CB4EA}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E1CC8D1F-8F03-4495-BEA9-89DBCE9337FA}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{36CECAB3-9886-4813-B015-37F51C1970F0}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{85507AFE-A4A7-40E7-A68E-4280A18037C9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{55C6B9D9-0004-439F-8517-C674AFE03798}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{61298D27-5545-493E-A1D9-945A31D03259}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{A53711B9-1C26-48B0-8BEA-AFB5980CEFED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Oracle\Oracle.exe () [File not signed]
FirewallRules: [{611B264F-68D6-4C61-A370-5C92F5451A9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Oracle\Oracle.exe () [File not signed]
FirewallRules: [{9350BB51-5FA5-4AFF-A758-449449791F8F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe (Valve Corp. -> Firaxis Games) [File not signed]
FirewallRules: [{42D28C14-6405-47A2-84E2-16E1C93E26C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe (Valve Corp. -> Firaxis Games) [File not signed]
FirewallRules: [{84C2E31F-8EE4-41AC-8F60-3E8B315F3624}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 4\Tropico4.exe (Haemimont Games) [File not signed]
FirewallRules: [{B0A6E641-6D4F-4321-903E-DC2240194C1E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 4\Tropico4.exe (Haemimont Games) [File not signed]
FirewallRules: [{7C1604BC-7766-4854-AC63-A62E98FD41F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks Art of War\dmcr.exe (GSC Game World -> -GSC-)
FirewallRules: [{B53F9821-2AC4-49E8-BB14-CC339E82D4E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks Art of War\dmcr.exe (GSC Game World -> -GSC-)
FirewallRules: [TCP Query User{EE71326C-C232-4FA6-8DB7-943A0EC93CBF}C:\program files (x86)\star conflict\launcher.exe] => (Allow) C:\program files (x86)\star conflict\launcher.exe (Gaijin Entertainment LLP -> Gaijin Entertainment Corp.)
FirewallRules: [UDP Query User{E521167D-9699-4DB5-800A-5D9A0F534BDB}C:\program files (x86)\star conflict\launcher.exe] => (Allow) C:\program files (x86)\star conflict\launcher.exe (Gaijin Entertainment LLP -> Gaijin Entertainment Corp.)
FirewallRules: [TCP Query User{1DE0DF41-8345-422B-91B8-0CA0EE98C2B3}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{49D36792-A852-4D12-8091-B128A531F47D}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{7E7C930E-714F-4A11-BB4D-AD39D96CCDD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{5D23476E-B4A1-4E33-B6E3-613829B8307F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{1F64CD41-BCF4-4D8B-BD8C-2681C3A510D2}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BB49FBCE-FC5A-4114-8119-93B4C149885B}] => (Allow) LPort=2869
FirewallRules: [{75CC9B18-FD38-4501-8947-F8FB1992BE1C}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{1DA5381D-AC13-4C65-B892-F2A13A7C1418}C:\users\myšák\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\myšák\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{241ECCD6-6B79-4979-8718-CDEEA75C6E84}C:\users\myšák\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\myšák\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{1560C520-B044-4538-A2B6-202EC8376D95}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F90B8806-FFF5-4577-8F45-0224B5CCB4EB}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AF004188-60CC-4B52-A096-989DFF0BF0F4}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4E44448E-2727-4AE0-ACDD-0E9A87F803B0}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{58305AC8-6360-4D3B-91AB-31F9E8B0A49B}C:\windows\splwow64.exe] => (Allow) C:\windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{5294722B-E66D-4312-A5E6-7987F615377F}C:\windows\splwow64.exe] => (Allow) C:\windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{89B9A2DF-AC28-4F25-BF11-0C6859943271}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Journeys in Middle-earth\JiME.exe () [File not signed]
FirewallRules: [{95EC0C02-8E3C-4391-BADB-45449FBE54AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Journeys in Middle-earth\JiME.exe () [File not signed]
FirewallRules: [TCP Query User{90783E77-9B77-4A3A-BBDC-DB95AC3E15A1}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{F7B1587E-30CF-4685-ACEB-6C41A7180AE3}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{419572C4-A9F8-4288-88D3-4F073D471598}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{574BC625-DF9D-4D96-B38C-1861EEFB62B2}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{62F4BA7D-91FC-4B73-9CA8-C0EFB61C3B08}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{849913D7-035E-43E0-83CC-ABE58843DAA3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5D845EA0-3D24-4FD9-8714-5524A2FF2AC3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DEC216C1-560D-44A6-9646-B9AB74EA73B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F29E5306-8B37-419F-971F-838437AA878D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6A2B8F23-881F-4929-96B2-48A8A3479025}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CB89812E-2872-44A5-9B3B-81B55B5B16E0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{14BC97EC-BA14-49A4-8382-40AE3BF369C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A005A5BA-C6D0-4975-BA9F-2EFFA92FA67B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9F92EC2B-34A3-4561-884B-5CE78599F156}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

20-11-2019 18:18:46 Naplánovaný kontrolní bod
29-11-2019 07:51:52 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (11/29/2019 03:08:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Lenovo.Modern.ImController.PluginHost.CompanionApp.exe, verze: 1.1.18.3, časové razítko: 0x5d852c0d
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00007ff7fd5c1150
ID chybujícího procesu: 0x2b44
Čas spuštění chybující aplikace: 0x01d5a6be6d421791
Cesta k chybující aplikaci: C:\Program Files\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 0c7bf7f0-7a6c-4702-845e-9ec7039eb037
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/29/2019 11:28:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Lenovo.Modern.ImController.PluginHost.CompanionApp.exe, verze: 1.1.18.3, časové razítko: 0x5d852bfe
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.17763.864, časové razítko: 0xf9f56179
Kód výjimky: 0xe0434352
Posun chyby: 0x001219b2
ID chybujícího procesu: 0x25b8
Čas spuštění chybující aplikace: 0x01d5a69ee4197ebc
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 52452c4c-1824-46e9-b4e2-e043ce3d9cbf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/29/2019 11:28:24 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: Lenovo.Modern.ImController.ImClient.Services.BrokerRequestAgentException
na Lenovo.Modern.ImController.ImClient.Services.BrokerRequestAgent+<GetResponseAsync>d__5.MoveNext()
na System.Runtime.CompilerServices.TaskAwaiter.ThrowForNonSuccess(System.Threading.Tasks.Task)
na System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(System.Threading.Tasks.Task)
na Lenovo.Modern.ImController.ImClient.Services.BrokerRequestAgent+<GetFinalContractResponseAsync>d__6.MoveNext()

Informace o výjimce: System.AggregateException
na System.Threading.Tasks.Task.ThrowIfExceptional(Boolean)
na System.Threading.Tasks.Task`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].GetResultCore(Boolean)
na System.Threading.Tasks.Task`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].get_Result()
na Lenovo.Modern.Plugins.LenovoWiFiSecurityPlugin.Services.NotificationAgent+<>c__DisplayClass6_0+<<SendToastPopupContractRequest>b__0>d.MoveNext()
na System.Runtime.CompilerServices.AsyncMethodBuilderCore+<>c.<ThrowAsync>b__6_1(System.Object)
na System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
na System.Threading.ThreadPoolWorkQueue.Dispatch()
na System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (11/28/2019 06:28:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchUI.exe verze 10.0.17763.719 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1028

Čas spuštění: 01d5a610b8018154

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

ID hlášení: 10d4a698-e8ec-4f90-a84e-1cc5a828e74b

Úplný název balíčku s chybou: Microsoft.Windows.Cortana_1.11.6.17763_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: CortanaUI

Typ zablokování: Activation

Error: (11/28/2019 06:26:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchUI.exe verze 10.0.17763.719 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 4534

Čas spuštění: 01d5a610ebdd3025

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

ID hlášení:

Úplný název balíčku s chybou: Microsoft.Windows.Cortana_1.11.6.17763_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: CortanaUI

Typ zablokování: Quiesce

Error: (11/28/2019 06:22:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: dwm.exe, verze: 10.0.17763.831, časové razítko: 0xd5c9fdea
Název chybujícího modulu: KERNEL32.DLL, verze: 10.0.17763.475, časové razítko: 0x250a0626
Kód výjimky: 0xe0464645
Posun chyby: 0x0000000000017974
ID chybujícího procesu: 0x504
Čas spuštění chybující aplikace: 0x01d5a44c5567062d
Cesta k chybující aplikaci: C:\WINDOWS\system32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNEL32.DLL
ID zprávy: 162f66e0-489c-470c-b167-b639581737d8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/28/2019 09:24:00 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program svchost.exe verze 10.0.17763.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 89c

Čas spuštění: 01d5a44c59811764

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\System32\svchost.exe

ID hlášení: d9ce73c3-24a7-4a40-bac5-033831933c2f

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (11/25/2019 03:39:24 PM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (17028,R,98) WebCacheLocal: Při otevírání souboru protokolu C:\Users\Myšák\AppData\Local\Microsoft\Windows\WebCache\V01.log došlo k chybě -1032 (0xfffffbf8).


System errors:
=============
Error: (11/30/2019 04:29:11 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-N9MT0SG4)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-N9MT0SG4\Myšák (SID: S-1-5-21-2706086993-1054045265-167977901-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2019 03:52:22 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba System Interface Foundation Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (11/30/2019 03:41:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba System Interface Foundation Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (11/30/2019 03:41:28 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.

Error: (11/30/2019 03:41:08 AM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-N9MT0SG4)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-N9MT0SG4\Myšák (SID: S-1-5-21-2706086993-1054045265-167977901-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0 – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2019 03:40:03 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2019 03:40:03 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.SecurityAppBroker
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/30/2019 03:40:02 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2019-08-29 16:22:23.398
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze podpisu: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

CodeIntegrity:
===================================

Date: 2019-11-29 10:11:46.133
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:46.126
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:46.112
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:46.106
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:36.858
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:36.851
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:36.834
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-29 10:11:36.820
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: LENOVO 2WCN29WW 07/12/2017
Motherboard: LENOVO
Processor: Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Percentage of memory in use: 83%
Total physical RAM: 3988.58 MB
Available physical RAM: 675.69 MB
Total Virtual: 9876.58 MB
Available Virtual: 5772.3 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:891.5 GB) (Free:256.11 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.17 GB) NTFS
Drive h: () (Removable) (Total:7.45 GB) (Free:6.04 GB) FAT32

\\?\Volume{7e6da18f-fb31-42f3-8f9f-f6cd0e45ea21}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.52 GB) NTFS
\\?\Volume{0616cddf-09d7-4405-95cb-91b3e92fe0d7}\ (LENOVO_PART) (Fixed) (Total:12.78 GB) (Free:1.75 GB) NTFS
\\?\Volume{95dcfbf0-3b5b-4598-9117-c687710b346f}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 6A360EC5)

Partition: GPT.

==========================================================
Disk: 1 (Size: 7.5 GB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zamrzání počítače

#8 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
AlternateDataStreams: C:\ProgramData\Temp:87C79266 [134]
AlternateDataStreams: C:\Users\Myšák\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\MountPoints2: {3d020510-fd6b-11e7-83f2-a81e8470a3c2} - "E:\HPLauncher.exe"
Task: {18632CF1-C842-4087-A50D-307C55E05FC3} - \Lenovo\ImController\TimeBasedEvents\3cf25edf-9814-443d-b6ef-f899ee69acbf -> No File <==== ATTENTION
Task: {25C15B4D-7E1A-4F10-A1B6-F077CAB762B8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-10-30] (Google Inc -> Google Inc.)
Task: {2E26D5F1-2A60-4EA2-94FC-635D68201017} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {3FC596D2-5E63-4902-9BF6-1429ACFDA63A} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {413D82EF-297F-4AA6-A42D-1A99EC8B4251} - \Lenovo\ImController\TimeBasedEvents\2d0744ce-9d67-48c4-9d18-fb8bf0491084 -> No File <==== ATTENTION
Task: {5156B6E5-F38F-4287-823B-CB05E4BC207B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-10-30] (Google Inc -> Google Inc.)
Task: {70C4D3E5-2687-4D02-9A8D-F769FD79A28F} - \Lenovo\ImController\TimeBasedEvents\832a83ae-f2d8-4c2f-9e27-147223573741 -> No File <==== ATTENTION
Task: {8B38594C-5D0D-43CB-AD6E-4FB42D92621C} - \Lenovo\ImController\TimeBasedEvents\c7e08ac5-10dd-42b6-917e-7e647cb502fc -> No File <==== ATTENTION
Task: {AD7306CB-FC2D-43B0-8E6B-49225C41F83C} - \Lenovo\ImController\TimeBasedEvents\4dfa147a-9e93-4f8a-8c5d-bfdae1912785 -> No File <==== ATTENTION
Task: {AFA97222-16BB-4EFB-AE91-9EDDB58E655E} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {EC7A9321-1D18-4EAF-A945-902394F3DB5A} - \Lenovo\ImController\TimeBasedEvents\f99b99ef-a20f-4a40-b630-b186642c94bd -> No File <==== ATTENTION
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-2706086993-1054045265-167977901-1001 -> DefaultScope {C49EB2A6-E0AC-4761-9F29-6D63A30F38EB} URL =
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.seznam.cz/ ... 2013-02-04 14:34:32&v=14.0.0.14&pid=avg&sg=&sap=hp","hxxp://isearch.avg.com/?cid={1FD6FF67-1F48-4D9D-82E3-AF7824AA2A00}&mid=1aab88c94a2047d69acf59e75b4723f4-9491d5b969a0e4aa1c50e20ede6b1ffb9790a464&lang=cs&ds=AVG&pr=fr&d=2013-02-04 14:34:32&v=14.2.0.1&pid=avg&sg=&sap=hp","hxxps://www.google.com/"
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
Uložte do H:\ jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kukmil
Návštěvník
Návštěvník
Příspěvky: 87
Registrován: 27 pro 2005 16:04

Re: Zamrzání počítače

#9 Příspěvek od kukmil »

Fix result of Farbar Recovery Scan Tool (x64) Version: 25-11-2019 01
Ran by Myšák (30-11-2019 21:06:28) Run:1
Running from H:\
Loaded Profiles: Myšák (Available Profiles: Myšák)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
AlternateDataStreams: C:\ProgramData\Temp:87C79266 [134]
AlternateDataStreams: C:\Users\Myšák\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\...\MountPoints2: {3d020510-fd6b-11e7-83f2-a81e8470a3c2} - "E:\HPLauncher.exe"
Task: {18632CF1-C842-4087-A50D-307C55E05FC3} - \Lenovo\ImController\TimeBasedEvents\3cf25edf-9814-443d-b6ef-f899ee69acbf -> No File <==== ATTENTION
Task: {25C15B4D-7E1A-4F10-A1B6-F077CAB762B8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-10-30] (Google Inc -> Google Inc.)
Task: {2E26D5F1-2A60-4EA2-94FC-635D68201017} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {3FC596D2-5E63-4902-9BF6-1429ACFDA63A} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {413D82EF-297F-4AA6-A42D-1A99EC8B4251} - \Lenovo\ImController\TimeBasedEvents\2d0744ce-9d67-48c4-9d18-fb8bf0491084 -> No File <==== ATTENTION
Task: {5156B6E5-F38F-4287-823B-CB05E4BC207B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-10-30] (Google Inc -> Google Inc.)
Task: {70C4D3E5-2687-4D02-9A8D-F769FD79A28F} - \Lenovo\ImController\TimeBasedEvents\832a83ae-f2d8-4c2f-9e27-147223573741 -> No File <==== ATTENTION
Task: {8B38594C-5D0D-43CB-AD6E-4FB42D92621C} - \Lenovo\ImController\TimeBasedEvents\c7e08ac5-10dd-42b6-917e-7e647cb502fc -> No File <==== ATTENTION
Task: {AD7306CB-FC2D-43B0-8E6B-49225C41F83C} - \Lenovo\ImController\TimeBasedEvents\4dfa147a-9e93-4f8a-8c5d-bfdae1912785 -> No File <==== ATTENTION
Task: {AFA97222-16BB-4EFB-AE91-9EDDB58E655E} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {EC7A9321-1D18-4EAF-A945-902394F3DB5A} - \Lenovo\ImController\TimeBasedEvents\f99b99ef-a20f-4a40-b630-b186642c94bd -> No File <==== ATTENTION
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-2706086993-1054045265-167977901-1001 -> DefaultScope {C49EB2A6-E0AC-4761-9F29-6D63A30F38EB} URL =
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.seznam.cz/ ... 2013-02-04 14:34:32&v=14.0.0.14&pid=avg&sg=&sap=hp","hxxp://isearch.avg.com/?cid={1FD6FF67-1F48-4D9D-82E3-AF7824AA2A00}&mid=1aab88c94a2047d69acf59e75b4723f4-9491d5b969a0e4aa1c50e20ede6b1ffb9790a464&lang=cs&ds=AVG&pr=fr&d=2013-02-04 14:34:32&v=14.2.0.1&pid=avg&sg=&sap=hp","hxxps://www.google.com/"
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\CLVDShellExt => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\CLVDShellExt => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
C:\ProgramData\Temp => ":87C79266" ADS removed successfully
C:\Users\Myšák\OneDrive => ":${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity" ADS could not remove.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKU\S-1-5-21-2706086993-1054045265-167977901-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3d020510-fd6b-11e7-83f2-a81e8470a3c2} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{18632CF1-C842-4087-A50D-307C55E05FC3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{18632CF1-C842-4087-A50D-307C55E05FC3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\3cf25edf-9814-443d-b6ef-f899ee69acbf" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{25C15B4D-7E1A-4F10-A1B6-F077CAB762B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{25C15B4D-7E1A-4F10-A1B6-F077CAB762B8}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2E26D5F1-2A60-4EA2-94FC-635D68201017}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2E26D5F1-2A60-4EA2-94FC-635D68201017}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3FC596D2-5E63-4902-9BF6-1429ACFDA63A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3FC596D2-5E63-4902-9BF6-1429ACFDA63A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{413D82EF-297F-4AA6-A42D-1A99EC8B4251}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{413D82EF-297F-4AA6-A42D-1A99EC8B4251}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\2d0744ce-9d67-48c4-9d18-fb8bf0491084" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5156B6E5-F38F-4287-823B-CB05E4BC207B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5156B6E5-F38F-4287-823B-CB05E4BC207B}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{70C4D3E5-2687-4D02-9A8D-F769FD79A28F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{70C4D3E5-2687-4D02-9A8D-F769FD79A28F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\832a83ae-f2d8-4c2f-9e27-147223573741" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8B38594C-5D0D-43CB-AD6E-4FB42D92621C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8B38594C-5D0D-43CB-AD6E-4FB42D92621C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\c7e08ac5-10dd-42b6-917e-7e647cb502fc" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AD7306CB-FC2D-43B0-8E6B-49225C41F83C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD7306CB-FC2D-43B0-8E6B-49225C41F83C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\4dfa147a-9e93-4f8a-8c5d-bfdae1912785" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AFA97222-16BB-4EFB-AE91-9EDDB58E655E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AFA97222-16BB-4EFB-AE91-9EDDB58E655E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EC7A9321-1D18-4EAF-A945-902394F3DB5A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC7A9321-1D18-4EAF-A945-902394F3DB5A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\f99b99ef-a20f-4a40-b630-b186642c94bd" => removed successfully
"HKU\S-1-5-21-2706086993-1054045265-167977901-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => removed successfully
"HKU\S-1-5-21-2706086993-1054045265-167977901-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"Chrome StartupUrls" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 11034624 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20105052 B
Java, Flash, Steam htmlcache => 195287562 B
Windows/system/drivers => 505717 B
Edge => 9559 B
Chrome => 69023242 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 12630 B
NetworkService => 12630 B
Myšák => 61690801 B

RecycleBin => 0 B
EmptyTemp: => 341.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:09:40 ====
)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zamrzání počítače

#10 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kukmil
Návštěvník
Návštěvník
Příspěvky: 87
Registrován: 27 pro 2005 16:04

Re: Zamrzání počítače

#11 Příspěvek od kukmil »

Změna je v tom, že od doby, co to spolu řešíme komp jede a vůbec nezamrzá. Otestuji složitější operace a dám vědět. Jen se zeptám. Bylo tam něco špatného?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zamrzání počítače

#12 Příspěvek od Rudy »

Bylo. AdWary a potenciálně nechtěný sw odstranil ADW a dočištění přes FRST odstranilo zbytečnosti. Dejte vědět.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kukmil
Návštěvník
Návštěvník
Příspěvky: 87
Registrován: 27 pro 2005 16:04

Re: Zamrzání počítače

#13 Příspěvek od kukmil »

Dobrý den,
zatím vše funguje tak jak má. Od pátku bez zámrzu a vše je rychlejší. Otestoval jsem i složitější operace a ani tak žádný problém. Díky moc. ||Po výplatě zašlu nějakou kačku na provoz fóra.
Díky

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zamrzání počítače

#14 Příspěvek od Rudy »

Za příspěvek předem děkujeme a vy nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno