VIRY.CZ

Dobrý den prosím o kontrolu pc

Logfile of random's system information tool 1.10 (written by random/random)
Run by Zdenek at 2018-01-15 19:40:29
Microsoft Windows 10 Pro
System drive C: has 169 GB (35%) free of 476 GB
Total RAM: 2038 MB (23% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:40:31, on 15.1.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0192)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IObit\Smart Defrag\SmartDefrag.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Program Files\DU Meter\DUMeter.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\System32\smartscreen.exe
C:\WINDOWS\explorer.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\DllHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
C:\Users\Zdenek\Downloads\RSIT.exe
C:\Program Files\trend micro\Zdenek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SecurityHealth] %ProgramFiles%\Windows Defender\MSASCuiL.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DU Meter] C:\Program Files\DU Meter\DUMeter.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [ProductUpdater] C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Zdenek\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'DefaultAppPool')
O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'DefaultAppPool')
O4 - Global Startup: Avast Cleanup Premium.lnk = C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Cleanup Premium (CleanupPSvc) - AVAST Software - C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: IObit Uninstaller Service (IObitUnSvr) - IObit - C:\Program Files\IObit\IObit Uninstaller\IUService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

--
End of file - 6724 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Uninstaller_SkipUac_Zdenek.job - C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22 759072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-06 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-06 186944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 488344]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2017-08-10 16553472]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-12-21 246120]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"DU Meter"=C:\Program Files\DU Meter\DUMeter.exe [2005-02-01 1469952]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"ProductUpdater"=C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [2017-08-07 80896]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2017-03-15 587288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Zdenek\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-12-14 1551048]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2017-12-13 7972528]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Avast Cleanup Premium.lnk - C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"VIDC.FMVC"=fmcodec.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-01-15 19:35:26 ----DC---- C:\rsit
2018-01-15 19:35:26 ----D---- C:\Program Files\trend micro
2018-01-15 14:22:46 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-01-10 02:01:10 ----D---- C:\WINDOWS\Minidump
2018-01-09 05:14:17 ----D---- C:\ProgramData\SWCUTemp
2018-01-09 03:45:41 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-01-09 03:45:41 ----A---- C:\WINDOWS\system32\services.exe
2018-01-09 03:45:41 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-01-09 03:45:41 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-01-09 03:45:40 ----A---- C:\WINDOWS\system32\wmp.dll
2018-01-09 03:45:40 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-01-09 03:45:38 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-01-09 03:45:38 ----A---- C:\WINDOWS\system32\halmacpi.dll
2018-01-09 03:45:38 ----A---- C:\WINDOWS\system32\hal.dll
2018-01-09 03:45:38 ----A---- C:\WINDOWS\system32\actxprxy.dll
2018-01-09 03:45:37 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-01-09 03:45:37 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-01-09 03:45:37 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-01-09 03:45:37 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2018-01-09 03:45:37 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2018-01-09 03:45:36 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-01-09 03:45:36 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-01-09 03:45:36 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2018-01-09 03:45:35 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-01-09 03:45:31 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-01-09 03:45:31 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-01-09 03:45:31 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-01-09 03:45:31 ----A---- C:\WINDOWS\system32\jscript.dll
2018-01-09 03:45:31 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-01-09 03:45:31 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-01-09 03:45:29 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-01-09 03:45:29 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-01-09 03:45:29 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-01-09 03:45:29 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-01-09 03:45:29 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-01-09 03:45:29 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-01-09 03:45:28 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2018-01-09 03:45:27 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-01-09 03:45:27 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-01-09 03:45:27 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-01-09 03:45:27 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-01-09 03:45:27 ----A---- C:\WINDOWS\explorer.exe
2018-01-09 03:45:26 ----A---- C:\WINDOWS\system32\wininet.dll
2018-01-09 03:45:26 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-01-09 03:45:25 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2018-01-09 03:45:24 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2018-01-09 03:45:24 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-01-09 03:45:24 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-01-09 03:45:24 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-01-09 03:45:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-01-09 03:45:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-01-09 03:45:24 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2018-01-09 03:45:22 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2018-01-09 03:45:22 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-01-09 03:45:21 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-01-09 03:45:20 ----A---- C:\WINDOWS\system32\reseteng.dll
2018-01-09 03:45:20 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-01-09 03:45:20 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-01-09 03:45:19 ----A---- C:\WINDOWS\system32\wwansvc.dll
2018-01-09 03:45:19 ----A---- C:\WINDOWS\system32\runexehelper.exe
2018-01-09 03:45:19 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-01-09 03:45:18 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2018-01-09 03:45:18 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-01-09 03:45:18 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2018-01-09 03:45:17 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2018-01-09 03:45:17 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-01-09 03:45:17 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-01-09 03:45:17 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2018-01-09 03:45:17 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-01-09 03:45:16 ----A---- C:\WINDOWS\system32\msIso.dll
2018-01-09 03:45:16 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-01-09 03:45:14 ----A---- C:\WINDOWS\system32\schedsvc.dll
2018-01-09 03:45:14 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2018-01-09 03:45:14 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2018-01-09 03:45:14 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-01-09 03:45:14 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-01-09 03:45:13 ----A---- C:\WINDOWS\system32\shell32.dll
2018-01-09 03:45:13 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2018-01-09 03:45:11 ----A---- C:\WINDOWS\system32\wlansec.dll
2018-01-09 03:45:11 ----A---- C:\WINDOWS\system32\winload.exe
2018-01-09 03:45:11 ----A---- C:\WINDOWS\system32\vac.exe
2018-01-09 03:45:11 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2018-01-09 03:45:10 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-09 03:45:09 ----A---- C:\WINDOWS\system32\sspicli.dll
2018-01-09 03:45:09 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2018-01-09 03:45:09 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2018-01-09 03:45:08 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-01-09 03:45:08 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-01-09 03:45:08 ----A---- C:\WINDOWS\system32\CPFilters.dll
2018-01-09 03:45:08 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-01-09 03:45:08 ----A---- C:\WINDOWS\system32\atmfd.dll
2018-01-09 03:45:07 ----A---- C:\WINDOWS\system32\UserDataService.dll
2018-01-09 03:45:07 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-01-09 03:45:07 ----A---- C:\WINDOWS\system32\InputService.dll
2018-01-09 03:45:07 ----A---- C:\WINDOWS\system32\drivers\bam.sys
2018-01-09 03:45:06 ----A---- C:\WINDOWS\system32\winresume.exe
2018-01-09 03:45:06 ----A---- C:\WINDOWS\system32\sysmain.dll
2018-01-09 03:45:06 ----A---- C:\WINDOWS\system32\provtool.exe
2018-01-09 03:45:06 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-01-09 03:45:06 ----A---- C:\WINDOWS\system32\EncDec.dll
2018-01-09 03:45:05 ----A---- C:\WINDOWS\system32\ole32.dll
2018-01-09 03:45:05 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-01-09 03:45:04 ----A---- C:\WINDOWS\system32\winlogon.exe
2018-01-09 03:45:04 ----A---- C:\WINDOWS\system32\ieui.dll
2018-01-09 03:45:03 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-01-09 03:45:03 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2018-01-09 03:45:03 ----A---- C:\WINDOWS\system32\provhandlers.dll
2018-01-09 03:45:03 ----A---- C:\WINDOWS\system32\advapi32.dll
2018-01-09 03:45:02 ----A---- C:\WINDOWS\system32\systemreset.exe
2018-01-09 03:45:02 ----A---- C:\WINDOWS\system32\rdpbase.dll
2018-01-09 03:45:02 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-01-09 03:45:02 ----A---- C:\WINDOWS\system32\inetcomm.dll
2018-01-09 03:45:02 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2018-01-09 03:45:01 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-01-09 03:45:01 ----A---- C:\WINDOWS\system32\mfps.dll
2018-01-09 03:45:01 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2018-01-09 03:45:01 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-01-09 03:45:01 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-01-09 03:45:00 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-09 03:45:00 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-01-09 03:45:00 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2018-01-09 03:45:00 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-01-09 03:45:00 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2018-01-09 03:45:00 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\wscapi.dll
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\vmbuspipe.dll
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\rmclient.dll
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\efscore.dll
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\drivers\vmstorfl.sys
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\drivers\netbios.sys
2018-01-09 03:44:59 ----A---- C:\WINDOWS\system32\drivers\Diskdump.sys
2018-01-09 03:44:58 ----A---- C:\WINDOWS\system32\msvcp110_win.dll
2018-01-09 03:44:58 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys
2018-01-09 03:44:58 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2018-01-09 03:44:58 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-01-09 03:44:58 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2018-01-09 03:44:58 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2018-01-09 03:44:58 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2018-01-09 03:44:57 ----A---- C:\WINDOWS\system32\wwapi.dll
2018-01-09 03:44:57 ----A---- C:\WINDOWS\system32\wshhyperv.dll
2018-01-09 03:44:57 ----A---- C:\WINDOWS\system32\logoncli.dll
2018-01-09 03:44:57 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2018-01-09 03:44:57 ----A---- C:\WINDOWS\system32\drivers\vdrvroot.sys
2018-01-09 03:44:57 ----A---- C:\WINDOWS\system32\drivers\storvsc.sys
2018-01-09 03:44:57 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2018-01-09 03:44:57 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2018-01-09 03:44:57 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2018-01-09 03:44:56 ----A---- C:\WINDOWS\system32\spoolsv.exe
2018-01-09 03:44:56 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2018-01-09 03:44:56 ----A---- C:\WINDOWS\system32\nshhttp.dll
2018-01-09 03:44:56 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2018-01-09 03:44:56 ----A---- C:\WINDOWS\system32\drivers\fs_rec.sys
2018-01-09 03:44:56 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2018-01-09 03:44:56 ----A---- C:\WINDOWS\system32\cldapi.dll
2018-01-09 03:44:56 ----A---- C:\WINDOWS\system32\APHostService.dll
2018-01-09 03:44:55 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-01-09 03:44:55 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-01-09 03:44:55 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2018-01-09 03:44:55 ----A---- C:\WINDOWS\system32\p2psvc.dll
2018-01-09 03:44:55 ----A---- C:\WINDOWS\system32\icfupgd.dll
2018-01-09 03:44:55 ----A---- C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
2018-01-09 03:44:55 ----A---- C:\WINDOWS\system32\drivers\raspptp.sys
2018-01-09 03:44:55 ----A---- C:\WINDOWS\system32\drivers\pcw.sys
2018-01-09 03:44:55 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2018-01-09 03:44:55 ----A---- C:\WINDOWS\system32\AboutSettingsHandlers.dll
2018-01-09 03:44:54 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2018-01-09 03:44:54 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2018-01-09 03:44:54 ----A---- C:\WINDOWS\system32\container.dll
2018-01-09 03:44:54 ----A---- C:\WINDOWS\system32\appinfo.dll
2018-01-09 03:44:48 ----A---- C:\WINDOWS\system32\provengine.dll
2018-01-09 03:44:48 ----A---- C:\WINDOWS\system32\P2P.dll
2018-01-09 03:44:48 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-01-09 03:44:47 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-01-09 03:44:47 ----A---- C:\WINDOWS\system32\webcheck.dll
2018-01-09 03:44:47 ----A---- C:\WINDOWS\system32\SensorService.dll
2018-01-09 03:44:47 ----A---- C:\WINDOWS\system32\NaturalAuth.dll
2018-01-09 03:44:47 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-01-09 03:44:47 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-01-09 03:44:47 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-01-09 03:44:47 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2018-01-09 03:44:46 ----A---- C:\WINDOWS\system32\wcncsvc.dll
2018-01-09 03:44:46 ----A---- C:\WINDOWS\system32\WcnApi.dll
2018-01-09 03:44:46 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2018-01-09 03:44:46 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2018-01-09 03:44:46 ----A---- C:\WINDOWS\system32\PeerDistSvc.dll
2018-01-09 03:44:46 ----A---- C:\WINDOWS\system32\nlasvc.dll
2018-01-09 03:44:46 ----A---- C:\WINDOWS\system32\nlaapi.dll
2018-01-09 03:44:46 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-01-09 03:44:46 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\wscproxystub.dll
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\Unistore.dll
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\rasauto.dll
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\provdatastore.dll
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\ncsi.dll
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\msoert2.dll
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\dxtrans.dll
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\drivers\RfxVmt.sys
2018-01-09 03:44:45 ----A---- C:\WINDOWS\system32\drivers\Dumpstorport.sys
2018-01-09 03:44:44 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2018-01-09 03:44:44 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-01-09 03:44:44 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-01-09 03:44:44 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-01-09 03:44:44 ----A---- C:\WINDOWS\system32\occache.dll
2018-01-09 03:44:44 ----A---- C:\WINDOWS\system32\mshtmled.dll
2018-01-09 03:44:44 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2018-01-09 03:44:44 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2018-01-09 03:44:43 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2018-01-09 03:44:43 ----A---- C:\WINDOWS\system32\url.dll
2018-01-09 03:44:43 ----A---- C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2018-01-09 03:44:43 ----A---- C:\WINDOWS\system32\jsproxy.dll
2018-01-09 03:44:43 ----A---- C:\WINDOWS\system32\iepeers.dll
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\wextract.exe
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\pngfilt.dll
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\keepaliveprovider.dll
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\inseng.dll
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\imgutil.dll
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\iexpress.exe
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\iesysprep.dll
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\iesetup.dll
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2018-01-09 03:44:42 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\usermgr.dll
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\PhoneService.dll
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\mshta.exe
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\licmgr10.dll
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\kerberos.dll
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\iernonce.dll
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2018-01-09 03:44:41 ----A---- C:\WINDOWS\system32\atmlib.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\wkssvc.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\taskcomp.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\SyncController.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\srvsvc.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\SessEnv.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\ncbservice.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\mqqm.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\icsvcext.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\dot3svc.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2018-01-09 03:44:40 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\wscsvc.dll
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\wc_storage.dll
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\icsvc.dll
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2018-01-09 03:44:39 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\sysntfy.dll
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\httpprxm.dll
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\drivers\irda.sys
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\certprop.dll
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\adhsvc.dll
2018-01-09 03:44:38 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\vmictimeprovider.dll
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\virtdisk.dll
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\offreg.dll
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\LicenseManagerSvc.dll
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\hlink.dll
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\fdPnp.dll
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\drivers\Synth3dVsc.sys
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\drivers\lltdio.sys
2018-01-09 03:44:37 ----A---- C:\WINDOWS\system32\drivers\dmvsc.sys
2018-01-09 03:44:36 ----A---- C:\WINDOWS\system32\nsisvc.dll
2018-01-09 03:44:36 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2018-01-09 03:44:36 ----A---- C:\WINDOWS\system32\keyiso.dll
2018-01-09 03:44:36 ----A---- C:\WINDOWS\system32\efssvc.dll
2018-01-09 03:44:36 ----A---- C:\WINDOWS\system32\efslsaext.dll
2018-01-09 03:44:36 ----A---- C:\WINDOWS\system32\drivers\storqosflt.sys
2018-01-09 03:44:36 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2018-01-09 03:44:36 ----A---- C:\WINDOWS\system32\drivers\ndisuio.sys
2018-01-09 03:44:36 ----A---- C:\WINDOWS\system32\drivers\HyperVideo.sys
2018-01-09 03:44:35 ----A---- C:\WINDOWS\system32\wmiprop.dll
2018-01-09 03:44:35 ----A---- C:\WINDOWS\system32\msrating.dll
2018-01-09 03:44:35 ----A---- C:\WINDOWS\system32\drivers\VMBusHID.sys
2018-01-09 03:44:35 ----A---- C:\WINDOWS\system32\drivers\rdpbus.sys
2018-01-09 03:44:35 ----A---- C:\WINDOWS\system32\drivers\rasacd.sys
2018-01-09 03:44:35 ----A---- C:\WINDOWS\system32\drivers\mqac.sys
2018-01-09 03:44:34 ----A---- C:\WINDOWS\system32\fdWNet.dll
2018-01-09 03:44:34 ----A---- C:\WINDOWS\system32\drivers\vms3cap.sys
2018-01-09 03:44:34 ----A---- C:\WINDOWS\system32\drivers\vmgid.sys
2018-01-09 03:44:34 ----A---- C:\WINDOWS\system32\drivers\vmgencounter.sys
2018-01-09 03:44:34 ----A---- C:\WINDOWS\system32\drivers\hyperkbd.sys
2018-01-09 03:44:33 ----A---- C:\WINDOWS\system32\nrpsrv.dll
2018-01-09 03:44:33 ----A---- C:\WINDOWS\system32\drivers\gpuenergydrv.sys
2018-01-09 03:44:33 ----A---- C:\WINDOWS\system32\drivers\beep.sys
2018-01-09 03:44:32 ----A---- C:\WINDOWS\system32\drivers\null.sys
2018-01-04 08:52:50 ----D---- C:\Users\Zdenek\AppData\Roaming\Avast Tuneup
2017-12-21 17:30:15 ----A---- C:\WINDOWS\system32\drivers\aswHdsKe.sys
2017-12-21 17:30:15 ----A---- C:\WINDOWS\system32\drivers\aswad686cb00d8e3004.tmp

======List of files/folders modified in the last 1 month======

9999-12-01 23:14:28 ----D---- C:\Users\Zdenek\AppData\Roaming\ProductData
2018-01-15 19:39:26 ----D---- C:\WINDOWS\Prefetch
2018-01-15 19:35:26 ----RD---- C:\Program Files
2018-01-15 19:34:56 ----D---- C:\WINDOWS\Temp
2018-01-15 19:22:19 ----D---- C:\WINDOWS\system32\SleepStudy
2018-01-15 19:03:00 ----D---- C:\WINDOWS\system32\sru
2018-01-15 14:25:23 ----D---- C:\WINDOWS\system32\config
2018-01-15 14:23:32 ----D---- C:\WINDOWS\system32\drivers
2018-01-15 14:23:28 ----D---- C:\WINDOWS\system32\Tasks
2018-01-15 14:22:46 ----D---- C:\WINDOWS\System32
2018-01-15 12:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2018-01-15 08:55:06 ----D---- C:\WINDOWS\DeliveryOptimization
2018-01-15 08:54:12 ----D---- C:\WINDOWS\AppReadiness
2018-01-15 08:54:11 ----HD---- C:\Program Files\WindowsApps
2018-01-15 08:12:58 ----RD---- C:\WINDOWS\Microsoft.NET
2018-01-14 22:57:53 ----D---- C:\Users\Zdenek\AppData\Roaming\vlc
2018-01-14 08:07:40 ----D---- C:\WINDOWS\Logs
2018-01-14 00:00:50 ----D---- C:\WINDOWS\system32\catroot2
2018-01-14 00:00:48 ----SHD---- C:\System Volume Information
2018-01-12 02:03:29 ----D---- C:\ProgramData\ProductData
2018-01-11 20:30:19 ----D---- C:\WINDOWS\system32\DriverStore
2018-01-11 20:30:14 ----D---- C:\WINDOWS\WinSxS
2018-01-11 04:19:21 ----A---- C:\WINDOWS\system32\drivers\aswc0afbe1e4ffc75dc.tmp
2018-01-11 04:19:21 ----A---- C:\WINDOWS\system32\drivers\asw6473aba5d06a7141.tmp
2018-01-11 04:15:52 ----D---- C:\WINDOWS\rescache
2018-01-10 02:23:04 ----RD---- C:\WINDOWS\assembly
2018-01-10 02:20:37 ----D---- C:\Windows
2018-01-10 02:17:16 ----D---- C:\WINDOWS\system32\MRT
2018-01-10 02:14:47 ----D---- C:\WINDOWS\debug
2018-01-10 02:14:43 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-01-10 02:14:37 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-01-10 02:14:31 ----SHD---- C:\WINDOWS\Installer
2018-01-10 02:14:29 ----SHD---- C:\Config.Msi
2018-01-10 02:14:29 ----D---- C:\ProgramData\Microsoft Help
2018-01-10 02:14:08 ----D---- C:\WINDOWS\CbsTemp
2018-01-10 02:10:54 ----D---- C:\WINDOWS\INF
2018-01-10 02:08:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-09 05:14:17 ----HD---- C:\ProgramData
2018-01-09 05:12:12 ----SHD---- C:\Boot
2018-01-09 05:08:37 ----D---- C:\WINDOWS\TextInput
2018-01-09 05:08:36 ----SD---- C:\WINDOWS\system32\F12
2018-01-09 05:08:36 ----D---- C:\WINDOWS\system32\oobe
2018-01-09 05:08:36 ----D---- C:\WINDOWS\system32\migwiz
2018-01-09 05:08:36 ----D---- C:\WINDOWS\system32\migration
2018-01-09 05:08:35 ----D---- C:\WINDOWS\system32\Dism
2018-01-09 05:08:35 ----D---- C:\WINDOWS\system32\Boot
2018-01-09 05:08:35 ----D---- C:\WINDOWS\system32\appraiser
2018-01-09 05:08:29 ----D---- C:\WINDOWS\Provisioning
2018-01-09 05:08:29 ----D---- C:\WINDOWS\PolicyDefinitions
2018-01-09 05:08:28 ----RSD---- C:\WINDOWS\Fonts
2018-01-09 05:08:28 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-01-09 05:08:28 ----D---- C:\WINDOWS\AppPatch
2018-01-09 05:08:28 ----D---- C:\Program Files\Windows Media Player
2018-01-09 05:08:28 ----D---- C:\Program Files\Internet Explorer
2018-01-08 19:50:13 ----D---- C:\Pracovní
2018-01-07 14:43:35 ----D---- C:\WINDOWS\SoftwareDistribution
2018-01-06 08:26:55 ----D---- C:\Program Files\Google
2018-01-04 09:54:28 ----D---- C:\Users\Zdenek\AppData\Roaming\foobar2000
2018-01-04 08:52:00 ----D---- C:\ProgramData\AVAST Software
2018-01-04 08:52:00 ----D---- C:\Program Files\AVAST Software
2017-12-30 08:45:36 ----AD---- C:\Program Files\CCleaner
2017-12-30 08:28:07 ----D---- C:\WINDOWS\system32\Macromed
2017-12-26 07:13:52 ----DC---- C:\Windows.old
2017-12-22 14:45:56 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2017-12-21 17:29:49 ----A---- C:\WINDOWS\system32\drivers\aswe382712a5431389f.tmp
2017-12-21 17:29:48 ----A---- C:\WINDOWS\system32\drivers\aswe56263e2b072ca73.tmp
2017-12-21 17:29:48 ----A---- C:\WINDOWS\system32\drivers\aswe16285d539881baf.tmp
2017-12-21 17:29:48 ----A---- C:\WINDOWS\system32\drivers\aswae27d68b364f6f48.tmp
2017-12-21 17:29:48 ----A---- C:\WINDOWS\system32\drivers\asw3e36a780c6002e32.tmp
2017-12-21 17:29:48 ----A---- C:\WINDOWS\system32\drivers\asw264fdc4400b2b80a.tmp
2017-12-21 17:29:28 ----A---- C:\WINDOWS\system32\drivers\aswc16f958d2f84ed46.tmp
2017-12-21 17:29:22 ----A---- C:\WINDOWS\system32\drivers\aswfaca2f2025bb5036.tmp
2017-12-21 17:29:22 ----A---- C:\WINDOWS\system32\drivers\aswcfbf2aa8f0559fc8.tmp
2017-12-21 17:29:22 ----A---- C:\WINDOWS\system32\drivers\asw536bbf925d08242e.tmp
2017-12-21 17:29:22 ----A---- C:\WINDOWS\system32\drivers\asw1a40db7e0097cc06.tmp

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [2017-12-21 157376]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [2017-12-21 276696]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [2017-12-21 50344]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-12-21 70832]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-12-21 294680]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 43552]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2017-09-30 210328]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2016-03-22 18800]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2017-12-21 158224]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [2017-12-21 255584]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2017-12-21 118144]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-09-07 39784]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-12-21 99528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-12-21 783104]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-01-11 390256]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-01-01 49560]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-09-29 45056]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-01-01 7680]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS [2016-08-22 23840]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-01-11 123880]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-12-21 151328]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-01-01 308224]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-09-29 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2018-01-01 62976]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [2017-07-04 28744]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 4815872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2017-08-10 4482048]
R3 IUFileFilter;IUFileFilter; \??\C:\Program Files\IObit\IObit Uninstaller\drivers\win10_x86\IUFileFilter.sys [2017-06-06 38304]
R3 IURegProcessFilter;IURegProcessFilter; \??\C:\Program Files\IObit\IObit Uninstaller\drivers\win10_x86\IURegProcessFilter.sys [2017-09-28 38264]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2018-01-01 127488]
R3 MxlW2k;MxlW2k; C:\WINDOWS\system32\drivers\MxlW2k.sys [2017-03-23 28352]
R3 rt640x86;@oem7.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2017-12-09 848856]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-09-29 102808]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-09-29 84376]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 56728]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-09-29 51608]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-09-29 54680]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 32152]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2017-12-14 38296]
S1 lpsport;lpsport; C:\WINDOWS\system32\drivers\lpsport.sys [2018-01-05 55160]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 13312]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 13312]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2017-09-30 92056]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2017-09-30 116632]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2017-09-30 109464]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-12-21 42824]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-29 27136]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 51608]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-09-29 98816]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-09-29 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2017-09-29 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-09-29 38296]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 18944]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 28672]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-09-29 74240]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2017-09-29 57856]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 30208]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 19456]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-01-01 92672]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 405024]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 42904]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 91648]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 13312]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 71680]
S3 RTSUER;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2016-09-06 302808]
S3 tap0901;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2017-10-10 23040]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-12-21 301168]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
R2 CDPUserSvc_30338;CDPUserSvc_30338; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
R2 CleanupPSvc;Avast Cleanup Premium; C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe [2017-12-13 4709728]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
R2 IObitUnSvr;IObit Uninstaller Service; C:\Program Files\IObit\IObit Uninstaller\IUService.exe [2017-06-14 206112]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2017-09-30 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
R2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
R2 OneSyncSvc_30338;OneSyncSvc_30338; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-01-01 414824]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2017-12-21 5906816]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2017-08-07 104448]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-18 154440]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 DevicesFlowUserSvc_30338;DevicesFlowUserSvc_30338; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-09-29 64000]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2017-12-14 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-18 154440]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 MessagingService_30338;MessagingService_30338; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-10-09 724992]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 PimIndexMaintenanceSvc_30338;PimIndexMaintenanceSvc_30338; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 PrintWorkflowUserSvc_30338;PrintWorkflowUserSvc_30338; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-12-14 2891976]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-09-29 876544]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-09-29 44520]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2018-01-01 661504]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2017-12-14 635800]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2017-09-29 47224]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 44520]

-----------------EOF-----------------

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner 7.0.6.0 - Logfile created on Mon Jan 17 09:06:32 2018
# Updated on 2017/21/12 by Malwarebytes
# Database: 01-11-2018.1
# Running on Windows 10 Pro (X86)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.AdvancedSystemCare, C:\ProgramData\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Program Files\Common Files\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\All Users\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\Zdenek\AppData\LocalLow\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\Zdenek\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\ProgramData\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Program Files\Common Files\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\All Users\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\Zdenek\AppData\LocalLow\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\Zdenek\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.Legacy, C:\Program Files\Common Files\freemake shared
PUP.Optional.Legacy, C:\ProgramData\IObit\ASCDownloader
PUP.Optional.Legacy, C:\Users\All Users\IObit\ASCDownloader
PUP.Optional.Legacy, C:\Users\Zdenek\AppData\Roaming\Wise Euask
PUP.Optional.Ask, C:\ProgramData\AskPartnerNetwork
PUP.Optional.Ask, C:\Users\All Users\AskPartnerNetwork
Rogue.ForcedExtension, C:\ProgramData\apn
Rogue.ForcedExtension, C:\Users\All Users\apn
PUP.Optional.WinZipRegistryOptimizer, C:\Program Files\WinZip Registry Optimizer
ALToolBar, C:\ProgramData\ESTsoft
ALToolBar, C:\Program Files\ESTsoft
ALToolBar, C:\Users\All Users\ESTsoft
ALToolBar, C:\Users\Zdenek\AppData\Roaming\ESTsoft


***** [ Files ] *****

PUP.Optional.Legacy, C:\Users\Public\Desktop\Smart Defrag 5.lnk


***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Legacy, Driver Booster Scheduler


***** [ Registry ] *****

PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IOBIT\ASC
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IObit\RealTimeProtector
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IObit\ASC
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
PUP.Optional.FreeMakeConverter, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run | ProductUpdater
PUP.Optional.FreeMakeConverter, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | ProductUpdater
PUP.Optional.InstallCore, [Key] - HKU\S-1-5-21-4082188929-3895119782-2185483832-1000\Software\csastats
PUP.Optional.InstallCore, [Key] - HKCU\Software\csastats
PUP.Optional.ProductSetup.A, [Key] - HKU\S-1-5-21-4082188929-3895119782-2185483832-1000\Software\PRODUCTSETUP
PUP.Optional.ProductSetup.A, [Key] - HKCU\Software\PRODUCTSETUP


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************



########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

V ADW ještě klikněte na mazání, restartujte a pak dejte log FRST: http://forum.viry.cz/viewtopic.php?f=30&t=133101 .

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17.01.2018
Ran by Zdenek (administrator) on ZDENEK-PC (17-01-2018 15:38:31)
Running from C:\Users\Zdenek\Desktop
Loaded Profiles: Zdenek (Available Profiles: Zdenek & DefaultAppPool)
Platform: Microsoft Windows 10 Pro Version 1709 16299.192 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(IObit) C:\Program Files\IObit\IObit Uninstaller\IUService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(IObit) C:\Program Files\IObit\Smart Defrag\SmartDefrag.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(IObit) C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Desktop.exe
(Hagel Technologies) C:\Program Files\DU Meter\DUMeter.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.16299.188_none_baa5415a79d2f3a3\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [488344 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [16553472 2017-08-10] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2017-12-21] (AVAST Software)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [DU Meter] => C:\Program Files\DU Meter\DUMeter.exe [1469952 2005-02-01] (Hagel Technologies)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-4082188929-3895119782-2185483832-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7972528 2017-12-13] (Piriform Ltd)
HKU\S-1-5-21-4082188929-3895119782-2185483832-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-01-04]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{1eba4988-5a2a-47d2-9e97-f6f7aa9eae45}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKU\S-1-5-21-4082188929-3895119782-2185483832-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-06] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-06] (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-06] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)

Chrome:
=======
CHR HomePage: Default -> teoma.com/?gct=hp
CHR StartupUrls: Default -> "hxxps://www.google.cz/"
CHR Profile: C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default [2018-01-17]
CHR Extension: (Prezentace) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Dokumenty) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Disk Google) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-18]
CHR Extension: (YouTube) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-18]
CHR Extension: (Avast Passwords) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2018-01-15]
CHR Extension: (Tabulky) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-30]
CHR Extension: (Gmail) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-18]
CHR Extension: (Chrome Media Router) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-09]
CHR Profile: C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\System Profile [2017-12-30]
CHR HKLM\...\Chrome\Extension: [cohecngphbppjpaokeilaichhgggcmjb] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5906816 2017-12-21] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2017-12-21] (AVAST Software)
R2 CleanupPSvc; C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe [4709728 2017-12-13] (AVAST Software)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [104448 2017-08-07] (Freemake) [File not signed]
R2 IObitUnSvr; C:\Program Files\IObit\IObit Uninstaller\IUService.exe [206112 2017-06-14] (IObit)
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [724992 2006-10-09] (Nero AG) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2891976 2017-12-14] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [279408 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [86696 2017-09-29] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [158224 2017-12-21] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [255584 2017-12-21] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [157376 2017-12-21] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [276696 2017-12-21] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [50344 2017-12-21] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [118144 2017-12-21] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42824 2017-12-21] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-07] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [123880 2018-01-11] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [99528 2017-12-21] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [70832 2017-12-21] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [783104 2017-12-21] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [390256 2018-01-11] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [151328 2017-12-21] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [294680 2017-12-21] (AVAST Software)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [28744 2017-07-04] (ELAN Microelectronic Corp.)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-08-22] (REALiX(tm))
R3 IUFileFilter; C:\Program Files\IObit\IObit Uninstaller\drivers\win10_x86\IUFileFilter.sys [38304 2017-06-06] (IObit.com)
R3 IURegProcessFilter; C:\Program Files\IObit\IObit Uninstaller\drivers\win10_x86\IURegProcessFilter.sys [38264 2017-09-28] (IObit.com)
R3 MxlW2k; C:\WINDOWS\system32\Drivers\MxlW2k.sys [28352 2017-03-23] (MusicMatch, Inc.) [File not signed]
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [848856 2017-12-09] (Realtek )
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [302808 2016-09-06] (Realsil Semiconductor Corporation)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [18800 2016-03-22] (IObit)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [23040 2017-10-10] (The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37440 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [253848 2017-09-29] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [119952 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98200 2017-09-29] (Microsoft Corporation)
S3 WiseHDInfo; C:\WINDOWS\WiseHDInfo32.dll [13264 2016-09-12] (wisecleaner.com) [File not signed]
S3 WiseRegNotify; C:\WINDOWS\WiseRegNotify.sys [23984 2016-09-12] (WiseCleaner.com) [File not signed]
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-17 15:38 - 2018-01-17 15:39 - 000013164 _____ C:\Users\Zdenek\Desktop\FRST.txt
2018-01-17 15:38 - 2018-01-17 15:38 - 000000000 ___DC C:\FRST
2018-01-17 15:35 - 2018-01-17 15:36 - 001753600 _____ (Farbar) C:\Users\Zdenek\Desktop\FRST.exe
2018-01-17 15:30 - 2018-01-17 15:30 - 000000000 ____D C:\ProgramData\SWCUTemp
2018-01-17 09:08 - 2018-01-17 11:37 - 000000027 _____ C:\Users\Zdenek\Desktop\vita cislo mobil.txt
2018-01-16 17:18 - 2018-01-16 17:18 - 008761114 _____ C:\Users\Zdenek\Downloads\magnetoterapie_renaissance_katalog_a_cenik.pdf
2018-01-15 20:52 - 2018-01-15 20:52 - 008758156 _____ C:\Users\Zdenek\Downloads\magnetoterapie_renaissance_katalog.pdf
2018-01-15 19:58 - 2018-01-17 09:06 - 000003487 _____ C:\Users\Zdenek\Desktop\AdwCleaner[S0].txt
2018-01-15 19:56 - 2018-01-17 15:26 - 000000000 ___DC C:\AdwCleaner
2018-01-15 19:55 - 2018-01-15 19:55 - 008198432 _____ (Malwarebytes) C:\Users\Zdenek\Downloads\adwcleaner_7.0.6.0.exe
2018-01-15 19:47 - 2018-01-15 19:47 - 000000000 ____D C:\Users\Zdenek\AppData\Local\TeamViewer
2018-01-15 19:46 - 2018-01-15 21:26 - 000000000 ____D C:\Program Files\TeamViewer
2018-01-15 19:46 - 2018-01-15 20:31 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\TeamViewer
2018-01-15 19:46 - 2018-01-15 19:46 - 000001074 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 13.lnk
2018-01-15 19:46 - 2018-01-15 19:46 - 000001062 _____ C:\Users\Public\Desktop\TeamViewer 13.lnk
2018-01-15 19:45 - 2018-01-15 19:45 - 019315456 _____ (TeamViewer GmbH) C:\Users\Zdenek\Downloads\TeamViewer_Setup.exe
2018-01-15 19:35 - 2018-01-15 19:40 - 000000000 ____D C:\Program Files\trend micro
2018-01-15 19:35 - 2018-01-15 19:35 - 000000000 ___DC C:\rsit
2018-01-15 19:33 - 2018-01-15 19:33 - 001107968 _____ C:\Users\Zdenek\Downloads\RSIT.exe
2018-01-15 14:22 - 2017-12-21 17:29 - 000305840 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-01-14 22:53 - 2018-01-14 22:53 - 001302528 _____ C:\Users\Zdenek\Documents\vtipky_na_pristi_tyden_3.pps
2018-01-11 12:45 - 2018-01-11 12:45 - 001656933 _____ C:\Users\Zdenek\Documents\Na Slovensku máme 60 unikátnych drevených kostolíkov.pdf
2018-01-10 19:53 - 2018-01-10 19:53 - 306310036 _____ C:\Users\Zdenek\Downloads\xhamster.com_7396415_home_porn_studio_three_girls_fucked_a_guy_480p.mp4
2018-01-10 19:52 - 2018-01-10 19:58 - 352645049 _____ C:\Users\Zdenek\Downloads\xhamster.com_4442197_russian_girl_photographer_240p.mp4
2018-01-10 14:27 - 2018-01-10 14:29 - 510500064 _____ C:\Users\Zdenek\Downloads\xhamster.com_3323565_russian_college_girl_1_240p.mp4
2018-01-10 14:10 - 2018-01-10 14:10 - 050051107 _____ C:\Users\Zdenek\Downloads\xhamster.com_3542850_fishing_with_nude_russian_teens_240p.mp4
2018-01-10 14:09 - 2018-01-10 14:09 - 406463072 _____ C:\Users\Zdenek\Downloads\xhamster.com_3289893_ancient_russian_sex_240p.mp4
2018-01-10 13:13 - 2018-01-10 13:13 - 416227979 _____ C:\Users\Zdenek\Downloads\xhamster.com_2171144_russian_240p.mp4
2018-01-10 02:01 - 2018-01-16 11:36 - 000000000 ____D C:\WINDOWS\Minidump
2018-01-09 03:45 - 2018-01-01 17:00 - 000661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-01-09 03:45 - 2018-01-01 13:08 - 000049560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
2018-01-09 03:45 - 2018-01-01 13:06 - 004145488 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-01-09 03:45 - 2018-01-01 13:06 - 000311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-01-09 03:45 - 2018-01-01 13:03 - 000650328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-01-09 03:45 - 2018-01-01 12:50 - 000914808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-01-09 03:45 - 2018-01-01 12:50 - 000799080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-01-09 03:45 - 2018-01-01 12:50 - 000081816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-01-09 03:45 - 2018-01-01 12:49 - 006387608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-01-09 03:45 - 2018-01-01 12:49 - 001627600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-01-09 03:45 - 2018-01-01 12:49 - 001116728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-01-09 03:45 - 2018-01-01 12:49 - 000974672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-01-09 03:45 - 2018-01-01 12:49 - 000481464 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-01-09 03:45 - 2018-01-01 12:48 - 001995672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-01-09 03:45 - 2018-01-01 12:48 - 000373144 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2018-01-09 03:45 - 2018-01-01 12:48 - 000373144 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-01-09 03:45 - 2018-01-01 12:48 - 000300952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-01-09 03:45 - 2018-01-01 12:48 - 000142640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-01-09 03:45 - 2018-01-01 12:48 - 000131992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-01-09 03:45 - 2018-01-01 12:48 - 000065432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-01-09 03:45 - 2018-01-01 12:47 - 000965016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-01-09 03:45 - 2018-01-01 12:47 - 000454040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-01-09 03:45 - 2018-01-01 12:47 - 000052632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2018-01-09 03:45 - 2018-01-01 12:46 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-01-09 03:45 - 2018-01-01 12:46 - 000289816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-09 03:45 - 2018-01-01 12:45 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-01-09 03:45 - 2018-01-01 12:45 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-01-09 03:45 - 2018-01-01 12:45 - 002192624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-01-09 03:45 - 2018-01-01 12:45 - 000535448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-01-09 03:45 - 2018-01-01 12:45 - 000080792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000575384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000480152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000414824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-01-09 03:45 - 2018-01-01 12:44 - 000353176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000278936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000116120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000100248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-01-09 03:45 - 2018-01-01 12:43 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 006479552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 004644912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 001003152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 000456232 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-01-09 03:45 - 2018-01-01 12:42 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 000295488 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
2018-01-09 03:45 - 2018-01-01 12:42 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-01-09 03:45 - 2018-01-01 12:40 - 002172312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-01-09 03:45 - 2018-01-01 12:40 - 000760216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-01-09 03:45 - 2018-01-01 12:40 - 000454072 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2018-01-09 03:45 - 2018-01-01 12:38 - 000816624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-01-09 03:45 - 2018-01-01 12:38 - 000677168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-01-09 03:45 - 2018-01-01 12:38 - 000416152 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-01-09 03:45 - 2018-01-01 12:35 - 000538760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-01-09 03:45 - 2018-01-01 12:34 - 000703568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-01-09 03:45 - 2018-01-01 12:31 - 000508848 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-01-09 03:45 - 2018-01-01 12:25 - 002905600 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-01-09 03:45 - 2018-01-01 12:25 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-01-09 03:45 - 2018-01-01 12:25 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-01-09 03:45 - 2018-01-01 12:25 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-01-09 03:45 - 2018-01-01 12:25 - 000308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-01-09 03:45 - 2018-01-01 12:25 - 000075776 _____ C:\WINDOWS\system32\runexehelper.exe
2018-01-09 03:45 - 2018-01-01 12:24 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-01-09 03:45 - 2018-01-01 12:22 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-01-09 03:45 - 2018-01-01 12:22 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-01-09 03:45 - 2018-01-01 12:20 - 019337216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-01-09 03:45 - 2018-01-01 12:20 - 018917888 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-01-09 03:45 - 2018-01-01 12:20 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-01-09 03:45 - 2018-01-01 12:20 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-01-09 03:45 - 2018-01-01 12:19 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-01-09 03:45 - 2018-01-01 12:19 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-01-09 03:45 - 2018-01-01 12:19 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-01-09 03:45 - 2018-01-01 12:19 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-01-09 03:45 - 2018-01-01 12:19 - 000296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-01-09 03:45 - 2018-01-01 12:19 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-01-09 03:45 - 2018-01-01 12:18 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-01-09 03:45 - 2018-01-01 12:18 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2018-01-09 03:45 - 2018-01-01 12:18 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-01-09 03:45 - 2018-01-01 12:18 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 011923968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 006564864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 003676672 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 000956928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 012687872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 006029312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 002647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 001771520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 000657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 002465280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 001959424 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 001118720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-01-09 03:45 - 2018-01-01 12:13 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 001409536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 001034240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 000897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 000695808 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-01-09 03:45 - 2018-01-01 12:12 - 001288704 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-01-09 03:45 - 2018-01-01 12:12 - 000603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-01-09 03:45 - 2018-01-01 12:12 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-01-09 03:45 - 2018-01-01 12:11 - 000650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-01-09 03:45 - 2018-01-01 12:11 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-01-09 03:45 - 2018-01-01 12:09 - 001983488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2018-01-09 03:45 - 2018-01-01 12:09 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2018-01-09 03:44 - 2018-01-01 12:49 - 000258808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-01-09 03:44 - 2018-01-01 12:49 - 000103320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-01-09 03:44 - 2018-01-01 12:49 - 000076184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2018-01-09 03:44 - 2018-01-01 12:48 - 000508312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-01-09 03:44 - 2018-01-01 12:48 - 000081816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2018-01-09 03:44 - 2018-01-01 12:48 - 000027544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fs_rec.sys
2018-01-09 03:44 - 2018-01-01 12:47 - 000142744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-01-09 03:44 - 2018-01-01 12:47 - 000096152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2018-01-09 03:44 - 2018-01-01 12:45 - 000806808 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2018-01-09 03:44 - 2018-01-01 12:45 - 000450928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2018-01-09 03:44 - 2018-01-01 12:45 - 000088984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-01-09 03:44 - 2018-01-01 12:45 - 000073896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000221592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000186520 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000160664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000104344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000099240 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000097176 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000061336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000048536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vdrvroot.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000040856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000033176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000026008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000023288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshhyperv.dll
2018-01-09 03:44 - 2018-01-01 12:42 - 000047512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-01-09 03:44 - 2018-01-01 12:40 - 000506264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-01-09 03:44 - 2018-01-01 12:40 - 000417360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp110_win.dll
2018-01-09 03:44 - 2018-01-01 12:39 - 000042392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcw.sys
2018-01-09 03:44 - 2018-01-01 12:35 - 000039832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2018-01-09 03:44 - 2018-01-01 12:35 - 000028056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2018-01-09 03:44 - 2018-01-01 12:34 - 000053336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2018-01-09 03:44 - 2018-01-01 12:25 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
2018-01-09 03:44 - 2018-01-01 12:25 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2018-01-09 03:44 - 2018-01-01 12:24 - 000196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-01-09 03:44 - 2018-01-01 12:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-01-09 03:44 - 2018-01-01 12:24 - 000038912 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-01-09 03:44 - 2018-01-01 12:24 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2018-01-09 03:44 - 2018-01-01 12:23 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2018-01-09 03:44 - 2018-01-01 12:23 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HyperVideo.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysntfy.dll
2018-01-09 03:44 - 2018-01-01 12:23 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VMBusHID.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\nrpsrv.dll
2018-01-09 03:44 - 2018-01-01 12:23 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-01-09 03:44 - 2018-01-01 12:23 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hyperkbd.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgencounter.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgid.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vms3cap.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irda.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2018-01-09 03:44 - 2018-01-01 12:22 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\efslsaext.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndisuio.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lltdio.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmictimeprovider.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2018-01-09 03:44 - 2018-01-01 12:22 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gpuenergydrv.sys
2018-01-09 03:44 - 2018-01-01 12:21 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-01-09 03:44 - 2018-01-01 12:21 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2018-01-09 03:44 - 2018-01-01 12:21 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2018-01-09 03:44 - 2018-01-01 12:21 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2018-01-09 03:44 - 2018-01-01 12:21 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-01-09 03:44 - 2018-01-01 12:21 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\efssvc.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2018-01-09 03:44 - 2018-01-01 12:21 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2018-01-09 03:44 - 2018-01-01 12:20 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2018-01-09 03:44 - 2018-01-01 12:20 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-01-09 03:44 - 2018-01-01 12:20 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsisvc.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2018-01-09 03:44 - 2018-01-01 12:19 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-01-09 03:44 - 2018-01-01 12:19 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-01-09 03:44 - 2018-01-01 12:19 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-01-09 03:44 - 2018-01-01 12:18 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2018-01-09 03:44 - 2018-01-01 12:16 - 000966656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2018-01-09 03:44 - 2018-01-01 12:16 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-01-09 03:44 - 2018-01-01 12:16 - 000619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-01-09 03:44 - 2018-01-01 12:16 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-01-09 03:44 - 2018-01-01 12:16 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-01-09 03:44 - 2018-01-01 12:15 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-01-09 03:44 - 2018-01-01 12:15 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2018-01-09 03:44 - 2018-01-01 12:14 - 000348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-01-09 03:44 - 2018-01-01 12:14 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2018-01-09 03:44 - 2018-01-01 12:14 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2018-01-09 03:44 - 2018-01-01 12:13 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-01-09 03:44 - 2018-01-01 12:13 - 001569792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2018-01-09 03:44 - 2018-01-01 12:13 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-01-09 03:44 - 2018-01-01 12:13 - 000732672 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-01-09 03:44 - 2018-01-01 12:13 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-01-09 03:44 - 2018-01-01 12:13 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-01-09 03:44 - 2018-01-01 12:13 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-01-09 03:44 - 2018-01-01 12:13 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2018-01-09 03:44 - 2018-01-01 12:13 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2018-01-09 03:44 - 2018-01-01 12:12 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-01-09 03:44 - 2018-01-01 12:11 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2018-01-09 03:44 - 2018-01-01 12:11 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2018-01-09 03:44 - 2018-01-01 12:11 - 000207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2018-01-09 03:44 - 2018-01-01 12:11 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-01-09 03:44 - 2018-01-01 12:11 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpbus.sys
2018-01-09 03:44 - 2018-01-01 12:10 - 000707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2018-01-09 03:44 - 2018-01-01 12:10 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2018-01-09 03:44 - 2018-01-01 12:10 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\beep.sys
2018-01-09 03:44 - 2018-01-01 12:09 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2018-01-09 03:44 - 2018-01-01 12:09 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2018-01-09 03:44 - 2018-01-01 12:09 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdPnp.dll
2018-01-09 03:44 - 2018-01-01 12:09 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmiprop.dll
2018-01-09 03:44 - 2018-01-01 12:09 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWNet.dll
2018-01-09 03:44 - 2018-01-01 12:08 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2018-01-09 03:44 - 2018-01-01 12:08 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2018-01-09 03:44 - 2018-01-01 12:08 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\null.sys
2018-01-08 19:57 - 2018-01-08 19:57 - 014065909 _____ C:\Users\Zdenek\Documents\VID-20171229-WA0004.mp4
2018-01-08 19:55 - 2018-01-08 19:55 - 007159030 _____ C:\Users\Zdenek\Documents\china.mp4
2018-01-08 08:58 - 2018-01-08 08:59 - 000000000 ____D C:\Users\Zdenek\Downloads\Susedia 6
2018-01-08 08:43 - 2018-01-08 08:43 - 004961280 _____ C:\Users\Zdenek\Documents\Neni_to_Sumava__ale_je_to_nadhera.pps
2018-01-08 08:41 - 2018-01-08 08:41 - 000638149 _____ C:\Users\Zdenek\Documents\Motivace_k_byyh____________ynyy.mp4
2018-01-08 08:36 - 2018-01-08 08:36 - 001721188 _____ C:\Users\Zdenek\Documents\007.mp4
2018-01-08 08:36 - 2018-01-08 08:36 - 001518722 _____ C:\Users\Zdenek\Documents\004.mp4
2018-01-08 08:36 - 2018-01-08 08:36 - 001442433 _____ C:\Users\Zdenek\Documents\010.mp4
2018-01-08 08:36 - 2018-01-08 08:36 - 000818654 _____ C:\Users\Zdenek\Documents\008.mp4
2018-01-07 23:37 - 2018-01-07 23:38 - 625068236 _____ C:\Users\Zdenek\Downloads\Případy.detektiva.Murdocha.10x09.Pramen.věčného.mládí.HDTV.CZ.avi
2018-01-07 23:36 - 2018-01-07 23:38 - 689125118 _____ C:\Users\Zdenek\Downloads\Případy.detektiva.Murdocha.10x08.Víkend.u.Murdochů.HDTV.CZ.avi
2018-01-07 10:39 - 2018-01-07 10:40 - 000000000 ____D C:\Users\Zdenek\Downloads\Matlock 25
2018-01-06 21:53 - 2018-01-06 21:55 - 000000000 ____D C:\Users\Zdenek\Downloads\Soumrak templářů
2018-01-06 08:27 - 2018-01-06 08:27 - 000000000 ____D C:\Users\Zdenek\AppData\LocalLow\Google
2018-01-06 08:26 - 2018-01-06 08:26 - 000002179 _____ C:\Users\Public\Desktop\Google Earth.lnk
2018-01-06 08:26 - 2018-01-06 08:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2018-01-04 08:52 - 2018-01-04 20:52 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\Avast Tuneup
2018-01-04 08:52 - 2018-01-04 08:52 - 000001250 _____ C:\Users\Public\Desktop\Avast Cleanup Premium.lnk
2018-01-04 08:52 - 2018-01-04 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-01-03 15:26 - 2018-01-03 15:26 - 022685998 _____ C:\Users\Zdenek\Downloads\brno.pdf
2018-01-02 19:01 - 2018-01-02 19:01 - 006336512 _____ C:\Users\Zdenek\Documents\Krasa_bonsaji_a_kvetu.pps
2017-12-31 17:49 - 2017-12-31 17:49 - 006512632 _____ C:\Users\Zdenek\Documents\Kocúr.mp4
2017-12-31 17:44 - 2017-12-31 17:44 - 006490624 _____ C:\Users\Zdenek\Documents\Chlapi, pojďte se pošmajchlovat.pps
2017-12-30 19:36 - 2017-12-30 19:36 - 007311872 _____ C:\Users\Zdenek\Documents\-Seneka.pps
2017-12-30 08:59 - 2017-12-30 08:59 - 000001101 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-12-30 08:49 - 2017-12-30 08:49 - 000041994 _____ C:\Users\Zdenek\Documents\cc_20171230_084928.reg
2017-12-29 21:19 - 2017-12-29 21:19 - 004473856 _____ C:\Users\Zdenek\Documents\For_real_1.pps
2017-12-29 21:17 - 2017-12-29 21:17 - 000681272 _____ C:\Users\Zdenek\Documents\VID-20170707-WA0001.mp4
2017-12-29 21:16 - 2017-12-29 21:16 - 003099026 _____ C:\Users\Zdenek\Documents\VID-20161221-WA0003.mp4
2017-12-29 21:14 - 2017-12-29 21:14 - 009301824 _____ C:\Users\Zdenek\Documents\VID-20171212-WA0005.mp4
2017-12-29 21:07 - 2017-12-29 21:07 - 006466766 _____ C:\Users\Zdenek\Documents\VID-20171008-WA0014.mp4
2017-12-28 00:51 - 2017-12-28 00:51 - 005608805 _____ C:\Users\Zdenek\Documents\Novinka.mp4
2017-12-28 00:51 - 2017-12-28 00:51 - 001450646 _____ C:\Users\Zdenek\Documents\Stokoruna.pdf
2017-12-28 00:50 - 2017-12-28 00:50 - 006151711 _____ C:\Users\Zdenek\Documents\policejní akce11.wmv
2017-12-28 00:50 - 2017-12-28 00:50 - 003718829 _____ C:\Users\Zdenek\Documents\VID-20171027-WA0021.mp4
2017-12-28 00:47 - 2017-12-28 00:47 - 006736216 _____ C:\Users\Zdenek\Documents\inconscients et chanceux.mp4
2017-12-28 00:47 - 2017-12-28 00:47 - 003401216 _____ C:\Users\Zdenek\Documents\SENECA OZ.pps
2017-12-28 00:46 - 2017-12-28 00:46 - 009288920 _____ C:\Users\Zdenek\Documents\Acro pere et fils-ag.mp4
2017-12-28 00:46 - 2017-12-28 00:46 - 002600648 _____ C:\Users\Zdenek\Documents\2017-10-04-VIDEO-00000500.mp4
2017-12-27 08:57 - 2017-12-27 08:57 - 006017005 _____ C:\Users\Zdenek\Documents\[Music] Silvester 68 Kissangyalom (Lyrics) [HD].mp4
2017-12-25 00:51 - 2017-12-25 00:51 - 004323925 _____ C:\Users\Zdenek\Documents\VID-20161217-WA0005.mp4
2017-12-25 00:36 - 2017-12-25 00:36 - 007523022 _____ C:\Users\Zdenek\Documents\Bagpipes - Scotland The Brave.mp4
2017-12-25 00:30 - 2017-12-25 00:30 - 000840655 _____ C:\Users\Zdenek\Documents\lecitelka-eva-obarooo.pdf
2017-12-25 00:25 - 2017-12-25 00:25 - 005832192 _____ C:\Users\Zdenek\Documents\Boheminium 2017.pps
2017-12-25 00:24 - 2017-12-25 00:24 - 004071936 _____ C:\Users\Zdenek\Documents\Kaktus_pro_stesti.pps
2017-12-25 00:16 - 2017-12-25 00:16 - 006314932 _____ C:\Users\Zdenek\Documents\ZÁZRAČNÁ_Kniha.pdf
2017-12-25 00:14 - 2017-12-25 00:14 - 013225846 _____ C:\Users\Zdenek\Documents\VID-20161220-WA0000.mp4
2017-12-25 00:11 - 2017-12-25 00:11 - 008534988 _____ C:\Users\Zdenek\Documents\Silvestrovské talíře-konf.mp4
2017-12-25 00:10 - 2017-12-25 00:10 - 000678847 _____ C:\Users\Zdenek\Documents\received_1171695319552932.mp4
2017-12-24 17:17 - 2017-12-24 17:17 - 001746944 _____ C:\Users\Zdenek\Documents\propritele.pps
2017-12-24 12:21 - 2017-12-24 12:21 - 003357696 _____ C:\Users\Zdenek\Documents\SHANGHAI_-_hlavni_nadrazi-pep.pps
2017-12-24 12:13 - 2017-12-24 12:13 - 002010171 _____ C:\Users\Zdenek\Documents\studna splnennych prani.wmv
2017-12-24 01:02 - 2017-12-24 00:58 - 008187309 _____ C:\Users\Zdenek\Documents\Viete e video.mp4
2017-12-24 00:57 - 2017-12-24 00:57 - 012546109 _____ C:\Users\Zdenek\Documents\PojÄ, budeme se kamarádit.mp4
2017-12-23 11:30 - 2017-12-23 11:30 - 001370771 _____ C:\Users\Zdenek\Documents\video-1511396100.mp4
2017-12-22 20:21 - 2017-12-22 20:21 - 012093129 _____ C:\Users\Zdenek\Documents\ATT00013.mp4
2017-12-22 20:18 - 2017-12-22 20:18 - 004686848 _____ C:\Users\Zdenek\Documents\Trpělivost fotografa.pps
2017-12-22 20:16 - 2017-12-22 20:16 - 007190490 _____ C:\Users\Zdenek\Documents\IMG_7856.MP4
2017-12-22 19:54 - 2017-12-22 19:54 - 000908786 _____ C:\Users\Zdenek\Documents\VID-20171108-WA0001.mp4
2017-12-22 19:51 - 2017-12-22 19:51 - 006074368 _____ C:\Users\Zdenek\Documents\VIO USA WASHINGTON DCity L.pps
2017-12-22 19:50 - 2017-12-22 19:50 - 000442880 _____ C:\Users\Zdenek\Documents\10 krát nejzdrav��jší nápoje.pps
2017-12-22 19:48 - 2017-12-22 19:48 - 010220898 _____ C:\Users\Zdenek\Documents\2017-01-16-VIDEO-00002106.mp4
2017-12-22 19:48 - 2017-12-22 19:48 - 005271944 _____ C:\Users\Zdenek\Documents\Jurassic_Parking.mp4
2017-12-22 19:48 - 2017-12-22 19:48 - 001982616 _____ C:\Users\Zdenek\Documents\Terorista.mp4
2017-12-22 19:47 - 2017-12-22 19:47 - 003774560 _____ C:\Users\Zdenek\Documents\Ty jsi tak uzasny.mp4
2017-12-22 19:47 - 2017-12-22 19:47 - 001016591 _____ C:\Users\Zdenek\Documents\maserka.mp4
2017-12-22 19:46 - 2017-12-22 19:46 - 001826289 _____ C:\Users\Zdenek\Documents\Pusu.mp4
2017-12-22 19:42 - 2017-12-22 19:42 - 007070850 _____ C:\Users\Zdenek\Documents\Jaké budou zprávy v SRN v r. 2020.mp4
2017-12-22 19:42 - 2017-12-22 19:42 - 006949083 _____ C:\Users\Zdenek\Documents\Netradiční lidé - 2017 - 11 - 22.mp4
2017-12-22 19:38 - 2017-12-22 19:38 - 005267456 _____ C:\Users\Zdenek\Documents\Pussy_ass_3.pps
2017-12-22 19:38 - 2017-12-22 19:38 - 000475136 _____ C:\Users\Zdenek\Documents\Vzpominky_CZ.pps
2017-12-22 19:37 - 2017-12-22 19:37 - 000873788 _____ C:\Users\Zdenek\Documents\Ptačí budka.mp4
2017-12-22 19:29 - 2017-12-22 19:29 - 013597731 _____ C:\Users\Zdenek\Documents\meloun 051.mp4
2017-12-22 19:25 - 2017-12-22 19:25 - 008764776 _____ C:\Users\Zdenek\Documents\178846.mp4
2017-12-22 19:25 - 2017-12-22 19:25 - 001464521 _____ C:\Users\Zdenek\Documents\Poprdo_pvš.mp4
2017-12-22 17:17 - 2017-12-22 17:17 - 008125797 _____ C:\Users\Zdenek\Documents\Kuchařka České a moravské vesnice.pdf
2017-12-21 17:30 - 2017-12-21 17:29 - 000118144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2017-12-21 11:08 - 2017-12-21 11:08 - 001685504 _____ C:\Users\Zdenek\Documents\Symboly_zemí.pps
2017-12-21 11:07 - 2017-12-21 11:07 - 005189120 _____ C:\Users\Zdenek\Documents\FOTO MANUPILATIE!!!.pps
2017-12-21 11:02 - 2017-12-21 11:02 - 009275928 _____ C:\Users\Zdenek\Documents\VF160513_100241_flv_middle.mp4
2017-12-21 10:59 - 2017-12-21 10:59 - 001548267 _____ C:\Users\Zdenek\Documents\VID-20150706-WA0000.mp4
2017-12-21 10:55 - 2017-12-21 10:55 - 002543851 _____ C:\Users\Zdenek\Documents\IMG_2879.MP4
2017-12-21 10:53 - 2017-12-21 10:53 - 005626574 _____ C:\Users\Zdenek\Documents\VID-20171018-WA0002.mp4
2017-12-21 10:44 - 2017-12-21 10:44 - 000477184 _____ C:\Users\Zdenek\Documents\Adventni_svicky.pps
2017-12-21 10:39 - 2017-12-21 10:39 - 009849030 _____ C:\Users\Zdenek\Documents\historie Elvis Presley No More - Blue Hawaii1.mp4
2017-12-21 10:39 - 2017-12-21 10:39 - 008589166 _____ C:\Users\Zdenek\Documents\Advent_1.ppsx
2017-12-21 09:42 - 2017-12-21 09:42 - 007323648 _____ C:\Users\Zdenek\Documents\Kate_Middleton_o_copiaza_pe_Lady_Diana.pps
2017-12-21 09:42 - 2017-12-21 09:42 - 003842048 _____ C:\Users\Zdenek\Documents\10 rozhleden Šen.pps
2017-12-20 11:13 - 2017-12-20 11:13 - 006411793 _____ C:\Users\Zdenek\Documents\Kondom.mp4
2017-12-20 11:12 - 2017-12-20 11:12 - 007042809 _____ C:\Users\Zdenek\Documents\K_und_K_Hofbaeckerei_Demel_.mp4
2017-12-20 11:10 - 2017-12-20 11:10 - 006464252 _____ C:\Users\Zdenek\Documents\2016_12_18_VIDEO_00000199.mp4
2017-12-20 11:10 - 2017-12-20 11:10 - 002940928 _____ C:\Users\Zdenek\Documents\Cannes Festival de foufounes.pps
2017-12-20 11:09 - 2017-12-20 11:09 - 001346035 _____ C:\Users\Zdenek\Documents\zlato nemůžu spát.mp4
2017-12-20 11:08 - 2017-12-20 11:08 - 007366932 _____ C:\Users\Zdenek\Documents\†.mp4
2017-12-20 11:08 - 2017-12-20 11:08 - 006826496 _____ C:\Users\Zdenek\Documents\Sleepwalk-.pps
2017-12-20 11:08 - 2017-12-20 11:08 - 002413302 _____ C:\Users\Zdenek\Documents\IMG_3578.MP4
2017-12-20 11:07 - 2017-12-20 11:07 - 007798271 _____ C:\Users\Zdenek\Documents\Pliage.mp4
2017-12-20 11:07 - 2017-12-20 11:07 - 001791630 _____ C:\Users\Zdenek\Documents\VID-20170721-WA00111.mp4
2017-12-20 11:06 - 2017-12-20 11:06 - 005123762 _____ C:\Users\Zdenek\Documents\Orangutan_Babysits_Tiger_Cubs.mp4
2017-12-20 11:04 - 2017-12-20 11:04 - 010786862 _____ C:\Users\Zdenek\Documents\skornezodides.mp4
2017-12-20 11:04 - 2017-12-20 11:04 - 002568536 _____ C:\Users\Zdenek\Documents\Past_na_chlapy_-_pred_a_po.mp4
2017-12-20 11:01 - 2017-12-20 11:01 - 009894086 _____ C:\Users\Zdenek\Documents\moderní technika hasičů.mp4
2017-12-20 10:57 - 2017-12-20 10:57 - 004323840 _____ C:\Users\Zdenek\Documents\Cibulový_trh_v__Bernu.pps
2017-12-20 10:57 - 2017-12-20 10:57 - 003538976 _____ C:\Users\Zdenek\Documents\learn_flamenco.mp4
2017-12-20 10:52 - 2017-12-20 10:52 - 006155578 _____ C:\Users\Zdenek\Documents\Mágico.mp4
2017-12-20 10:50 - 2017-12-20 10:50 - 006829251 _____ C:\Users\Zdenek\Documents\Excelentní narozeniny.mp4
2017-12-20 10:42 - 2017-12-20 10:42 - 000689402 _____ C:\Users\Zdenek\Documents\Absolutne__najlepsi_vtip.pdf
2017-12-20 10:41 - 2017-12-20 10:41 - 006198118 _____ C:\Users\Zdenek\Documents\89551d20-e448-4487-8222-c67a140c9370.MP4
2017-12-19 23:46 - 2017-12-19 23:46 - 004694069 _____ C:\Users\Zdenek\Documents\Kapor.mp4
2017-12-19 23:39 - 2017-12-19 23:39 - 004243995 _____ C:\Users\Zdenek\Documents\Kocka_a_ptacek.mp4
2017-12-19 23:37 - 2017-12-19 23:37 - 001358275 _____ C:\Users\Zdenek\Documents\VID-20171123-WA0001.mp4
2017-12-19 23:34 - 2017-12-19 23:34 - 002451456 _____ C:\Users\Zdenek\Documents\15 SLOVENSKÝCH SKVOSTOV !.pps
2017-12-19 23:32 - 2017-12-19 23:32 - 013270414 _____ C:\Users\Zdenek\Documents\VID-20171109-WA0025.mp4
2017-12-19 23:30 - 2017-12-19 23:30 - 011142755 _____ C:\Users\Zdenek\Documents\Let's Twist Again - Chubby Checker.mp4
2017-12-19 23:27 - 2017-12-19 23:27 - 010307072 _____ C:\Users\Zdenek\Documents\TheAlps.pps
2017-12-19 23:27 - 2017-12-19 23:27 - 005517485 _____ C:\Users\Zdenek\Documents\VID-20170227-WA0008.mp4
2017-12-19 23:27 - 2017-12-19 23:27 - 005485113 _____ C:\Users\Zdenek\Documents\Manta11.mp4
2017-12-19 23:24 - 2017-12-19 23:24 - 002263656 _____ C:\Users\Zdenek\Documents\zvířatům hráblo.mp4
2017-12-19 23:24 - 2017-12-19 23:24 - 001466619 _____ C:\Users\Zdenek\Documents\stříhání pejska.mp4
2017-12-19 23:21 - 2017-12-19 23:21 - 001309063 _____ C:\Users\Zdenek\Documents\hledej chybu.mp4
2017-12-19 23:21 - 2017-12-19 23:21 - 000772390 _____ C:\Users\Zdenek\Documents\kočka a tygr.mp4
2017-12-19 23:15 - 2017-12-19 23:15 - 011396608 _____ C:\Users\Zdenek\Documents\Cesta na jižní Moravu(1).pps
2017-12-19 23:12 - 2017-12-19 23:12 - 013961942 _____ C:\Users\Zdenek\Documents\FUEGOS_ARTIFICIALES.MP4
2017-12-19 23:09 - 2017-12-19 23:09 - 008308224 _____ C:\Users\Zdenek\Documents\Fotky roku..pps
2017-12-19 23:07 - 2017-12-19 23:07 - 000627099 _____ C:\Users\Zdenek\Documents\De_vantro_hunde_Allahu_Akbar_lussing.mp4
2017-12-19 23:05 - 2017-12-19 23:05 - 000868852 _____ C:\Users\Zdenek\Documents\Helma.mp4
2017-12-19 23:00 - 2017-12-19 23:00 - 011226148 _____ C:\Users\Zdenek\Documents\SECURITE ROUTIERE.mp4
2017-12-19 23:00 - 2017-12-19 23:00 - 008778067 _____ C:\Users\Zdenek\Documents\IMG_42161.mp4
2017-12-19 23:00 - 2017-12-19 23:00 - 005153362 _____ C:\Users\Zdenek\Documents\Ti Japonci.mp4
2017-12-19 19:12 - 2017-12-19 19:12 - 004674365 _____ C:\Users\Zdenek\Documents\VID-20170815-WA0003.mp4
2017-12-19 19:12 - 2017-12-19 19:12 - 002532635 _____ C:\Users\Zdenek\Documents\7-d-park-japon GH.mp4
2017-12-19 19:10 - 2017-12-19 19:10 - 003029112 _____ C:\Users\Zdenek\Documents\On n'arrete pas le progre s &11.mp4
2017-12-19 19:10 - 2017-12-19 19:10 - 000365405 _____ C:\Users\Zdenek\Documents\HowtoCatchaSpider.mp4
2017-12-19 19:04 - 2017-12-19 19:04 - 010470704 _____ C:\Users\Zdenek\Documents\VID-20170201-WA0000.mp4
2017-12-19 12:52 - 2017-12-19 12:52 - 009049600 _____ C:\Users\Zdenek\Documents\No_comment.pps
2017-12-19 12:50 - 2017-12-19 12:50 - 005849859 _____ C:\Users\Zdenek\Documents\2017-06-06-VIDEO-00002221.mp4
2017-12-19 12:50 - 2017-12-19 12:50 - 004024320 _____ C:\Users\Zdenek\Documents\Incredible_places2.pps
2017-12-19 12:47 - 2017-12-19 12:47 - 004520148 _____ C:\Users\Zdenek\Documents\Katze schaut sich Horrorfilm an.mp4
2017-12-19 12:28 - 2017-12-19 12:28 - 001680548 _____ C:\Users\Zdenek\Documents\VID-20170831-WA0007.mp4
2017-12-19 12:28 - 2017-12-19 12:28 - 000942372 _____ C:\Users\Zdenek\Documents\VID-20170831-WA0009.mp4
2017-12-19 12:27 - 2017-12-19 12:27 - 010035704 _____ C:\Users\Zdenek\Documents\Wasserbet.mp4
2017-12-19 12:27 - 2017-12-19 12:27 - 008804617 _____ C:\Users\Zdenek\Documents\utf-8___C3_9A_C5_BEasn_C3_BD_20pejsek_2E_2Emp4.mp4
2017-12-19 12:27 - 2017-12-19 12:27 - 007563163 _____ C:\Users\Zdenek\Documents\Andre.mp4
2017-12-19 12:27 - 2017-12-19 12:27 - 000725504 _____ C:\Users\Zdenek\Documents\Comment_savoir_de_quel_cote_aller.pps
2017-12-19 12:26 - 2017-12-19 12:26 - 004370944 _____ C:\Users\Zdenek\Documents\Křáplé květin����če.pps
2017-12-19 12:26 - 2017-12-19 12:26 - 002887975 _____ C:\Users\Zdenek\Documents\utf-8___C3_9A_C5_BEasn_C3_A1_20legrace_2E_2E_2E_2Emp4.mp4
2017-12-19 12:26 - 2017-12-19 12:26 - 002284981 _____ C:\Users\Zdenek\Documents\utf-8__Papou_C5_A1ek_20nebo_20pes_2Emp4.mp4
2017-12-19 12:21 - 2017-12-19 12:21 - 001292800 _____ C:\Users\Zdenek\Documents\Dlouho_jsme_se_tak_nenasmali.pps
2017-12-19 12:18 - 2017-12-19 12:18 - 005280271 _____ C:\Users\Zdenek\Documents\Blumen_setzen.mp4
2017-12-19 12:17 - 2017-12-19 12:17 - 012600574 _____ C:\Users\Zdenek\Documents\lidé jsou úžasní - PEOPLE ARE AWESOME (Kids Edition).mp4
2017-12-19 12:17 - 2017-12-19 12:17 - 001053184 _____ C:\Users\Zdenek\Documents\Pospěš_si.pps
2017-12-19 12:16 - 2017-12-19 12:16 - 003516122 _____ C:\Users\Zdenek\Documents\received_363774157381488.mp4
2017-12-19 12:10 - 2017-12-19 12:10 - 000629766 _____ C:\Users\Zdenek\Documents\Pivo.mp4
2017-12-19 12:07 - 2017-12-19 12:07 - 008359496 _____ C:\Users\Zdenek\Documents\2017-04-03-VIDEO-00002396.mp4
2017-12-19 12:06 - 2017-12-19 12:06 - 008197584 _____ C:\Users\Zdenek\Documents\VID-20171018-WA0001.mp4
2017-12-19 12:05 - 2017-12-19 12:05 - 014374052 _____ C:\Users\Zdenek\Documents\VID-20170903-WA00101.mp4
2017-12-19 12:01 - 2017-12-19 12:01 - 013488292 _____ C:\Users\Zdenek\Documents\Taháky nejen pro školáky.pdf
2017-12-19 11:59 - 2017-12-19 11:59 - 002008205 _____ C:\Users\Zdenek\Documents\Cerf1.mp4
2017-12-19 11:59 - 2017-12-19 11:59 - 001252758 _____ C:\Users\Zdenek\Documents\VID-20160316-WA0009.mp4
2017-12-19 11:57 - 2017-12-19 11:57 - 005267164 _____ C:\Users\Zdenek\Documents\2017-02-07-VIDEO-000000891.mp4
2017-12-19 11:52 - 2017-12-19 11:52 - 006810058 _____ C:\Users\Zdenek\Documents\Mercedes.mp4
2017-12-19 11:50 - 2017-12-19 11:50 - 006472192 _____ C:\Users\Zdenek\Documents\Hinduskie_klejnoty_KM.pps
2017-12-19 11:49 - 2017-12-19 11:49 - 007251420 _____ C:\Users\Zdenek\Documents\Nova profese.mp4
2017-12-19 11:47 - 2017-12-19 11:47 - 008167123 _____ C:\Users\Zdenek\Documents\2016_Csardas_Adrienn_Banhegyi_Jump_Rope_Girl.mp4
2017-12-19 11:45 - 2017-12-19 11:45 - 001119447 _____ C:\Users\Zdenek\Documents\Zakry si kolená.mp4
2017-12-19 11:42 - 2017-12-19 11:42 - 001711104 _____ C:\Users\Zdenek\Documents\kouzlo české zimy.pps
2017-12-19 11:38 - 2017-12-19 11:38 - 009298364 _____ C:\Users\Zdenek\Documents\Muréna se za rybiÄku imazlí.mp4
2017-12-19 11:38 - 2017-12-19 11:38 - 005750272 _____ C:\Users\Zdenek\Documents\Most_nad_riekou_Colorado.pps
2017-12-19 11:38 - 2017-12-19 11:38 - 004955762 _____ C:\Users\Zdenek\Documents\VID-20170819-WA0017.mp4
2017-12-19 11:37 - 2017-12-19 11:37 - 009054883 _____ C:\Users\Zdenek\Documents\0813452208170f147e4506601.mp4
2017-12-19 11:37 - 2017-12-19 11:37 - 004103391 _____ C:\Users\Zdenek\Documents\Zlatý retrívr na rybách.mp4
2017-12-19 11:34 - 2017-12-19 11:34 - 001620357 _____ C:\Users\Zdenek\Documents\přece si neublížím.mp4
2017-12-19 11:32 - 2017-12-19 11:32 - 005213696 _____ C:\Users\Zdenek\Documents\A_in_white_1.pps
2017-12-19 11:31 - 2017-12-19 11:31 - 002770254 _____ C:\Users\Zdenek\Documents\utf-8''Telefonov%C3%A1n%C3%AD-n%C4%9Bkdy%20bol%C3%AD%20!!!%2Emp.mp4
2017-12-19 11:30 - 2017-12-19 11:30 - 007314432 _____ C:\Users\Zdenek\Documents\Terra13Parte21.pps
2017-12-19 11:27 - 2017-12-19 11:27 - 007033344 _____ C:\Users\Zdenek\Documents\ten_co_nikdy_nezklame.pps
2017-12-19 11:27 - 2017-12-19 11:27 - 006800896 _____ C:\Users\Zdenek\Documents\Podzim_je_zde.pps
2017-12-19 11:21 - 2017-12-19 11:21 - 009420199 _____ C:\Users\Zdenek\Documents\Betisiers fun-ag.MP4
2017-12-19 11:20 - 2017-12-19 11:20 - 005545134 _____ C:\Users\Zdenek\Documents\utf-8''Tak%20se%20to%20d%C4%9Bl%C3%A1%2Emp4%20%2Emp4.mp4
2017-12-19 11:17 - 2017-12-19 11:17 - 010311168 _____ C:\Users\Zdenek\Documents\Kolem_Orliho_Hnizda.pps
2017-12-19 11:17 - 2017-12-19 11:17 - 008511449 _____ C:\Users\Zdenek\Documents\cigani-Lunik_IX_KosiceDR.mp4
2017-12-19 11:17 - 2017-12-19 11:17 - 006291968 _____ C:\Users\Zdenek\Documents\Podzimni_prani.pps
2017-12-19 11:14 - 2017-12-19 11:14 - 002057728 _____ C:\Users\Zdenek\Documents\A_of_Velorex.pps
2017-12-19 11:11 - 2017-12-19 11:11 - 008153319 _____ C:\Users\Zdenek\Documents\IMG_6606.mp4
2017-12-19 11:11 - 2017-12-19 11:11 - 001822720 _____ C:\Users\Zdenek\Documents\léčba sexem.pps
2017-12-19 11:09 - 2017-12-19 11:09 - 004272269 _____ C:\Users\Zdenek\Documents\ATT00052.mp4
2017-12-19 11:08 - 2017-12-19 11:08 - 003937792 _____ C:\Users\Zdenek\Documents\Aforismy_2.pps
2017-12-19 11:04 - 2017-12-19 11:04 - 006636760 _____ C:\Users\Zdenek\Documents\KeeptheHeat-fbdown.net.mp4
2017-12-19 11:00 - 2017-12-19 11:00 - 006985000 _____ C:\Users\Zdenek\Documents\Piskajici_pan.mp4
2017-12-19 11:00 - 2017-12-19 11:00 - 002817195 _____ C:\Users\Zdenek\Documents\PING_PONG.mp4
2017-12-19 11:00 - 2017-12-19 11:00 - 001121207 _____ C:\Users\Zdenek\Documents\received_456188654744829.mp4
2017-12-19 10:59 - 2017-12-19 10:59 - 006951639 _____ C:\Users\Zdenek\Documents\pod_obraz.mp4
2017-12-19 10:57 - 2017-12-19 10:57 - 005661486 _____ C:\Users\Zdenek\Documents\Bank.mp4
2017-12-18 21:21 - 2017-12-18 21:21 - 004075714 _____ C:\Users\Zdenek\Documents\IMG_0857.MP4

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2099-12-01 23:14 - 2016-08-22 06:18 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\ProductData
2018-01-17 15:28 - 2017-12-14 14:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-01-17 15:27 - 2017-12-14 14:23 - 000000000 ____D C:\Users\Zdenek
2018-01-17 15:27 - 2017-09-29 06:31 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-01-17 15:26 - 2017-03-18 19:23 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-01-17 15:26 - 2016-05-19 21:14 - 000000000 ____D C:\Users\Zdenek\AppData\LocalLow\IObit
2018-01-17 15:26 - 2016-05-19 21:14 - 000000000 ____D C:\ProgramData\IObit
2018-01-17 15:26 - 2016-05-19 21:14 - 000000000 ____D C:\Program Files\Common Files\IObit
2018-01-17 15:26 - 2016-05-19 21:13 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\IObit
2018-01-17 15:22 - 2017-12-14 14:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-01-17 07:55 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-01-17 07:54 - 2017-09-29 12:55 - 000000000 ___HD C:\Program Files\WindowsApps
2018-01-17 07:54 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-01-16 21:58 - 2016-05-19 21:14 - 000000000 ____D C:\ProgramData\ProductData
2018-01-16 03:31 - 2017-12-14 14:23 - 000000000 ____D C:\Users\DefaultAppPool
2018-01-15 22:03 - 2017-12-14 14:18 - 002110290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-15 22:03 - 2017-09-30 13:07 - 000886634 _____ C:\WINDOWS\system32\perfh005.dat
2018-01-15 22:03 - 2017-09-30 13:07 - 000202206 _____ C:\WINDOWS\system32\perfc005.dat
2018-01-15 21:56 - 2017-12-14 14:16 - 000387416 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-01-15 20:31 - 2017-08-05 12:21 - 000090744 _____ C:\Users\Zdenek\AppData\Local\GDIPFONTCACHEV1.DAT
2018-01-15 14:23 - 2017-11-18 17:46 - 000055160 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2018-01-15 14:23 - 2017-11-16 09:31 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Pro Antivirus.lnk
2018-01-15 14:23 - 2017-11-16 09:31 - 000002076 _____ C:\Users\Public\Desktop\Avast Pro Antivirus.lnk
2018-01-14 22:57 - 2016-05-19 20:07 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\vlc
2018-01-11 04:19 - 2016-05-18 12:36 - 000390256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-01-11 04:19 - 2016-05-18 12:36 - 000123880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-01-11 04:15 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\rescache
2018-01-10 02:17 - 2016-05-19 02:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-01-10 02:14 - 2017-10-14 12:42 - 126487616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-01-10 02:14 - 2017-09-29 12:45 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-01-10 02:14 - 2016-05-19 02:58 - 126487616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-01-10 02:10 - 2017-09-29 12:52 - 000000000 ____D C:\WINDOWS\INF
2018-01-09 05:14 - 2017-12-14 14:48 - 000000000 ___RD C:\Users\Zdenek\3D Objects
2018-01-09 05:14 - 2016-02-13 13:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\TextInput
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\Provisioning
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-01-09 05:08 - 2017-09-29 06:31 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-01-09 04:21 - 2016-05-18 11:29 - 000002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-08 19:50 - 2016-05-23 13:55 - 000000000 ____D C:\Pracovní
2018-01-06 08:26 - 2016-05-18 11:28 - 000000000 ____D C:\Program Files\Google
2018-01-04 09:54 - 2016-08-29 08:08 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\foobar2000
2018-01-04 08:52 - 2016-05-18 12:35 - 000000000 ____D C:\Program Files\AVAST Software
2018-01-04 08:52 - 2016-05-18 12:33 - 000000000 ____D C:\ProgramData\AVAST Software
2018-01-01 13:07 - 2016-05-18 10:48 - 000397994 __RSH C:\bootmgr
2017-12-30 08:45 - 2017-07-16 15:23 - 000001038 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-12-30 08:45 - 2017-07-16 15:23 - 000000000 ____D C:\Program Files\CCleaner
2017-12-30 08:38 - 2017-12-14 14:24 - 000000000 ____D C:\Users\Zdenek\AppData\Local\Packages
2017-12-30 08:28 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-12-28 09:40 - 2016-05-19 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag
2017-12-26 17:30 - 2017-08-18 20:42 - 000000000 ____D C:\Users\Zdenek\AppData\Local\Adobe
2017-12-26 17:20 - 2017-09-29 06:31 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-12-26 07:13 - 2017-12-14 14:12 - 000000000 ___DC C:\Windows.old
2017-12-24 00:45 - 2016-08-01 08:17 - 000006656 _____ C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-12-22 14:45 - 2017-09-29 12:57 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-12-22 14:45 - 2017-09-29 12:57 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-12-21 17:29 - 2017-11-16 09:31 - 000158224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2017-12-21 17:29 - 2017-03-10 09:31 - 000276696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-12-21 17:29 - 2017-03-10 09:31 - 000255584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-12-21 17:29 - 2017-03-10 09:31 - 000157376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-12-21 17:29 - 2017-03-10 09:31 - 000050344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000783104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000294680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000151328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000099528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000070832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000042824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys

==================== Files in the root of some directories =======

2016-08-01 08:17 - 2017-12-24 00:45 - 000006656 _____ () C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-01-13 18:01

==================== End of FRST.txt ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
U3 idsvc; no ImagePath
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {0A679DC7-8EA9-4512-A8C2-742825B0972B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {405AE617-CA82-4C9F-84AC-A33CD3484474} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {5E89D379-9471-4281-BC83-263D350F6EB4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {72E712B8-00FD-4308-8693-F6CDB26B945E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-18] (Google Inc.)
Task: {894EA467-7E52-45B3-80B7-A72BBE9ECCCB} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {8B17911D-D2C9-4165-B5FD-21DB89899E28} - System32\Tasks\{77F0CC73-CA94-489E-91E9-BAA6314DAEA0} => C:\Windows\system32\pcalua.exe -a C:\Users\Zdenek\AppData\Roaming\Seznam.cz\szninstall.exe -c -X
Task: {A0630869-FC9F-41B1-87D0-3154FE2810AD} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A19CFF1F-DEDA-4DF6-AA2E-8DD02291085D} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {A8F05B34-335B-4624-99F5-060F51831202} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {AA23CB1F-D289-406A-B5DB-98782C49170E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B73D28D4-B686-41AE-BA20-31F5809BC69B} - System32\Tasks\{D6745437-CAAF-43C7-9C5E-7AC1BF146348} => C:\Windows\system32\pcalua.exe -a C:\Users\Zdenek\Downloads\Apollo37zz.exe -d C:\Users\Zdenek\Downloads
Task: {BE291EF2-C98D-443B-8DE7-26279D326144} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C083AA2B-6F37-4364-B08C-76BAAA3FDA24} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C9F5D2F0-6376-4D26-B0AE-BB7035BBAA84} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {CFEBB867-A8BA-45FF-B23F-A979949C6A93} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {D1653D67-7478-4141-A8A5-111DF3B0FE52} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-18] (Google Inc.)
Task: {DDD0C773-0015-4068-A57E-0B843816B38B} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {E49B095A-A427-4BEF-9243-232B2A95E964} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {E8ABDFF4-B531-431C-A3CE-AA043A3758F7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {F489EC9D-B244-4606-9684-77B5A0B95CA2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
AlternateDataStreams: C:\01_CONFIG.SYS:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\01_user.js:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\log.txt:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17.01.2018
Ran by Zdenek (administrator) on ZDENEK-PC (17-01-2018 15:38:31)
Running from C:\Users\Zdenek\Desktop
Loaded Profiles: Zdenek (Available Profiles: Zdenek & DefaultAppPool)
Platform: Microsoft Windows 10 Pro Version 1709 16299.192 (X86) Language: �e�tina (�esko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(IObit) C:\Program Files\IObit\IObit Uninstaller\IUService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(IObit) C:\Program Files\IObit\Smart Defrag\SmartDefrag.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(IObit) C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Desktop.exe
(Hagel Technologies) C:\Program Files\DU Meter\DUMeter.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.16299.188_none_baa5415a79d2f3a3\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [488344 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [16553472 2017-08-10] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2017-12-21] (AVAST Software)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [DU Meter] => C:\Program Files\DU Meter\DUMeter.exe [1469952 2005-02-01] (Hagel Technologies)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-4082188929-3895119782-2185483832-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7972528 2017-12-13] (Piriform Ltd)
HKU\S-1-5-21-4082188929-3895119782-2185483832-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-01-04]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{1eba4988-5a2a-47d2-9e97-f6f7aa9eae45}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKU\S-1-5-21-4082188929-3895119782-2185483832-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-06] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-06] (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-06] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)

Chrome:
=======
CHR HomePage: Default -> teoma.com/?gct=hp
CHR StartupUrls: Default -> "hxxps://www.google.cz/"
CHR Profile: C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default [2018-01-17]
CHR Extension: (Prezentace) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Dokumenty) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Disk Google) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-18]
CHR Extension: (YouTube) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-18]
CHR Extension: (Avast Passwords) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2018-01-15]
CHR Extension: (Tabulky) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (Platby Internetov�ho obchodu Chrome) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-30]
CHR Extension: (Gmail) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-18]
CHR Extension: (Chrome Media Router) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-09]
CHR Profile: C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\System Profile [2017-12-30]
CHR HKLM\...\Chrome\Extension: [cohecngphbppjpaokeilaichhgggcmjb] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5906816 2017-12-21] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2017-12-21] (AVAST Software)
R2 CleanupPSvc; C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe [4709728 2017-12-13] (AVAST Software)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [104448 2017-08-07] (Freemake) [File not signed]
R2 IObitUnSvr; C:\Program Files\IObit\IObit Uninstaller\IUService.exe [206112 2017-06-14] (IObit)
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [724992 2006-10-09] (Nero AG) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2891976 2017-12-14] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [279408 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [86696 2017-09-29] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [158224 2017-12-21] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [255584 2017-12-21] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [157376 2017-12-21] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [276696 2017-12-21] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [50344 2017-12-21] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [118144 2017-12-21] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42824 2017-12-21] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-07] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [123880 2018-01-11] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [99528 2017-12-21] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [70832 2017-12-21] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [783104 2017-12-21] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [390256 2018-01-11] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [151328 2017-12-21] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [294680 2017-12-21] (AVAST Software)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [28744 2017-07-04] (ELAN Microelectronic Corp.)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-08-22] (REALiX(tm))
R3 IUFileFilter; C:\Program Files\IObit\IObit Uninstaller\drivers\win10_x86\IUFileFilter.sys [38304 2017-06-06] (IObit.com)
R3 IURegProcessFilter; C:\Program Files\IObit\IObit Uninstaller\drivers\win10_x86\IURegProcessFilter.sys [38264 2017-09-28] (IObit.com)
R3 MxlW2k; C:\WINDOWS\system32\Drivers\MxlW2k.sys [28352 2017-03-23] (MusicMatch, Inc.) [File not signed]
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [848856 2017-12-09] (Realtek )
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [302808 2016-09-06] (Realsil Semiconductor Corporation)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [18800 2016-03-22] (IObit)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [23040 2017-10-10] (The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37440 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [253848 2017-09-29] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [119952 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98200 2017-09-29] (Microsoft Corporation)
S3 WiseHDInfo; C:\WINDOWS\WiseHDInfo32.dll [13264 2016-09-12] (wisecleaner.com) [File not signed]
S3 WiseRegNotify; C:\WINDOWS\WiseRegNotify.sys [23984 2016-09-12] (WiseCleaner.com) [File not signed]
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-01-17 15:38 - 2018-01-17 15:39 - 000013164 _____ C:\Users\Zdenek\Desktop\FRST.txt
2018-01-17 15:38 - 2018-01-17 15:38 - 000000000 ___DC C:\FRST
2018-01-17 15:35 - 2018-01-17 15:36 - 001753600 _____ (Farbar) C:\Users\Zdenek\Desktop\FRST.exe
2018-01-17 15:30 - 2018-01-17 15:30 - 000000000 ____D C:\ProgramData\SWCUTemp
2018-01-17 09:08 - 2018-01-17 11:37 - 000000027 _____ C:\Users\Zdenek\Desktop\vita cislo mobil.txt
2018-01-16 17:18 - 2018-01-16 17:18 - 008761114 _____ C:\Users\Zdenek\Downloads\magnetoterapie_renaissance_katalog_a_cenik.pdf
2018-01-15 20:52 - 2018-01-15 20:52 - 008758156 _____ C:\Users\Zdenek\Downloads\magnetoterapie_renaissance_katalog.pdf
2018-01-15 19:58 - 2018-01-17 09:06 - 000003487 _____ C:\Users\Zdenek\Desktop\AdwCleaner[S0].txt
2018-01-15 19:56 - 2018-01-17 15:26 - 000000000 ___DC C:\AdwCleaner
2018-01-15 19:55 - 2018-01-15 19:55 - 008198432 _____ (Malwarebytes) C:\Users\Zdenek\Downloads\adwcleaner_7.0.6.0.exe
2018-01-15 19:47 - 2018-01-15 19:47 - 000000000 ____D C:\Users\Zdenek\AppData\Local\TeamViewer
2018-01-15 19:46 - 2018-01-15 21:26 - 000000000 ____D C:\Program Files\TeamViewer
2018-01-15 19:46 - 2018-01-15 20:31 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\TeamViewer
2018-01-15 19:46 - 2018-01-15 19:46 - 000001074 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 13.lnk
2018-01-15 19:46 - 2018-01-15 19:46 - 000001062 _____ C:\Users\Public\Desktop\TeamViewer 13.lnk
2018-01-15 19:45 - 2018-01-15 19:45 - 019315456 _____ (TeamViewer GmbH) C:\Users\Zdenek\Downloads\TeamViewer_Setup.exe
2018-01-15 19:35 - 2018-01-15 19:40 - 000000000 ____D C:\Program Files\trend micro
2018-01-15 19:35 - 2018-01-15 19:35 - 000000000 ___DC C:\rsit
2018-01-15 19:33 - 2018-01-15 19:33 - 001107968 _____ C:\Users\Zdenek\Downloads\RSIT.exe
2018-01-15 14:22 - 2017-12-21 17:29 - 000305840 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-01-14 22:53 - 2018-01-14 22:53 - 001302528 _____ C:\Users\Zdenek\Documents\vtipky_na_pristi_tyden_3.pps
2018-01-11 12:45 - 2018-01-11 12:45 - 001656933 _____ C:\Users\Zdenek\Documents\Na Slovensku m�me 60 unik�tnych dreven�ch kostol�kov.pdf
2018-01-10 19:53 - 2018-01-10 19:53 - 306310036 _____ C:\Users\Zdenek\Downloads\xhamster.com_7396415_home_porn_studio_three_girls_fucked_a_guy_480p.mp4
2018-01-10 19:52 - 2018-01-10 19:58 - 352645049 _____ C:\Users\Zdenek\Downloads\xhamster.com_4442197_russian_girl_photographer_240p.mp4
2018-01-10 14:27 - 2018-01-10 14:29 - 510500064 _____ C:\Users\Zdenek\Downloads\xhamster.com_3323565_russian_college_girl_1_240p.mp4
2018-01-10 14:10 - 2018-01-10 14:10 - 050051107 _____ C:\Users\Zdenek\Downloads\xhamster.com_3542850_fishing_with_nude_russian_teens_240p.mp4
2018-01-10 14:09 - 2018-01-10 14:09 - 406463072 _____ C:\Users\Zdenek\Downloads\xhamster.com_3289893_ancient_russian_sex_240p.mp4
2018-01-10 13:13 - 2018-01-10 13:13 - 416227979 _____ C:\Users\Zdenek\Downloads\xhamster.com_2171144_russian_240p.mp4
2018-01-10 02:01 - 2018-01-16 11:36 - 000000000 ____D C:\WINDOWS\Minidump
2018-01-09 03:45 - 2018-01-01 17:00 - 000661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-01-09 03:45 - 2018-01-01 13:08 - 000049560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
2018-01-09 03:45 - 2018-01-01 13:06 - 004145488 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-01-09 03:45 - 2018-01-01 13:06 - 000311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-01-09 03:45 - 2018-01-01 13:03 - 000650328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-01-09 03:45 - 2018-01-01 12:50 - 000914808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-01-09 03:45 - 2018-01-01 12:50 - 000799080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-01-09 03:45 - 2018-01-01 12:50 - 000081816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-01-09 03:45 - 2018-01-01 12:49 - 006387608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-01-09 03:45 - 2018-01-01 12:49 - 001627600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-01-09 03:45 - 2018-01-01 12:49 - 001116728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-01-09 03:45 - 2018-01-01 12:49 - 000974672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-01-09 03:45 - 2018-01-01 12:49 - 000481464 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-01-09 03:45 - 2018-01-01 12:48 - 001995672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-01-09 03:45 - 2018-01-01 12:48 - 000373144 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2018-01-09 03:45 - 2018-01-01 12:48 - 000373144 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-01-09 03:45 - 2018-01-01 12:48 - 000300952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-01-09 03:45 - 2018-01-01 12:48 - 000142640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-01-09 03:45 - 2018-01-01 12:48 - 000131992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-01-09 03:45 - 2018-01-01 12:48 - 000065432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-01-09 03:45 - 2018-01-01 12:47 - 000965016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-01-09 03:45 - 2018-01-01 12:47 - 000454040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-01-09 03:45 - 2018-01-01 12:47 - 000052632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2018-01-09 03:45 - 2018-01-01 12:46 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-01-09 03:45 - 2018-01-01 12:46 - 000289816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-09 03:45 - 2018-01-01 12:45 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-01-09 03:45 - 2018-01-01 12:45 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-01-09 03:45 - 2018-01-01 12:45 - 002192624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-01-09 03:45 - 2018-01-01 12:45 - 000535448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-01-09 03:45 - 2018-01-01 12:45 - 000080792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000575384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000480152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000414824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-01-09 03:45 - 2018-01-01 12:44 - 000353176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000278936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000116120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-01-09 03:45 - 2018-01-01 12:44 - 000100248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-01-09 03:45 - 2018-01-01 12:43 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 006479552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 004644912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 001003152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 000456232 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-01-09 03:45 - 2018-01-01 12:42 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 000295488 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
2018-01-09 03:45 - 2018-01-01 12:42 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-01-09 03:45 - 2018-01-01 12:42 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-01-09 03:45 - 2018-01-01 12:40 - 002172312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-01-09 03:45 - 2018-01-01 12:40 - 000760216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-01-09 03:45 - 2018-01-01 12:40 - 000454072 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2018-01-09 03:45 - 2018-01-01 12:38 - 000816624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-01-09 03:45 - 2018-01-01 12:38 - 000677168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-01-09 03:45 - 2018-01-01 12:38 - 000416152 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-01-09 03:45 - 2018-01-01 12:35 - 000538760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-01-09 03:45 - 2018-01-01 12:34 - 000703568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-01-09 03:45 - 2018-01-01 12:31 - 000508848 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-01-09 03:45 - 2018-01-01 12:25 - 002905600 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-01-09 03:45 - 2018-01-01 12:25 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-01-09 03:45 - 2018-01-01 12:25 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-01-09 03:45 - 2018-01-01 12:25 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-01-09 03:45 - 2018-01-01 12:25 - 000308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-01-09 03:45 - 2018-01-01 12:25 - 000075776 _____ C:\WINDOWS\system32\runexehelper.exe
2018-01-09 03:45 - 2018-01-01 12:24 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-01-09 03:45 - 2018-01-01 12:22 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-01-09 03:45 - 2018-01-01 12:22 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-01-09 03:45 - 2018-01-01 12:20 - 019337216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-01-09 03:45 - 2018-01-01 12:20 - 018917888 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-01-09 03:45 - 2018-01-01 12:20 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-01-09 03:45 - 2018-01-01 12:20 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-01-09 03:45 - 2018-01-01 12:19 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-01-09 03:45 - 2018-01-01 12:19 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-01-09 03:45 - 2018-01-01 12:19 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-01-09 03:45 - 2018-01-01 12:19 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-01-09 03:45 - 2018-01-01 12:19 - 000296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-01-09 03:45 - 2018-01-01 12:19 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-01-09 03:45 - 2018-01-01 12:18 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-01-09 03:45 - 2018-01-01 12:18 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2018-01-09 03:45 - 2018-01-01 12:18 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-01-09 03:45 - 2018-01-01 12:18 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 011923968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 006564864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-01-09 03:45 - 2018-01-01 12:17 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 003676672 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 000956928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-01-09 03:45 - 2018-01-01 12:16 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 012687872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 006029312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 002647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 001771520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-01-09 03:45 - 2018-01-01 12:15 - 000657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 002465280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 001959424 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 001118720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-01-09 03:45 - 2018-01-01 12:14 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-01-09 03:45 - 2018-01-01 12:13 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 001409536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 001034240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 000897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-01-09 03:45 - 2018-01-01 12:13 - 000695808 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-01-09 03:45 - 2018-01-01 12:12 - 001288704 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-01-09 03:45 - 2018-01-01 12:12 - 000603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-01-09 03:45 - 2018-01-01 12:12 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-01-09 03:45 - 2018-01-01 12:11 - 000650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-01-09 03:45 - 2018-01-01 12:11 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-01-09 03:45 - 2018-01-01 12:09 - 001983488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2018-01-09 03:45 - 2018-01-01 12:09 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2018-01-09 03:44 - 2018-01-01 12:49 - 000258808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-01-09 03:44 - 2018-01-01 12:49 - 000103320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-01-09 03:44 - 2018-01-01 12:49 - 000076184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2018-01-09 03:44 - 2018-01-01 12:48 - 000508312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-01-09 03:44 - 2018-01-01 12:48 - 000081816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2018-01-09 03:44 - 2018-01-01 12:48 - 000027544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fs_rec.sys
2018-01-09 03:44 - 2018-01-01 12:47 - 000142744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-01-09 03:44 - 2018-01-01 12:47 - 000096152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2018-01-09 03:44 - 2018-01-01 12:45 - 000806808 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2018-01-09 03:44 - 2018-01-01 12:45 - 000450928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2018-01-09 03:44 - 2018-01-01 12:45 - 000088984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-01-09 03:44 - 2018-01-01 12:45 - 000073896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000221592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000186520 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000160664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000104344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000099240 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000097176 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000061336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000048536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vdrvroot.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000040856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000033176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000026008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2018-01-09 03:44 - 2018-01-01 12:44 - 000023288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2018-01-09 03:44 - 2018-01-01 12:44 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshhyperv.dll
2018-01-09 03:44 - 2018-01-01 12:42 - 000047512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-01-09 03:44 - 2018-01-01 12:40 - 000506264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-01-09 03:44 - 2018-01-01 12:40 - 000417360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp110_win.dll
2018-01-09 03:44 - 2018-01-01 12:39 - 000042392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcw.sys
2018-01-09 03:44 - 2018-01-01 12:35 - 000039832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2018-01-09 03:44 - 2018-01-01 12:35 - 000028056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2018-01-09 03:44 - 2018-01-01 12:34 - 000053336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2018-01-09 03:44 - 2018-01-01 12:25 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
2018-01-09 03:44 - 2018-01-01 12:25 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2018-01-09 03:44 - 2018-01-01 12:24 - 000196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-01-09 03:44 - 2018-01-01 12:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-01-09 03:44 - 2018-01-01 12:24 - 000038912 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-01-09 03:44 - 2018-01-01 12:24 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2018-01-09 03:44 - 2018-01-01 12:23 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2018-01-09 03:44 - 2018-01-01 12:23 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HyperVideo.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysntfy.dll
2018-01-09 03:44 - 2018-01-01 12:23 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VMBusHID.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\nrpsrv.dll
2018-01-09 03:44 - 2018-01-01 12:23 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-01-09 03:44 - 2018-01-01 12:23 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hyperkbd.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgencounter.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgid.sys
2018-01-09 03:44 - 2018-01-01 12:23 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vms3cap.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irda.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2018-01-09 03:44 - 2018-01-01 12:22 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\efslsaext.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndisuio.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lltdio.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmictimeprovider.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2018-01-09 03:44 - 2018-01-01 12:22 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2018-01-09 03:44 - 2018-01-01 12:22 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2018-01-09 03:44 - 2018-01-01 12:22 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gpuenergydrv.sys
2018-01-09 03:44 - 2018-01-01 12:21 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-01-09 03:44 - 2018-01-01 12:21 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2018-01-09 03:44 - 2018-01-01 12:21 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2018-01-09 03:44 - 2018-01-01 12:21 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2018-01-09 03:44 - 2018-01-01 12:21 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-01-09 03:44 - 2018-01-01 12:21 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\efssvc.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2018-01-09 03:44 - 2018-01-01 12:21 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2018-01-09 03:44 - 2018-01-01 12:21 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2018-01-09 03:44 - 2018-01-01 12:20 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2018-01-09 03:44 - 2018-01-01 12:20 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-01-09 03:44 - 2018-01-01 12:20 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2018-01-09 03:44 - 2018-01-01 12:20 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsisvc.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2018-01-09 03:44 - 2018-01-01 12:19 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-01-09 03:44 - 2018-01-01 12:19 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-01-09 03:44 - 2018-01-01 12:19 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-01-09 03:44 - 2018-01-01 12:19 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-01-09 03:44 - 2018-01-01 12:18 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2018-01-09 03:44 - 2018-01-01 12:18 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2018-01-09 03:44 - 2018-01-01 12:17 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2018-01-09 03:44 - 2018-01-01 12:16 - 000966656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2018-01-09 03:44 - 2018-01-01 12:16 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-01-09 03:44 - 2018-01-01 12:16 - 000619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-01-09 03:44 - 2018-01-01 12:16 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-01-09 03:44 - 2018-01-01 12:16 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-01-09 03:44 - 2018-01-01 12:15 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-01-09 03:44 - 2018-01-01 12:15 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2018-01-09 03:44 - 2018-01-01 12:14 - 000348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-01-09 03:44 - 2018-01-01 12:14 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2018-01-09 03:44 - 2018-01-01 12:14 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2018-01-09 03:44 - 2018-01-01 12:13 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-01-09 03:44 - 2018-01-01 12:13 - 001569792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2018-01-09 03:44 - 2018-01-01 12:13 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-01-09 03:44 - 2018-01-01 12:13 - 000732672 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-01-09 03:44 - 2018-01-01 12:13 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-01-09 03:44 - 2018-01-01 12:13 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-01-09 03:44 - 2018-01-01 12:13 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-01-09 03:44 - 2018-01-01 12:13 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2018-01-09 03:44 - 2018-01-01 12:13 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2018-01-09 03:44 - 2018-01-01 12:12 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-01-09 03:44 - 2018-01-01 12:11 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2018-01-09 03:44 - 2018-01-01 12:11 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2018-01-09 03:44 - 2018-01-01 12:11 - 000207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2018-01-09 03:44 - 2018-01-01 12:11 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-01-09 03:44 - 2018-01-01 12:11 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpbus.sys
2018-01-09 03:44 - 2018-01-01 12:10 - 000707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2018-01-09 03:44 - 2018-01-01 12:10 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2018-01-09 03:44 - 2018-01-01 12:10 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\beep.sys
2018-01-09 03:44 - 2018-01-01 12:09 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2018-01-09 03:44 - 2018-01-01 12:09 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2018-01-09 03:44 - 2018-01-01 12:09 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdPnp.dll
2018-01-09 03:44 - 2018-01-01 12:09 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmiprop.dll
2018-01-09 03:44 - 2018-01-01 12:09 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWNet.dll
2018-01-09 03:44 - 2018-01-01 12:08 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2018-01-09 03:44 - 2018-01-01 12:08 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2018-01-09 03:44 - 2018-01-01 12:08 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\null.sys
2018-01-08 19:57 - 2018-01-08 19:57 - 014065909 _____ C:\Users\Zdenek\Documents\VID-20171229-WA0004.mp4
2018-01-08 19:55 - 2018-01-08 19:55 - 007159030 _____ C:\Users\Zdenek\Documents\china.mp4
2018-01-08 08:58 - 2018-01-08 08:59 - 000000000 ____D C:\Users\Zdenek\Downloads\Susedia 6
2018-01-08 08:43 - 2018-01-08 08:43 - 004961280 _____ C:\Users\Zdenek\Documents\Neni_to_Sumava__ale_je_to_nadhera.pps
2018-01-08 08:41 - 2018-01-08 08:41 - 000638149 _____ C:\Users\Zdenek\Documents\Motivace_k_byyh____________ynyy.mp4
2018-01-08 08:36 - 2018-01-08 08:36 - 001721188 _____ C:\Users\Zdenek\Documents\007.mp4
2018-01-08 08:36 - 2018-01-08 08:36 - 001518722 _____ C:\Users\Zdenek\Documents\004.mp4
2018-01-08 08:36 - 2018-01-08 08:36 - 001442433 _____ C:\Users\Zdenek\Documents\010.mp4
2018-01-08 08:36 - 2018-01-08 08:36 - 000818654 _____ C:\Users\Zdenek\Documents\008.mp4
2018-01-07 23:37 - 2018-01-07 23:38 - 625068236 _____ C:\Users\Zdenek\Downloads\P��pady.detektiva.Murdocha.10x09.Pramen.v��n�ho.ml�d�.HDTV.CZ.avi
2018-01-07 23:36 - 2018-01-07 23:38 - 689125118 _____ C:\Users\Zdenek\Downloads\P��pady.detektiva.Murdocha.10x08.V�kend.u.Murdoch�.HDTV.CZ.avi
2018-01-07 10:39 - 2018-01-07 10:40 - 000000000 ____D C:\Users\Zdenek\Downloads\Matlock 25
2018-01-06 21:53 - 2018-01-06 21:55 - 000000000 ____D C:\Users\Zdenek\Downloads\Soumrak templ���
2018-01-06 08:27 - 2018-01-06 08:27 - 000000000 ____D C:\Users\Zdenek\AppData\LocalLow\Google
2018-01-06 08:26 - 2018-01-06 08:26 - 000002179 _____ C:\Users\Public\Desktop\Google Earth.lnk
2018-01-06 08:26 - 2018-01-06 08:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2018-01-04 08:52 - 2018-01-04 20:52 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\Avast Tuneup
2018-01-04 08:52 - 2018-01-04 08:52 - 000001250 _____ C:\Users\Public\Desktop\Avast Cleanup Premium.lnk
2018-01-04 08:52 - 2018-01-04 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-01-03 15:26 - 2018-01-03 15:26 - 022685998 _____ C:\Users\Zdenek\Downloads\brno.pdf
2018-01-02 19:01 - 2018-01-02 19:01 - 006336512 _____ C:\Users\Zdenek\Documents\Krasa_bonsaji_a_kvetu.pps
2017-12-31 17:49 - 2017-12-31 17:49 - 006512632 _____ C:\Users\Zdenek\Documents\Koc�r.mp4
2017-12-31 17:44 - 2017-12-31 17:44 - 006490624 _____ C:\Users\Zdenek\Documents\Chlapi, poj�te se po�majchlovat.pps
2017-12-30 19:36 - 2017-12-30 19:36 - 007311872 _____ C:\Users\Zdenek\Documents\-Seneka.pps
2017-12-30 08:59 - 2017-12-30 08:59 - 000001101 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-12-30 08:49 - 2017-12-30 08:49 - 000041994 _____ C:\Users\Zdenek\Documents\cc_20171230_084928.reg
2017-12-29 21:19 - 2017-12-29 21:19 - 004473856 _____ C:\Users\Zdenek\Documents\For_real_1.pps
2017-12-29 21:17 - 2017-12-29 21:17 - 000681272 _____ C:\Users\Zdenek\Documents\VID-20170707-WA0001.mp4
2017-12-29 21:16 - 2017-12-29 21:16 - 003099026 _____ C:\Users\Zdenek\Documents\VID-20161221-WA0003.mp4
2017-12-29 21:14 - 2017-12-29 21:14 - 009301824 _____ C:\Users\Zdenek\Documents\VID-20171212-WA0005.mp4
2017-12-29 21:07 - 2017-12-29 21:07 - 006466766 _____ C:\Users\Zdenek\Documents\VID-20171008-WA0014.mp4
2017-12-28 00:51 - 2017-12-28 00:51 - 005608805 _____ C:\Users\Zdenek\Documents\Novinka.mp4
2017-12-28 00:51 - 2017-12-28 00:51 - 001450646 _____ C:\Users\Zdenek\Documents\Stokoruna.pdf
2017-12-28 00:50 - 2017-12-28 00:50 - 006151711 _____ C:\Users\Zdenek\Documents\policejn� akce11.wmv
2017-12-28 00:50 - 2017-12-28 00:50 - 003718829 _____ C:\Users\Zdenek\Documents\VID-20171027-WA0021.mp4
2017-12-28 00:47 - 2017-12-28 00:47 - 006736216 _____ C:\Users\Zdenek\Documents\inconscients et chanceux.mp4
2017-12-28 00:47 - 2017-12-28 00:47 - 003401216 _____ C:\Users\Zdenek\Documents\SENECA OZ.pps
2017-12-28 00:46 - 2017-12-28 00:46 - 009288920 _____ C:\Users\Zdenek\Documents\Acro pere et fils-ag.mp4
2017-12-28 00:46 - 2017-12-28 00:46 - 002600648 _____ C:\Users\Zdenek\Documents\2017-10-04-VIDEO-00000500.mp4
2017-12-27 08:57 - 2017-12-27 08:57 - 006017005 _____ C:\Users\Zdenek\Documents\[Music] Silvester 68 Kissangyalom (Lyrics) [HD].mp4
2017-12-25 00:51 - 2017-12-25 00:51 - 004323925 _____ C:\Users\Zdenek\Documents\VID-20161217-WA0005.mp4
2017-12-25 00:36 - 2017-12-25 00:36 - 007523022 _____ C:\Users\Zdenek\Documents\Bagpipes - Scotland The Brave.mp4
2017-12-25 00:30 - 2017-12-25 00:30 - 000840655 _____ C:\Users\Zdenek\Documents\lecitelka-eva-obarooo.pdf
2017-12-25 00:25 - 2017-12-25 00:25 - 005832192 _____ C:\Users\Zdenek\Documents\Boheminium 2017.pps
2017-12-25 00:24 - 2017-12-25 00:24 - 004071936 _____ C:\Users\Zdenek\Documents\Kaktus_pro_stesti.pps
2017-12-25 00:16 - 2017-12-25 00:16 - 006314932 _____ C:\Users\Zdenek\Documents\ZA�ZRAC�NA�_Kniha.pdf
2017-12-25 00:14 - 2017-12-25 00:14 - 013225846 _____ C:\Users\Zdenek\Documents\VID-20161220-WA0000.mp4
2017-12-25 00:11 - 2017-12-25 00:11 - 008534988 _____ C:\Users\Zdenek\Documents\Silvestrovsk� tal��e-konf.mp4
2017-12-25 00:10 - 2017-12-25 00:10 - 000678847 _____ C:\Users\Zdenek\Documents\received_1171695319552932.mp4
2017-12-24 17:17 - 2017-12-24 17:17 - 001746944 _____ C:\Users\Zdenek\Documents\propritele.pps
2017-12-24 12:21 - 2017-12-24 12:21 - 003357696 _____ C:\Users\Zdenek\Documents\SHANGHAI_-_hlavni_nadrazi-pep.pps
2017-12-24 12:13 - 2017-12-24 12:13 - 002010171 _____ C:\Users\Zdenek\Documents\studna splnennych prani.wmv
2017-12-24 01:02 - 2017-12-24 00:58 - 008187309 _____ C:\Users\Zdenek\Documents\Viete e video.mp4
2017-12-24 00:57 - 2017-12-24 00:57 - 012546109 _____ C:\Users\Zdenek\Documents\Poj�?, budeme se kamarA!dit.mp4
2017-12-23 11:30 - 2017-12-23 11:30 - 001370771 _____ C:\Users\Zdenek\Documents\video-1511396100.mp4
2017-12-22 20:21 - 2017-12-22 20:21 - 012093129 _____ C:\Users\Zdenek\Documents\ATT00013.mp4
2017-12-22 20:18 - 2017-12-22 20:18 - 004686848 _____ C:\Users\Zdenek\Documents\Trp�livost fotografa.pps
2017-12-22 20:16 - 2017-12-22 20:16 - 007190490 _____ C:\Users\Zdenek\Documents\IMG_7856.MP4
2017-12-22 19:54 - 2017-12-22 19:54 - 000908786 _____ C:\Users\Zdenek\Documents\VID-20171108-WA0001.mp4
2017-12-22 19:51 - 2017-12-22 19:51 - 006074368 _____ C:\Users\Zdenek\Documents\VIO USA WASHINGTON DCity L.pps
2017-12-22 19:50 - 2017-12-22 19:50 - 000442880 _____ C:\Users\Zdenek\Documents\10 kr�t nejzdrav??j�� n�poje.pps
2017-12-22 19:48 - 2017-12-22 19:48 - 010220898 _____ C:\Users\Zdenek\Documents\2017-01-16-VIDEO-00002106.mp4
2017-12-22 19:48 - 2017-12-22 19:48 - 005271944 _____ C:\Users\Zdenek\Documents\Jurassic_Parking.mp4
2017-12-22 19:48 - 2017-12-22 19:48 - 001982616 _____ C:\Users\Zdenek\Documents\Terorista.mp4
2017-12-22 19:47 - 2017-12-22 19:47 - 003774560 _____ C:\Users\Zdenek\Documents\Ty jsi tak uzasny.mp4
2017-12-22 19:47 - 2017-12-22 19:47 - 001016591 _____ C:\Users\Zdenek\Documents\maserka.mp4
2017-12-22 19:46 - 2017-12-22 19:46 - 001826289 _____ C:\Users\Zdenek\Documents\Pusu.mp4
2017-12-22 19:42 - 2017-12-22 19:42 - 007070850 _____ C:\Users\Zdenek\Documents\Jak� budou zpr�vy v SRN v r. 2020.mp4
2017-12-22 19:42 - 2017-12-22 19:42 - 006949083 _____ C:\Users\Zdenek\Documents\Netradi�n� lid� - 2017 - 11 - 22.mp4
2017-12-22 19:38 - 2017-12-22 19:38 - 005267456 _____ C:\Users\Zdenek\Documents\Pussy_ass_3.pps
2017-12-22 19:38 - 2017-12-22 19:38 - 000475136 _____ C:\Users\Zdenek\Documents\Vzpominky_CZ.pps
2017-12-22 19:37 - 2017-12-22 19:37 - 000873788 _____ C:\Users\Zdenek\Documents\Pta�� budka.mp4
2017-12-22 19:29 - 2017-12-22 19:29 - 013597731 _____ C:\Users\Zdenek\Documents\meloun 051.mp4
2017-12-22 19:25 - 2017-12-22 19:25 - 008764776 _____ C:\Users\Zdenek\Documents\178846.mp4
2017-12-22 19:25 - 2017-12-22 19:25 - 001464521 _____ C:\Users\Zdenek\Documents\Poprdo_pv�.mp4
2017-12-22 17:17 - 2017-12-22 17:17 - 008125797 _____ C:\Users\Zdenek\Documents\Kucha�ka �esk� a moravsk� vesnice.pdf
2017-12-21 17:30 - 2017-12-21 17:29 - 000118144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2017-12-21 11:08 - 2017-12-21 11:08 - 001685504 _____ C:\Users\Zdenek\Documents\Symboly_zem�.pps
2017-12-21 11:07 - 2017-12-21 11:07 - 005189120 _____ C:\Users\Zdenek\Documents\FOTO MANUPILATIE!!!.pps
2017-12-21 11:02 - 2017-12-21 11:02 - 009275928 _____ C:\Users\Zdenek\Documents\VF160513_100241_flv_middle.mp4
2017-12-21 10:59 - 2017-12-21 10:59 - 001548267 _____ C:\Users\Zdenek\Documents\VID-20150706-WA0000.mp4
2017-12-21 10:55 - 2017-12-21 10:55 - 002543851 _____ C:\Users\Zdenek\Documents\IMG_2879.MP4
2017-12-21 10:53 - 2017-12-21 10:53 - 005626574 _____ C:\Users\Zdenek\Documents\VID-20171018-WA0002.mp4
2017-12-21 10:44 - 2017-12-21 10:44 - 000477184 _____ C:\Users\Zdenek\Documents\Adventni_svicky.pps
2017-12-21 10:39 - 2017-12-21 10:39 - 009849030 _____ C:\Users\Zdenek\Documents\historie Elvis Presley No More - Blue Hawaii1.mp4
2017-12-21 10:39 - 2017-12-21 10:39 - 008589166 _____ C:\Users\Zdenek\Documents\Advent_1.ppsx
2017-12-21 09:42 - 2017-12-21 09:42 - 007323648 _____ C:\Users\Zdenek\Documents\Kate_Middleton_o_copiaza_pe_Lady_Diana.pps
2017-12-21 09:42 - 2017-12-21 09:42 - 003842048 _____ C:\Users\Zdenek\Documents\10 rozhleden �en.pps
2017-12-20 11:13 - 2017-12-20 11:13 - 006411793 _____ C:\Users\Zdenek\Documents\Kondom.mp4
2017-12-20 11:12 - 2017-12-20 11:12 - 007042809 _____ C:\Users\Zdenek\Documents\K_und_K_Hofbaeckerei_Demel_.mp4
2017-12-20 11:10 - 2017-12-20 11:10 - 006464252 _____ C:\Users\Zdenek\Documents\2016_12_18_VIDEO_00000199.mp4
2017-12-20 11:10 - 2017-12-20 11:10 - 002940928 _____ C:\Users\Zdenek\Documents\Cannes Festival de foufounes.pps
2017-12-20 11:09 - 2017-12-20 11:09 - 001346035 _____ C:\Users\Zdenek\Documents\zlato nemA�A3u spA!t.mp4
2017-12-20 11:08 - 2017-12-20 11:08 - 007366932 _____ C:\Users\Zdenek\Documents\�.mp4
2017-12-20 11:08 - 2017-12-20 11:08 - 006826496 _____ C:\Users\Zdenek\Documents\Sleepwalk-.pps
2017-12-20 11:08 - 2017-12-20 11:08 - 002413302 _____ C:\Users\Zdenek\Documents\IMG_3578.MP4
2017-12-20 11:07 - 2017-12-20 11:07 - 007798271 _____ C:\Users\Zdenek\Documents\Pliage.mp4
2017-12-20 11:07 - 2017-12-20 11:07 - 001791630 _____ C:\Users\Zdenek\Documents\VID-20170721-WA00111.mp4
2017-12-20 11:06 - 2017-12-20 11:06 - 005123762 _____ C:\Users\Zdenek\Documents\Orangutan_Babysits_Tiger_Cubs.mp4
2017-12-20 11:04 - 2017-12-20 11:04 - 010786862 _____ C:\Users\Zdenek\Documents\skornezodides.mp4
2017-12-20 11:04 - 2017-12-20 11:04 - 002568536 _____ C:\Users\Zdenek\Documents\Past_na_chlapy_-_pred_a_po.mp4
2017-12-20 11:01 - 2017-12-20 11:01 - 009894086 _____ C:\Users\Zdenek\Documents\modern� technika hasi��.mp4
2017-12-20 10:57 - 2017-12-20 10:57 - 004323840 _____ C:\Users\Zdenek\Documents\Cibulov�_trh_v__Bernu.pps
2017-12-20 10:57 - 2017-12-20 10:57 - 003538976 _____ C:\Users\Zdenek\Documents\learn_flamenco.mp4
2017-12-20 10:52 - 2017-12-20 10:52 - 006155578 _____ C:\Users\Zdenek\Documents\M�gico.mp4
2017-12-20 10:50 - 2017-12-20 10:50 - 006829251 _____ C:\Users\Zdenek\Documents\Excelentn� narozeniny.mp4
2017-12-20 10:42 - 2017-12-20 10:42 - 000689402 _____ C:\Users\Zdenek\Documents\Absolutne__najlepsi_vtip.pdf
2017-12-20 10:41 - 2017-12-20 10:41 - 006198118 _____ C:\Users\Zdenek\Documents\89551d20-e448-4487-8222-c67a140c9370.MP4
2017-12-19 23:46 - 2017-12-19 23:46 - 004694069 _____ C:\Users\Zdenek\Documents\Kapor.mp4
2017-12-19 23:39 - 2017-12-19 23:39 - 004243995 _____ C:\Users\Zdenek\Documents\Kocka_a_ptacek.mp4
2017-12-19 23:37 - 2017-12-19 23:37 - 001358275 _____ C:\Users\Zdenek\Documents\VID-20171123-WA0001.mp4
2017-12-19 23:34 - 2017-12-19 23:34 - 002451456 _____ C:\Users\Zdenek\Documents\15 SLOVENSK�CH SKVOSTOV !.pps
2017-12-19 23:32 - 2017-12-19 23:32 - 013270414 _____ C:\Users\Zdenek\Documents\VID-20171109-WA0025.mp4
2017-12-19 23:30 - 2017-12-19 23:30 - 011142755 _____ C:\Users\Zdenek\Documents\Let's Twist Again - Chubby Checker.mp4
2017-12-19 23:27 - 2017-12-19 23:27 - 010307072 _____ C:\Users\Zdenek\Documents\TheAlps.pps
2017-12-19 23:27 - 2017-12-19 23:27 - 005517485 _____ C:\Users\Zdenek\Documents\VID-20170227-WA0008.mp4
2017-12-19 23:27 - 2017-12-19 23:27 - 005485113 _____ C:\Users\Zdenek\Documents\Manta11.mp4
2017-12-19 23:24 - 2017-12-19 23:24 - 002263656 _____ C:\Users\Zdenek\Documents\zv��at�m hr�blo.mp4
2017-12-19 23:24 - 2017-12-19 23:24 - 001466619 _____ C:\Users\Zdenek\Documents\st��h�n� pejska.mp4
2017-12-19 23:21 - 2017-12-19 23:21 - 001309063 _____ C:\Users\Zdenek\Documents\hledej chybu.mp4
2017-12-19 23:21 - 2017-12-19 23:21 - 000772390 _____ C:\Users\Zdenek\Documents\ko�ka a tygr.mp4
2017-12-19 23:15 - 2017-12-19 23:15 - 011396608 _____ C:\Users\Zdenek\Documents\Cesta na ji�n� Moravu(1).pps
2017-12-19 23:12 - 2017-12-19 23:12 - 013961942 _____ C:\Users\Zdenek\Documents\FUEGOS_ARTIFICIALES.MP4
2017-12-19 23:09 - 2017-12-19 23:09 - 008308224 _____ C:\Users\Zdenek\Documents\Fotky roku..pps
2017-12-19 23:07 - 2017-12-19 23:07 - 000627099 _____ C:\Users\Zdenek\Documents\De_vantro_hunde_Allahu_Akbar_lussing.mp4
2017-12-19 23:05 - 2017-12-19 23:05 - 000868852 _____ C:\Users\Zdenek\Documents\Helma.mp4
2017-12-19 23:00 - 2017-12-19 23:00 - 011226148 _____ C:\Users\Zdenek\Documents\SECURITE ROUTIERE.mp4
2017-12-19 23:00 - 2017-12-19 23:00 - 008778067 _____ C:\Users\Zdenek\Documents\IMG_42161.mp4
2017-12-19 23:00 - 2017-12-19 23:00 - 005153362 _____ C:\Users\Zdenek\Documents\Ti Japonci.mp4
2017-12-19 19:12 - 2017-12-19 19:12 - 004674365 _____ C:\Users\Zdenek\Documents\VID-20170815-WA0003.mp4
2017-12-19 19:12 - 2017-12-19 19:12 - 002532635 _____ C:\Users\Zdenek\Documents\7-d-park-japon GH.mp4
2017-12-19 19:10 - 2017-12-19 19:10 - 003029112 _____ C:\Users\Zdenek\Documents\On n'arrete pas le progre s &11.mp4
2017-12-19 19:10 - 2017-12-19 19:10 - 000365405 _____ C:\Users\Zdenek\Documents\HowtoCatchaSpider.mp4
2017-12-19 19:04 - 2017-12-19 19:04 - 010470704 _____ C:\Users\Zdenek\Documents\VID-20170201-WA0000.mp4
2017-12-19 12:52 - 2017-12-19 12:52 - 009049600 _____ C:\Users\Zdenek\Documents\No_comment.pps
2017-12-19 12:50 - 2017-12-19 12:50 - 005849859 _____ C:\Users\Zdenek\Documents\2017-06-06-VIDEO-00002221.mp4
2017-12-19 12:50 - 2017-12-19 12:50 - 004024320 _____ C:\Users\Zdenek\Documents\Incredible_places2.pps
2017-12-19 12:47 - 2017-12-19 12:47 - 004520148 _____ C:\Users\Zdenek\Documents\Katze schaut sich Horrorfilm an.mp4
2017-12-19 12:28 - 2017-12-19 12:28 - 001680548 _____ C:\Users\Zdenek\Documents\VID-20170831-WA0007.mp4
2017-12-19 12:28 - 2017-12-19 12:28 - 000942372 _____ C:\Users\Zdenek\Documents\VID-20170831-WA0009.mp4
2017-12-19 12:27 - 2017-12-19 12:27 - 010035704 _____ C:\Users\Zdenek\Documents\Wasserbet.mp4
2017-12-19 12:27 - 2017-12-19 12:27 - 008804617 _____ C:\Users\Zdenek\Documents\utf-8___C3_9A_C5_BEasn_C3_BD_20pejsek_2E_2Emp4.mp4
2017-12-19 12:27 - 2017-12-19 12:27 - 007563163 _____ C:\Users\Zdenek\Documents\Andre.mp4
2017-12-19 12:27 - 2017-12-19 12:27 - 000725504 _____ C:\Users\Zdenek\Documents\Comment_savoir_de_quel_cote_aller.pps
2017-12-19 12:26 - 2017-12-19 12:26 - 004370944 _____ C:\Users\Zdenek\Documents\K��pl� kv�tin????�e.pps
2017-12-19 12:26 - 2017-12-19 12:26 - 002887975 _____ C:\Users\Zdenek\Documents\utf-8___C3_9A_C5_BEasn_C3_A1_20legrace_2E_2E_2E_2Emp4.mp4
2017-12-19 12:26 - 2017-12-19 12:26 - 002284981 _____ C:\Users\Zdenek\Documents\utf-8__Papou_C5_A1ek_20nebo_20pes_2Emp4.mp4
2017-12-19 12:21 - 2017-12-19 12:21 - 001292800 _____ C:\Users\Zdenek\Documents\Dlouho_jsme_se_tak_nenasmali.pps
2017-12-19 12:18 - 2017-12-19 12:18 - 005280271 _____ C:\Users\Zdenek\Documents\Blumen_setzen.mp4
2017-12-19 12:17 - 2017-12-19 12:17 - 012600574 _____ C:\Users\Zdenek\Documents\lid� jsou ��asn� - PEOPLE ARE AWESOME (Kids Edition).mp4
2017-12-19 12:17 - 2017-12-19 12:17 - 001053184 _____ C:\Users\Zdenek\Documents\Posp�_si.pps
2017-12-19 12:16 - 2017-12-19 12:16 - 003516122 _____ C:\Users\Zdenek\Documents\received_363774157381488.mp4
2017-12-19 12:10 - 2017-12-19 12:10 - 000629766 _____ C:\Users\Zdenek\Documents\Pivo.mp4
2017-12-19 12:07 - 2017-12-19 12:07 - 008359496 _____ C:\Users\Zdenek\Documents\2017-04-03-VIDEO-00002396.mp4
2017-12-19 12:06 - 2017-12-19 12:06 - 008197584 _____ C:\Users\Zdenek\Documents\VID-20171018-WA0001.mp4
2017-12-19 12:05 - 2017-12-19 12:05 - 014374052 _____ C:\Users\Zdenek\Documents\VID-20170903-WA00101.mp4
2017-12-19 12:01 - 2017-12-19 12:01 - 013488292 _____ C:\Users\Zdenek\Documents\Tah�ky nejen pro �kol�ky.pdf
2017-12-19 11:59 - 2017-12-19 11:59 - 002008205 _____ C:\Users\Zdenek\Documents\Cerf1.mp4
2017-12-19 11:59 - 2017-12-19 11:59 - 001252758 _____ C:\Users\Zdenek\Documents\VID-20160316-WA0009.mp4
2017-12-19 11:57 - 2017-12-19 11:57 - 005267164 _____ C:\Users\Zdenek\Documents\2017-02-07-VIDEO-000000891.mp4
2017-12-19 11:52 - 2017-12-19 11:52 - 006810058 _____ C:\Users\Zdenek\Documents\Mercedes.mp4
2017-12-19 11:50 - 2017-12-19 11:50 - 006472192 _____ C:\Users\Zdenek\Documents\Hinduskie_klejnoty_KM.pps
2017-12-19 11:49 - 2017-12-19 11:49 - 007251420 _____ C:\Users\Zdenek\Documents\Nova profese.mp4
2017-12-19 11:47 - 2017-12-19 11:47 - 008167123 _____ C:\Users\Zdenek\Documents\2016_Csardas_Adrienn_Banhegyi_Jump_Rope_Girl.mp4
2017-12-19 11:45 - 2017-12-19 11:45 - 001119447 _____ C:\Users\Zdenek\Documents\Zakry si kolen�.mp4
2017-12-19 11:42 - 2017-12-19 11:42 - 001711104 _____ C:\Users\Zdenek\Documents\kouzlo �esk� zimy.pps
2017-12-19 11:38 - 2017-12-19 11:38 - 009298364 _____ C:\Users\Zdenek\Documents\MurA�na se za rybi�?ku imazlA�.mp4
2017-12-19 11:38 - 2017-12-19 11:38 - 005750272 _____ C:\Users\Zdenek\Documents\Most_nad_riekou_Colorado.pps
2017-12-19 11:38 - 2017-12-19 11:38 - 004955762 _____ C:\Users\Zdenek\Documents\VID-20170819-WA0017.mp4
2017-12-19 11:37 - 2017-12-19 11:37 - 009054883 _____ C:\Users\Zdenek\Documents\0813452208170f147e4506601.mp4
2017-12-19 11:37 - 2017-12-19 11:37 - 004103391 _____ C:\Users\Zdenek\Documents\Zlat� retr�vr na ryb�ch.mp4
2017-12-19 11:34 - 2017-12-19 11:34 - 001620357 _____ C:\Users\Zdenek\Documents\p�ece si neubl��m.mp4
2017-12-19 11:32 - 2017-12-19 11:32 - 005213696 _____ C:\Users\Zdenek\Documents\A_in_white_1.pps
2017-12-19 11:31 - 2017-12-19 11:31 - 002770254 _____ C:\Users\Zdenek\Documents\utf-8''Telefonov%C3%A1n%C3%AD-n%C4%9Bkdy%20bol%C3%AD%20!!!%2Emp.mp4
2017-12-19 11:30 - 2017-12-19 11:30 - 007314432 _____ C:\Users\Zdenek\Documents\Terra13Parte21.pps
2017-12-19 11:27 - 2017-12-19 11:27 - 007033344 _____ C:\Users\Zdenek\Documents\ten_co_nikdy_nezklame.pps
2017-12-19 11:27 - 2017-12-19 11:27 - 006800896 _____ C:\Users\Zdenek\Documents\Podzim_je_zde.pps
2017-12-19 11:21 - 2017-12-19 11:21 - 009420199 _____ C:\Users\Zdenek\Documents\Betisiers fun-ag.MP4
2017-12-19 11:20 - 2017-12-19 11:20 - 005545134 _____ C:\Users\Zdenek\Documents\utf-8''Tak%20se%20to%20d%C4%9Bl%C3%A1%2Emp4%20%2Emp4.mp4
2017-12-19 11:17 - 2017-12-19 11:17 - 010311168 _____ C:\Users\Zdenek\Documents\Kolem_Orliho_Hnizda.pps
2017-12-19 11:17 - 2017-12-19 11:17 - 008511449 _____ C:\Users\Zdenek\Documents\cigani-Lunik_IX_KosiceDR.mp4
2017-12-19 11:17 - 2017-12-19 11:17 - 006291968 _____ C:\Users\Zdenek\Documents\Podzimni_prani.pps
2017-12-19 11:14 - 2017-12-19 11:14 - 002057728 _____ C:\Users\Zdenek\Documents\A_of_Velorex.pps
2017-12-19 11:11 - 2017-12-19 11:11 - 008153319 _____ C:\Users\Zdenek\Documents\IMG_6606.mp4
2017-12-19 11:11 - 2017-12-19 11:11 - 001822720 _____ C:\Users\Zdenek\Documents\l��ba sexem.pps
2017-12-19 11:09 - 2017-12-19 11:09 - 004272269 _____ C:\Users\Zdenek\Documents\ATT00052.mp4
2017-12-19 11:08 - 2017-12-19 11:08 - 003937792 _____ C:\Users\Zdenek\Documents\Aforismy_2.pps
2017-12-19 11:04 - 2017-12-19 11:04 - 006636760 _____ C:\Users\Zdenek\Documents\KeeptheHeat-fbdown.net.mp4
2017-12-19 11:00 - 2017-12-19 11:00 - 006985000 _____ C:\Users\Zdenek\Documents\Piskajici_pan.mp4
2017-12-19 11:00 - 2017-12-19 11:00 - 002817195 _____ C:\Users\Zdenek\Documents\PING_PONG.mp4
2017-12-19 11:00 - 2017-12-19 11:00 - 001121207 _____ C:\Users\Zdenek\Documents\received_456188654744829.mp4
2017-12-19 10:59 - 2017-12-19 10:59 - 006951639 _____ C:\Users\Zdenek\Documents\pod_obraz.mp4
2017-12-19 10:57 - 2017-12-19 10:57 - 005661486 _____ C:\Users\Zdenek\Documents\Bank.mp4
2017-12-18 21:21 - 2017-12-18 21:21 - 004075714 _____ C:\Users\Zdenek\Documents\IMG_0857.MP4

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2099-12-01 23:14 - 2016-08-22 06:18 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\ProductData
2018-01-17 15:28 - 2017-12-14 14:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-01-17 15:27 - 2017-12-14 14:23 - 000000000 ____D C:\Users\Zdenek
2018-01-17 15:27 - 2017-09-29 06:31 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-01-17 15:26 - 2017-03-18 19:23 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-01-17 15:26 - 2016-05-19 21:14 - 000000000 ____D C:\Users\Zdenek\AppData\LocalLow\IObit
2018-01-17 15:26 - 2016-05-19 21:14 - 000000000 ____D C:\ProgramData\IObit
2018-01-17 15:26 - 2016-05-19 21:14 - 000000000 ____D C:\Program Files\Common Files\IObit
2018-01-17 15:26 - 2016-05-19 21:13 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\IObit
2018-01-17 15:22 - 2017-12-14 14:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-01-17 07:55 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-01-17 07:54 - 2017-09-29 12:55 - 000000000 ___HD C:\Program Files\WindowsApps
2018-01-17 07:54 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-01-16 21:58 - 2016-05-19 21:14 - 000000000 ____D C:\ProgramData\ProductData
2018-01-16 03:31 - 2017-12-14 14:23 - 000000000 ____D C:\Users\DefaultAppPool
2018-01-15 22:03 - 2017-12-14 14:18 - 002110290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-15 22:03 - 2017-09-30 13:07 - 000886634 _____ C:\WINDOWS\system32\perfh005.dat
2018-01-15 22:03 - 2017-09-30 13:07 - 000202206 _____ C:\WINDOWS\system32\perfc005.dat
2018-01-15 21:56 - 2017-12-14 14:16 - 000387416 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-01-15 20:31 - 2017-08-05 12:21 - 000090744 _____ C:\Users\Zdenek\AppData\Local\GDIPFONTCACHEV1.DAT
2018-01-15 14:23 - 2017-11-18 17:46 - 000055160 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2018-01-15 14:23 - 2017-11-16 09:31 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Pro Antivirus.lnk
2018-01-15 14:23 - 2017-11-16 09:31 - 000002076 _____ C:\Users\Public\Desktop\Avast Pro Antivirus.lnk
2018-01-14 22:57 - 2016-05-19 20:07 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\vlc
2018-01-11 04:19 - 2016-05-18 12:36 - 000390256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-01-11 04:19 - 2016-05-18 12:36 - 000123880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-01-11 04:15 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\rescache
2018-01-10 02:17 - 2016-05-19 02:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-01-10 02:14 - 2017-10-14 12:42 - 126487616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-01-10 02:14 - 2017-09-29 12:45 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-01-10 02:14 - 2016-05-19 02:58 - 126487616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-01-10 02:10 - 2017-09-29 12:52 - 000000000 ____D C:\WINDOWS\INF
2018-01-09 05:14 - 2017-12-14 14:48 - 000000000 ___RD C:\Users\Zdenek\3D Objects
2018-01-09 05:14 - 2016-02-13 13:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\TextInput
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\Provisioning
2018-01-09 05:08 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-01-09 05:08 - 2017-09-29 06:31 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-01-09 04:21 - 2016-05-18 11:29 - 000002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-08 19:50 - 2016-05-23 13:55 - 000000000 ____D C:\Pracovn�
2018-01-06 08:26 - 2016-05-18 11:28 - 000000000 ____D C:\Program Files\Google
2018-01-04 09:54 - 2016-08-29 08:08 - 000000000 ____D C:\Users\Zdenek\AppData\Roaming\foobar2000
2018-01-04 08:52 - 2016-05-18 12:35 - 000000000 ____D C:\Program Files\AVAST Software
2018-01-04 08:52 - 2016-05-18 12:33 - 000000000 ____D C:\ProgramData\AVAST Software
2018-01-01 13:07 - 2016-05-18 10:48 - 000397994 __RSH C:\bootmgr
2017-12-30 08:45 - 2017-07-16 15:23 - 000001038 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-12-30 08:45 - 2017-07-16 15:23 - 000000000 ____D C:\Program Files\CCleaner
2017-12-30 08:38 - 2017-12-14 14:24 - 000000000 ____D C:\Users\Zdenek\AppData\Local\Packages
2017-12-30 08:28 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-12-28 09:40 - 2016-05-19 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag
2017-12-26 17:30 - 2017-08-18 20:42 - 000000000 ____D C:\Users\Zdenek\AppData\Local\Adobe
2017-12-26 17:20 - 2017-09-29 06:31 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-12-26 07:13 - 2017-12-14 14:12 - 000000000 ___DC C:\Windows.old
2017-12-24 00:45 - 2016-08-01 08:17 - 000006656 _____ C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-12-22 14:45 - 2017-09-29 12:57 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-12-22 14:45 - 2017-09-29 12:57 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-12-21 17:29 - 2017-11-16 09:31 - 000158224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2017-12-21 17:29 - 2017-03-10 09:31 - 000276696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-12-21 17:29 - 2017-03-10 09:31 - 000255584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-12-21 17:29 - 2017-03-10 09:31 - 000157376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-12-21 17:29 - 2017-03-10 09:31 - 000050344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000783104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000294680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000151328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000099528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000070832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-12-21 17:29 - 2016-05-18 12:36 - 000042824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys

==================== Files in the root of some directories =======

2016-08-01 08:17 - 2017-12-24 00:45 - 000006656 _____ () C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-01-13 18:01

==================== End of FRST.txt ============================

Nějaké divné. Zkopírujte sem obsah souboru fixlog.txt.

Fix result of Farbar Recovery Scan Tool (x86) Version: 17.01.2018 01
Ran by Zdenek (17-01-2018 21:09:28) Run:1
Running from C:\Users\Zdenek\Desktop
Loaded Profiles: Zdenek (Available Profiles: Zdenek & DefaultAppPool)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
U3 idsvc; no ImagePath
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {0A679DC7-8EA9-4512-A8C2-742825B0972B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {405AE617-CA82-4C9F-84AC-A33CD3484474} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {5E89D379-9471-4281-BC83-263D350F6EB4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {72E712B8-00FD-4308-8693-F6CDB26B945E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-18] (Google Inc.)
Task: {894EA467-7E52-45B3-80B7-A72BBE9ECCCB} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {8B17911D-D2C9-4165-B5FD-21DB89899E28} - System32\Tasks\{77F0CC73-CA94-489E-91E9-BAA6314DAEA0} => C:\Windows\system32\pcalua.exe -a C:\Users\Zdenek\AppData\Roaming\Seznam.cz\szninstall.exe -c -X
Task: {A0630869-FC9F-41B1-87D0-3154FE2810AD} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A19CFF1F-DEDA-4DF6-AA2E-8DD02291085D} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {A8F05B34-335B-4624-99F5-060F51831202} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {AA23CB1F-D289-406A-B5DB-98782C49170E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B73D28D4-B686-41AE-BA20-31F5809BC69B} - System32\Tasks\{D6745437-CAAF-43C7-9C5E-7AC1BF146348} => C:\Windows\system32\pcalua.exe -a C:\Users\Zdenek\Downloads\Apollo37zz.exe -d C:\Users\Zdenek\Downloads
Task: {BE291EF2-C98D-443B-8DE7-26279D326144} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C083AA2B-6F37-4364-B08C-76BAAA3FDA24} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C9F5D2F0-6376-4D26-B0AE-BB7035BBAA84} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {CFEBB867-A8BA-45FF-B23F-A979949C6A93} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {D1653D67-7478-4141-A8A5-111DF3B0FE52} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-18] (Google Inc.)
Task: {DDD0C773-0015-4068-A57E-0B843816B38B} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {E49B095A-A427-4BEF-9243-232B2A95E964} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {E8ABDFF4-B531-431C-A3CE-AA043A3758F7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {F489EC9D-B244-4606-9684-77B5A0B95CA2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
AlternateDataStreams: C:\01_CONFIG.SYS:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\01_user.js:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\log.txt:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

EmptyTemp:
End
*****************

"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully.
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
"HKLM\System\CurrentControlSet\Services\idsvc" => removed successfully.
idsvc => service removed successfully.
C:\Users\Zdenek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Foxit_ConvertToPDF_Reader" => removed successfully.
HKLM\Software\Classes\CLSID\{A94757A0-0226-426F-B4F1-4DF381C630D3} => not found
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets" => removed successfully.
HKLM\Software\Classes\CLSID\{6B9228DA-9C15-419e-856C-19E768A13BDC} => not found
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => removed successfully.
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0A679DC7-8EA9-4512-A8C2-742825B0972B} => could not remove. ErrorCode1: 0x00000002
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A679DC7-8EA9-4512-A8C2-742825B0972B}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{405AE617-CA82-4C9F-84AC-A33CD3484474}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{405AE617-CA82-4C9F-84AC-A33CD3484474}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5E89D379-9471-4281-BC83-263D350F6EB4}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E89D379-9471-4281-BC83-263D350F6EB4}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{72E712B8-00FD-4308-8693-F6CDB26B945E}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{72E712B8-00FD-4308-8693-F6CDB26B945E}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{894EA467-7E52-45B3-80B7-A72BBE9ECCCB}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{894EA467-7E52-45B3-80B7-A72BBE9ECCCB}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8B17911D-D2C9-4165-B5FD-21DB89899E28}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8B17911D-D2C9-4165-B5FD-21DB89899E28}" => removed successfully.
C:\Windows\System32\Tasks\{77F0CC73-CA94-489E-91E9-BAA6314DAEA0} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{77F0CC73-CA94-489E-91E9-BAA6314DAEA0}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A0630869-FC9F-41B1-87D0-3154FE2810AD}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A0630869-FC9F-41B1-87D0-3154FE2810AD}" => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A19CFF1F-DEDA-4DF6-AA2E-8DD02291085D}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A19CFF1F-DEDA-4DF6-AA2E-8DD02291085D}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A8F05B34-335B-4624-99F5-060F51831202}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8F05B34-335B-4624-99F5-060F51831202}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AA23CB1F-D289-406A-B5DB-98782C49170E}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AA23CB1F-D289-406A-B5DB-98782C49170E}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B73D28D4-B686-41AE-BA20-31F5809BC69B}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B73D28D4-B686-41AE-BA20-31F5809BC69B}" => removed successfully.
C:\Windows\System32\Tasks\{D6745437-CAAF-43C7-9C5E-7AC1BF146348} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D6745437-CAAF-43C7-9C5E-7AC1BF146348}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BE291EF2-C98D-443B-8DE7-26279D326144}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE291EF2-C98D-443B-8DE7-26279D326144}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C083AA2B-6F37-4364-B08C-76BAAA3FDA24}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C083AA2B-6F37-4364-B08C-76BAAA3FDA24}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C9F5D2F0-6376-4D26-B0AE-BB7035BBAA84}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C9F5D2F0-6376-4D26-B0AE-BB7035BBAA84}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CFEBB867-A8BA-45FF-B23F-A979949C6A93}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CFEBB867-A8BA-45FF-B23F-A979949C6A93}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D1653D67-7478-4141-A8A5-111DF3B0FE52}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D1653D67-7478-4141-A8A5-111DF3B0FE52}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DDD0C773-0015-4068-A57E-0B843816B38B}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DDD0C773-0015-4068-A57E-0B843816B38B}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-Weekend" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E49B095A-A427-4BEF-9243-232B2A95E964}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E49B095A-A427-4BEF-9243-232B2A95E964}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E8ABDFF4-B531-431C-A3CE-AA043A3758F7}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E8ABDFF4-B531-431C-A3CE-AA043A3758F7}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F489EC9D-B244-4606-9684-77B5A0B95CA2}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F489EC9D-B244-4606-9684-77B5A0B95CA2}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully.
C:\01_CONFIG.SYS => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully.
C:\01_user.js => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully.
C:\log.txt => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 7364608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 55050787 B
Java, Flash, Steam htmlcache => 1066 B
Windows/system/drivers => 6298 B
Edge => 634547 B
Chrome => 700242524 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6764 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 5850 B
NetworkService => 1766 B
Zdenek => 55030561 B
DefaultAppPool => 6764 B

RecycleBin => 1763323 B
EmptyTemp: => 782.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:10:24 ====

Smazáno. Log by již měl být OK.

děkuju moc za pomoc

Rádo se stalo!