Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-11-2019
Ran by LuciFafa (administrator) on LUCIFAFA-PC (04-11-2019 13:31:30)
Running from C:\Users\LuciFafa\Downloads
Loaded Profiles: LuciFafa (Available Profiles: LuciFafa)
Platform: Microsoft Windows 10 Home Version 1903 18362.418 (X86) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(Google Inc -> Google LLC) C:\Program Files\Google\Update\1.3.35.302\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files\Google\Update\GoogleUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1001.5.0_x86__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [7519960 2015-01-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [NUSB3MON] => C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3576664 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\...\Run: [AMDDVR] => C:\Program Files\AMD\CNext\CNext\amddvr.exe [1617800 2018-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\78.0.3904.87\Installer\chrmstp.exe [2019-11-02] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2019-11-03]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (AVAST Software s.r.o. -> AVAST Software)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {072CD73B-A177-48F9-A6B7-88BE4AD767C2} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3250056 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {0CA094BA-D37D-4BD1-9B8D-1F4C7EBF760B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {1341ABBB-78DB-4E4D-8A35-5DDA86AF973F} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1770BB4B-35E9-40B1-A407-932BB5969459} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {1CF0C451-0775-4B00-AE47-7DFE8EDAB5AD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-11] (Adobe Inc. -> Adobe)
Task: {1F37C4D6-8AD0-4740-9FBE-A223A8F92C72} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {2A5EB73E-0E29-4E90-8F07-424A175FF490} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {2D547F09-AB9B-458A-BE13-53287865A027} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {310EBAD5-3127-4767-84C7-ED217DDDA5EA} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {37EC1E74-6C44-4B30-A6F1-5AE69C4A7CFF} - System32\Tasks\StartCN => C:\Program Files\AMD\\CNext\CNext\cncmd.exe [43400 2018-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {37F687A7-A1EC-49D0-9C6C-FFF191B2D7E3} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {3A95B8C8-B1C9-402B-ADA9-0FC3D224F57C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3F983359-DF03-40CA-8C66-C8389544BBF5} - System32\Tasks\{002AE781-3C13-4988-9DD7-5C950841373F} => C:\Program Files\Nexon\Nexon Launcher\nexon_launcher.exe
Task: {4482917A-EDAE-4D7D-B621-4E21D0479CEE} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {52A6C2AC-44AE-46B7-87DF-2D58DF54A27F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_270_Plugin.exe [1457720 2019-10-11] (Adobe Inc. -> Adobe)
Task: {53648477-B30C-44F6-9421-2F7FF80DCBE9} - System32\Tasks\StartDVR => C:\Program Files\AMD\\CNext\CNext\dvrcmd.exe [59272 2018-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5F886570-6BD8-4254-8DC1-A38C78CEF3C5} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {62FAB98F-0165-438C-A61C-6C354214A580} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {640E7AD3-7A65-4CB7-9197-ED2BAAFD2945} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6586F9D3-7647-46EB-9249-CBCD4EAF52AE} - System32\Tasks\CrystalDiskInfo => C:\Program Files\CrystalDiskInfo\DiskInfo32.exe [2882208 2018-03-22] (Noriyuki Miyazaki -> Crystal Dew World)
Task: {67F8D0E7-E897-4E22-9258-AFC61361BB1C} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7099E0BC-E0DF-4B78-9C3F-03B1B646C041} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {70CB6F2E-9890-4DBA-9669-7B62A80B6BFE} - System32\Tasks\{2C168AB7-D565-42E8-9497-5F708AEBE37C} => C:\VALOFEEU\CA_Classic\CombatArmsClassic.exe [5496880 2019-08-27] (valofe Co.,Ltd. -> Valofe)
Task: {83482C26-D5B0-4999-8965-1E221E559312} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [155432 2019-10-23] (Google Inc -> Google LLC)
Task: {83CC6E3E-1B1E-46A5-9804-E32CB79B5FA5} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {896F7C2D-C4EA-4A9A-BC21-4E33EA8C2C98} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
Task: {8D5C7F68-16C4-45B4-A8A5-F2E7382AB882} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8E5D4FB0-BC25-4160-9C8A-D8F458BE987F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {920D55A6-C75E-4757-87FD-A2A37D4B1079} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {935CFF16-E68D-466B-B047-C6B70A692112} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {97264EF2-3461-465C-9093-A98DFA9FF727} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9ED3DE3C-4F79-485B-9306-97AFE797BB4E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A7B2DD51-B885-4014-9E5A-9392F4848566} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {AFE2589B-2234-43EF-B0C4-9E8EBF7F9996} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1542536 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {AFFE6A38-F468-4E0C-9AE5-79997B583DF5} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B81AD758-FF6E-4883-9DBE-20865B218B98} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B8B2386F-6E5B-4023-8FFB-FE6F7B837124} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {C00E2B0D-CA13-43CC-937D-F08FC12B4D85} - System32\Tasks\{09BE175D-9DCD-448D-AA34-F529E6EF28EF} => C:\Program Files\Pro Evolution Soccer 2015\PES2015.exe [39109936 2014-11-12] (Konami Digital Entertainment Co., Ltd. -> Konami Digital Entertainment Co., Ltd.) [File not signed]
Task: {D2918185-EB46-4389-A9C2-066839A2C5FE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D5710AD8-16D6-4457-84FA-882F80D8D906} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [155432 2019-10-23] (Google Inc -> Google LLC)
Task: {D81E909E-533E-4591-A6B2-BFF769F0E74C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D88BBE2B-CA68-46BC-BEA7-2DCA2047C6BE} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E54424BD-C227-47D3-BDFE-BADFA377BE33} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E5A10CDF-C165-46D4-92E0-60FE090D47C5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {EC83EB21-36A3-4DB1-8A79-AB8089D77148} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\AVAST Software\SecureLine VPN\VpnUpdate.exe [1390472 2019-11-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {F742D008-A50D-4F4B-B68D-9357ECEAD1C2} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 35 => C:\Program Files\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {FD6432B4-732F-4165-A615-042B4A465273} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{4950ECBA-8D72-493B-A0EB-CA9249133316}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{92FF2636-7489-4F36-B570-14750FE804D3}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{f5521eba-7c81-4192-bb08-29bb54988594}: [NameServer] 100.120.140.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
www.google.com
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://
www.seznam.cz/
SearchScopes: HKU\S-1-5-21-1117677789-4214877554-3075564690-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://
www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
SearchScopes: HKU\S-1-5-21-1117677789-4214877554-3075564690-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://
www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_231\bin\ssv.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
Edge:
======
DownloadDir: C:\Users\LuciFafa\Downloads
FireFox:
========
FF DefaultProfile: o4nlojpb.default-1540287753942
FF ProfilePath: C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942 [2019-11-04]
FF Homepage: Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942 -> hxxps://
www.google.cz/
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942\Extensions\
sp@avast.com.xpi [2019-09-12]
FF Extension: (Avast Online Security) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942\Extensions\
wrc@avast.com.xpi [2019-10-05]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\o4nlojpb.default-1540287753942\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2018-10-24] [UpdateUrl:hxxps://tools.google.com/service/update2/ff?guid=%ITEM_ID%&version=%ITEM_VERSION%&application=%APP_ID%&appversion=%APP_VERSION%]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_270.dll [2019-10-11] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameeu.dll [2018-01-04] (Nexon) [File not signed]
FF Plugin: @ogplanet.com/npOGPPlugin -> C:\Windows\system32\npOGPPlugin.dll [2009-11-19] (OGPlanet -> OGPlanet)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-23] (Google Inc -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-23] (Google Inc -> Google LLC)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default [2019-11-03]
CHR Extension: (Prezentace) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-11-02]
CHR Extension: (Dokumenty) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-11-02]
CHR Extension: (Disk Google) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-11-02]
CHR Extension: (YouTube) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-02]
CHR Extension: (Tabulky) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-11-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-11-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-02]
CHR Extension: (Gmail) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-11-02]
CHR Extension: (Chrome Media Router) - C:\Users\LuciFafa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-02]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [383872 2017-05-16] (Advanced Micro Devices, Inc. -> AMD)
S2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [163328 2018-09-25] () [File not signed]
R2 asComSvc; C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] (ASUSTeK Computer Inc. -> )
R2 AsSysCtrlService; C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] (ASUSTeK Computer Inc. -> ) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5035312 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [859096 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1034584 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5394136 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [7188752 2018-06-22] (Mail.Ru LLC -> LLC Mail.Ru)
S3 npggsvc; C:\Windows\system32\GameMon.des [7986848 2018-03-15] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2018-11-14] (Even Balance, Inc. -> )
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe [6828424 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [2258536 2019-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [85032 2019-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\ct313676.inf_x86_4caaee15f1d03005\atikmdag.sys [32682368 2017-05-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\ct313676.inf_x86_4caaee15f1d03005\atikmpag.sys [415104 2017-05-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S0 amdkmpfd; C:\WINDOWS\System32\DRIVERS\amdkmpfd.sys [40136 2014-10-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [73928 2015-03-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [36040 2015-03-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [14720 2014-07-23] (ASUSTeK Computer Inc. -> )
S3 AsusVBus; C:\WINDOWS\System32\DRIVERS\AsusVBus.sys [33048 2017-01-09] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35512 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [174712 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [224008 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [169408 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [59368 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15792 2019-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [211088 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41200 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [136752 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [95168 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [73312 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [691528 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [394856 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [176760 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [48152 2018-09-07] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [277408 2019-10-05] (AVAST Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT3.sys [82432 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 ATP; C:\WINDOWS\System32\DRIVERS\AsusTP.sys [66872 2017-01-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [252480 2019-10-21] (Bluestack Systems, Inc. -> Bluestack System Inc. )
S0 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [19592 2009-09-24] (IVT SOFTWARE TECHNOLOGY Inc. -> IVT Corporation.)
S3 btnetBUs; C:\WINDOWS\System32\Drivers\btnetBus.sys [22528 2009-09-24] () [File not signed]
R1 ccSet_NST; C:\WINDOWS\system32\drivers\NST\7DE070B0.02A\ccSetx86.sys [127064 2013-09-27] (Symantec Corporation -> Symantec Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [25016 2015-10-14] (Disc Soft Ltd -> Disc Soft Ltd)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [25480 2009-08-26] (IVT SOFTWARE TECHNOLOGY Inc. -> IVT Corporation.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [17352 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv.sys [6456416 2018-06-22] (Mail.Ru LLC -> LLC Mail.Ru)
S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [15688 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] (MiniTool Solution Ltd -> )
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [5120 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 usbfilter; C:\WINDOWS\System32\DRIVERS\usbfilter.sys [48352 2014-02-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15872 2019-09-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [38280 2019-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [275680 2019-10-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [38624 2019-10-30] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [207360 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-03 15:23 - 2019-11-03 21:16 - 000002598 _____ C:\WINDOWS\system32\Tasks\CrystalDiskInfo
2019-11-03 14:54 - 2019-11-03 14:54 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2019-11-03 14:53 - 2019-11-03 14:53 - 000001150 _____ C:\Users\Public\Desktop\Avast SecureLine VPN.lnk
2019-11-03 14:53 - 2018-09-07 08:42 - 000048152 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\aswTap.sys
2019-11-03 14:24 - 2019-11-03 15:00 - 000005448 _____ C:\Users\LuciFafa\Downloads\Fixlog.txt
2019-11-03 13:45 - 2019-11-03 13:45 - 001107968 _____ C:\Users\LuciFafa\Downloads\RSIT(1).exe
2019-11-03 13:43 - 2019-11-03 13:43 - 001619456 _____ (Farbar) C:\Users\LuciFafa\Downloads\FRST64(1).exe
2019-11-03 13:43 - 2019-11-03 13:43 - 001455104 _____ (Farbar) C:\Users\LuciFafa\Downloads\FRST(1).exe
2019-11-03 13:38 - 2019-11-03 13:38 - 001619456 _____ (Farbar) C:\Users\LuciFafa\Downloads\FRST64.exe
2019-11-03 13:34 - 2019-11-03 13:46 - 000043484 _____ C:\Users\LuciFafa\Downloads\Addition.txt
2019-11-03 13:34 - 2019-11-03 13:41 - 000002182 _____ C:\Users\LuciFafa\Documents\fixlist.txt
2019-11-03 13:32 - 2019-11-04 13:33 - 000029970 _____ C:\Users\LuciFafa\Downloads\FRST.txt
2019-11-03 13:30 - 2019-11-03 13:30 - 001455104 _____ (Farbar) C:\Users\LuciFafa\Downloads\FRST.exe
2019-11-03 13:23 - 2019-11-03 13:45 - 000000000 ____D C:\Program Files\trend micro
2019-11-03 13:23 - 2019-11-03 13:23 - 000000000 ____D C:\rsit
2019-11-03 13:22 - 2019-11-03 13:22 - 001107968 _____ C:\Users\LuciFafa\Downloads\RSIT.exe
2019-11-03 13:17 - 2019-11-03 13:17 - 000002182 _____ C:\Users\LuciFafa\Documents\fixlist.txt.txt
2019-11-03 12:20 - 2019-11-03 12:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-1117677789-4214877554-3075564690-1000
2019-11-02 19:45 - 2019-11-02 19:45 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-11-02 19:45 - 2019-11-02 19:45 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-11-02 19:45 - 2019-11-02 19:45 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2019-11-02 19:45 - 2019-11-02 19:45 - 000443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-11-02 19:45 - 2019-11-02 19:45 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-11-02 19:45 - 2019-11-02 19:45 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2019-11-02 19:45 - 2019-11-02 19:45 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2019-11-02 19:45 - 2019-11-02 19:45 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2019-11-02 19:45 - 2019-11-02 19:45 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 018019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 007069200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 007015936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 006517640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 006232064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 005915648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 005865488 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizimg.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 005764872 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 002995200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 002989568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 002777088 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2019-11-02 19:44 - 2019-11-02 19:44 - 002314648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 002258856 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 002138472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-11-02 19:44 - 2019-11-02 19:44 - 002095104 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 002073200 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001973248 _____ C:\WINDOWS\system32\dwmscene.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001909248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001692160 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001659736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001616784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001505320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001473488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001401344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-02 19:44 - 2019-11-02 19:44 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001297936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001273392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001247024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 001244944 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001223680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001178816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001112208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-02 19:44 - 2019-11-02 19:44 - 001077632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 001071112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 001047968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001018552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000981000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000904208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000772656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000745472 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000701424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000682496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-11-02 19:44 - 2019-11-02 19:44 - 000679880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000598024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000568336 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000554384 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000501232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000463272 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000452408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-11-02 19:44 - 2019-11-02 19:44 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000407864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000407560 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000404392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000397328 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000397328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000379840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000361784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd3x40.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000298536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000265528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msltus40.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000236520 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgmgr32.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-02 19:44 - 2019-11-02 19:44 - 000177976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000161592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000150328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000149232 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000142648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000137864 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000135696 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlib.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000116904 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000115240 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ForceSync.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000086528 _____ C:\WINDOWS\system32\ResBParser.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000071992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvvmtransport.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\devrtl.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnppolicy.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000033048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000031248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2019-11-02 19:44 - 2019-11-02 19:44 - 000016912 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizres.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmsgapi.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDKOR.DLL
2019-11-02 19:44 - 2019-11-02 19:44 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000011792 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlibres.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2019-11-02 19:44 - 2019-11-02 19:44 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2019-11-02 19:44 - 2019-11-02 19:44 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 006084048 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 005105152 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 004867400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 004754432 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 004572016 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 003964056 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 003742032 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 003129344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 003042304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 002821120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 002799616 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 002763576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 002439680 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 002373120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 002063872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 001957008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001952360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001913296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001883152 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001562424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001539904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001533952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001468728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001454632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001419776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001334064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 001054872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 001013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000956928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000824120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000818176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000792296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000786040 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000689976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000551224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mousocoreworker.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000506440 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000450360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11on12.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000383984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000375720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\secproc.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000344376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000323896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000319976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000285256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000283688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ManageCI.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000173584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000166952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000160272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000156688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viac7.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000125232 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000105384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000090120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000085008 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000074864 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000057656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uaspstor.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidspi.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000042808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000042792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000035328 _____ C:\WINDOWS\system32\UsbPmApi.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000033792 _____ C:\WINDOWS\system32\Drivers\UsbPmApi.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000029712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2019-11-02 19:43 - 2019-11-02 19:43 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2019-11-02 19:43 - 2019-11-02 19:43 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000023744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32_DeviceGuard.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2019-11-02 19:43 - 2019-11-02 19:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2019-11-02 19:35 - 2019-09-20 05:14 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2019-11-02 18:23 - 2019-11-02 18:23 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\Google
2019-11-02 18:19 - 2019-11-02 18:19 - 000002323 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-02 18:19 - 2019-11-02 18:19 - 000002282 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-11-02 17:57 - 2019-11-02 17:57 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2019-11-02 17:53 - 2019-11-02 17:54 - 001472056 _____ (Google LLC) C:\Users\LuciFafa\Downloads\ChromeSetup.exe
2019-11-02 17:52 - 2019-11-02 18:08 - 895990248 _____ (AndyOS) C:\Users\LuciFafa\Downloads\Andy_47.260_1096_26_x86.exe
2019-11-02 17:42 - 2019-11-02 17:45 - 1037019670 _____ C:\Users\LuciFafa\Downloads\cloudready-free-76.4.69-64-bit.zip
2019-11-02 17:41 - 2019-11-02 17:41 - 046735120 _____ C:\Users\LuciFafa\Downloads\cloudready-usb-maker.exe
2019-11-02 17:41 - 2019-11-02 17:41 - 000000038 _____ C:\Users\LuciFafa\AppData\Local\cloudready_installer_uuid
2019-11-02 17:41 - 2019-11-02 17:41 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\neverware
2019-11-02 16:41 - 2019-11-02 16:41 - 000002167 _____ C:\Users\LuciFafa\Desktop\Sniper 3D.lnk
2019-11-02 16:39 - 2019-11-02 16:39 - 000007059 _____ C:\Users\LuciFafa\-1.14-windows.xml
2019-11-01 12:18 - 2019-11-02 13:50 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-10-29 18:57 - 2019-10-29 18:57 - 000002135 _____ C:\Users\LuciFafa\Desktop\Legends.lnk
2019-10-29 18:43 - 2019-11-03 21:16 - 000002966 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2019-10-29 18:39 - 2019-10-29 18:39 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2019-10-29 18:39 - 2019-10-29 18:39 - 000002065 _____ C:\Users\Public\Desktop\BlueStacks Multi-Instance Manager.lnk
2019-10-29 18:39 - 2019-10-29 18:39 - 000001782 _____ C:\Users\Public\Desktop\BlueStacks.lnk
2019-10-29 18:39 - 2019-10-29 18:39 - 000001764 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2019-10-29 18:37 - 2019-10-29 18:39 - 000000000 ____D C:\ProgramData\BlueStacks
2019-10-29 18:37 - 2019-10-29 18:37 - 000000000 ____D C:\Program Files\BlueStacks
2019-10-29 18:35 - 2019-10-29 18:37 - 000000000 ____D C:\Users\Public\BlueStacks
2019-10-29 18:35 - 2019-10-29 18:37 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\BlueStacksSetup
2019-10-29 18:35 - 2019-10-29 18:37 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\BlueStacks
2019-10-29 18:34 - 2019-10-29 18:35 - 000938720 _____ (BlueStack Systems Inc.) C:\Users\LuciFafa\Downloads\BlueStacksInstaller_4.140.12.1002_native_e06138a23cbe0b63ee4ff51185315a46_TmluamEgVHVydGxlczogTGVnZW5kcw==.exe
2019-10-28 16:17 - 2019-10-28 16:17 - 000001247 _____ C:\Users\LuciFafa\Desktop\Já-padouch-1-(CZ) – zástupce.lnk
2019-10-28 16:09 - 2019-10-28 16:09 - 007622344 _____ (Malwarebytes) C:\Users\LuciFafa\Downloads\adwcleaner_7.4.2.exe
2019-10-23 18:07 - 2019-10-23 18:07 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2019-10-23 18:07 - 2019-10-23 18:07 - 000002241 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2019-10-23 18:07 - 2019-10-23 18:07 - 000000000 ____D C:\Users\LuciFafa\AppData\LocalLow\Google
2019-10-23 18:06 - 2019-10-23 18:06 - 001472056 _____ (Google LLC) C:\Users\LuciFafa\Downloads\GoogleEarthProSetup.exe
2019-10-22 17:49 - 2019-11-03 13:42 - 000010234 _____ C:\Users\LuciFafa\Documents\Fixlog.txt
2019-10-21 16:31 - 2019-10-21 16:33 - 000041928 _____ C:\Users\LuciFafa\Documents\Addition.txt
2019-10-21 16:29 - 2019-11-04 13:32 - 000000000 ____D C:\FRST
2019-10-21 16:29 - 2019-10-21 16:33 - 000039505 _____ C:\Users\LuciFafa\Documents\FRST.txt
2019-10-21 16:23 - 2019-10-21 16:23 - 001617408 _____ (Farbar) C:\Users\LuciFafa\Desktop\FRST64.exe
2019-10-18 07:46 - 2019-10-18 07:46 - 000112696 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2019-10-18 07:46 - 2019-10-18 07:46 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\Sun
2019-10-18 07:46 - 2019-10-18 07:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-10-18 07:46 - 2019-10-18 07:46 - 000000000 ____D C:\Program Files\Common Files\Oracle
2019-10-18 07:46 - 2019-10-18 07:46 - 000000000 ____D C:\Program Files\Common Files\Java
2019-10-18 07:45 - 2019-10-18 07:45 - 002066464 _____ (Oracle Corporation) C:\Users\LuciFafa\Downloads\JavaSetup8u231.exe
2019-10-18 07:45 - 2019-10-18 07:45 - 000000000 ____D C:\Program Files\Java
2019-10-18 07:31 - 2019-10-18 07:31 - 000002097 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-10-18 07:31 - 2019-10-18 07:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-10-18 07:31 - 2019-09-30 05:25 - 000129056 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae.sys
2019-10-18 07:31 - 2019-06-26 12:00 - 000017352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-10-17 12:48 - 2019-10-17 12:49 - 000000000 ____D C:\AdwCleaner
2019-10-17 12:18 - 2019-10-17 12:29 - 000000000 ____D C:\Users\LuciFafa\Documents\Nová složka (2)
2019-10-05 14:28 - 2019-11-02 13:54 - 000136752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-10-05 14:28 - 2019-10-05 14:28 - 000176760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-10-05 14:28 - 2019-10-05 14:27 - 000305032 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-04 13:31 - 2016-11-18 15:12 - 000000000 ____D C:\Users\LuciFafa\AppData\LocalLow\Mozilla
2019-11-04 13:30 - 2017-09-05 08:37 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\AVAST Software
2019-11-04 13:29 - 2018-10-23 10:17 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\CrashDumps
2019-11-03 21:16 - 2019-09-06 19:48 - 000002312 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2019-11-03 21:16 - 2019-09-06 19:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2019-11-03 21:02 - 2019-03-19 03:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-03 15:08 - 2019-09-06 19:41 - 001839106 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-03 15:08 - 2019-03-19 08:13 - 000764824 _____ C:\WINDOWS\system32\perfh005.dat
2019-11-03 15:08 - 2019-03-19 08:13 - 000169506 _____ C:\WINDOWS\system32\perfc005.dat
2019-11-03 15:08 - 2019-03-19 03:44 - 000000000 ____D C:\WINDOWS\INF
2019-11-03 15:08 - 2015-10-22 06:41 - 000000000 ____D C:\ProgramData\AVAST Software
2019-11-03 15:02 - 2019-09-06 19:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-03 15:02 - 2019-03-19 03:35 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-11-03 15:02 - 2015-09-25 11:42 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-11-03 14:53 - 2018-03-06 17:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-11-03 14:53 - 2018-02-14 14:40 - 000000000 ____D C:\Program Files\AVAST Software
2019-11-03 12:19 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-11-03 12:17 - 2019-09-06 19:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-03 10:20 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-03 10:18 - 2019-09-06 19:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-03 10:18 - 2019-09-06 19:49 - 000000000 ___RD C:\Users\LuciFafa\3D Objects
2019-11-03 10:16 - 2019-09-06 19:34 - 000274608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\SystemResources
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-02 23:13 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-02 19:55 - 2015-09-29 15:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-02 19:50 - 2019-03-19 03:35 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-02 19:50 - 2015-09-29 15:22 - 124046008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-02 18:28 - 2015-09-25 11:34 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\Google
2019-11-02 18:19 - 2015-09-25 11:34 - 000000000 ____D C:\Program Files\Google
2019-11-02 16:39 - 2019-09-06 19:42 - 000000000 ____D C:\Users\LuciFafa
2019-11-02 14:06 - 2019-09-06 20:07 - 000000000 ____D C:\ProgramData\Packages
2019-11-02 14:06 - 2019-03-19 03:46 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-02 13:50 - 2015-09-26 07:21 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2019-11-01 14:38 - 2015-09-26 07:21 - 000001109 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-11-01 10:57 - 2015-09-26 07:36 - 000606264 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-11-01 10:42 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-10-30 08:23 - 2019-09-06 19:48 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-10-30 08:23 - 2019-03-19 03:46 - 000000000 ____D C:\Program Files\Windows Defender
2019-10-28 21:26 - 2015-12-26 20:36 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\AIMP
2019-10-28 16:33 - 2019-01-15 11:21 - 000001038 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-10-26 18:28 - 2019-09-06 19:48 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2019-10-25 19:41 - 2019-09-06 19:56 - 000002922 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1117677789-4214877554-3075564690-1000
2019-10-25 19:41 - 2019-09-06 19:48 - 000003450 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-25 19:41 - 2019-09-06 19:48 - 000003226 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-25 19:41 - 2019-09-06 19:48 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-25 19:41 - 2019-09-06 19:48 - 000002264 _____ C:\WINDOWS\system32\Tasks\StartCN
2019-10-25 19:41 - 2019-09-06 19:48 - 000002186 _____ C:\WINDOWS\system32\Tasks\{09BE175D-9DCD-448D-AA34-F529E6EF28EF}
2019-10-25 19:41 - 2019-09-06 19:48 - 000002178 _____ C:\WINDOWS\system32\Tasks\StartDVR
2019-10-18 07:31 - 2019-03-19 03:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-10-17 12:50 - 2019-01-15 11:21 - 000000000 ____D C:\Program Files\CCleaner
2019-10-14 19:32 - 2015-09-29 16:33 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\ElevatedDiagnostics
2019-10-11 07:38 - 2019-09-06 19:48 - 000004654 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2019-10-11 07:38 - 2019-09-06 19:48 - 000004478 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2019-10-11 07:38 - 2019-04-10 08:27 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\Adobe
2019-10-11 07:37 - 2019-03-19 03:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-10-10 12:23 - 2019-09-06 19:56 - 000000000 ___RD C:\Users\LuciFafa\OneDrive
2019-10-10 12:23 - 2019-09-06 19:42 - 000002415 _____ C:\Users\LuciFafa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-07 12:10 - 2015-09-29 18:05 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\vlc
2019-10-05 14:39 - 2015-09-29 18:03 - 000001101 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-10-05 14:38 - 2015-10-05 13:40 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-10-05 14:38 - 2015-10-05 13:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-10-05 14:38 - 2015-10-05 13:40 - 000000000 ____D C:\Program Files\WinRAR
2019-10-05 14:28 - 2018-02-14 14:40 - 000691528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-10-05 14:28 - 2018-02-14 14:40 - 000394856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-10-05 14:28 - 2018-02-14 14:40 - 000277408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-10-05 14:27 - 2019-09-09 18:30 - 000015792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-10-05 14:27 - 2019-02-19 11:21 - 000211088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-10-05 14:27 - 2019-01-16 12:00 - 000224008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-10-05 14:27 - 2019-01-16 12:00 - 000169408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-10-05 14:27 - 2019-01-16 12:00 - 000059368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-10-05 14:27 - 2019-01-16 12:00 - 000035512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-10-05 14:27 - 2018-10-16 09:06 - 000041200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-10-05 14:27 - 2018-02-14 14:40 - 000174712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-10-05 14:27 - 2018-02-14 14:40 - 000095168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-10-05 14:27 - 2018-02-14 14:40 - 000073312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
==================== Files in the root of some directories ========
2016-06-03 14:03 - 2016-06-03 14:03 - 000000603 _____ () C:\Program Files\Blacklight Retribution_enUpdaterLog.txt
2016-06-03 14:01 - 2017-10-17 18:38 - 000022328 _____ () C:\Users\LuciFafa\AppData\Roaming\PnkBstrK.sys
2019-11-02 17:41 - 2019-11-02 17:41 - 000000038 _____ () C:\Users\LuciFafa\AppData\Local\cloudready_installer_uuid
2015-09-28 09:38 - 2018-10-03 07:50 - 000007602 _____ () C:\Users\LuciFafa\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
tak snad se to povedlo jen při rar. mi to napsalo že nebylo možno otevřít tak nevím zda se to povedlo či nikoliv tu je link 
jsem ráda že se to dotáhlo do zdarného konce. Děkuji za ochotu a trpělivost vím že to semnou nebyvá jednoduché 
Tak este upraceme po pouzitych nastrojoch: