VIRY.CZ

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\conhost.exe
C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1802.311.0_x86__8wekyb3d8bbwe\Calculator.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Admin\Downloads\HijackThis.exe
C:\Program Files\Google\Chrome\Application\chrome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll
O2 - BHO: PDF Architect 4 Helper - {38279E1A-7019-40C1-B579-E99DFB3312E8} - C:\Program Files\PDF Architect 4\creator-ie-helper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll
O2 - BHO: PDF Architect 5 Helper - {AEA429F3-D2D4-4BD7-A03E-5357DA017733} - C:\Program Files\PDF Architect 5\creator-ie-helper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll
O3 - Toolbar: PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files\PDF Architect 4\creator-ie-plugin.dll
O3 - Toolbar: PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files\PDF Architect 5\creator-ie-plugin.dll
O4 - HKLM\..\Run: [SecurityHealth] %ProgramFiles%\Windows Defender\MSASCuiL.exe
O4 - HKLM\..\Run: [P17RunE] RunDll32 P17RunE.dll,RunDLLEntry
O4 - HKLM\..\Run: [EpsonAPD4SV] C:\Program Files\EPSON\EPSON Advanced Printer Driver 4\Tools\EAPSV\EAPSV.EXE
O4 - HKLM\..\Run: [NetLockMngr] C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
O4 - HKLM\..\Run: [Lightshot] C:\Program Files\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HDD Regenerator] "C:\Program Files\HDD Regenerator\Shell.exe" /1
O4 - HKLM\..\Run: [DiscWizardMonitor.exe] "C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe"
O4 - HKLM\..\Run: [AcronisTibMounterMonitor] C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKLM\..\Run: [Seagate Scheduler2 Service] "C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" -s
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Global Startup: Select a coupon.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - http://files.creative.com/Web/softwareu ... TSUEng.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - http://files.creative.com/Web/softwareu ... /CTPID.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Dropbox, Inc. - C:\WINDOWS\system32\DbxSvc.exe
O23 - Service: EPSON Device Control Log Service (EPSON_Device_Control_Log_Service) - SEIKO EPSON CORPORATION - C:\Program Files\epson\portcommunicationservice\DeviceControlLog.exe
O23 - Service: EPSON Port Communication Service (EPSON_Port_Communication_Service) - SEIKO EPSON CORPORATION - C:\Program Files\epson\portcommunicationservice\PCSVC.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: IObit Uninstaller Service (IObitUnSvr) - IObit - C:\Program Files\IObit\IObit Uninstaller\IUService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PDF Architect 4 - pdfforge GmbH - C:\Program Files\PDF Architect 4\ws.exe
O23 - Service: PDF Architect 4 CrashHandler - pdfforge GmbH - C:\Program Files\PDF Architect 4\crash-handler-ws.exe
O23 - Service: PDF Architect 4 Creator - pdfforge GmbH - C:\Program Files\PDF Architect 4\creator-ws.exe
O23 - Service: PDF Architect 5 - pdfforge GmbH - C:\Program Files\PDF Architect 5\ws.exe
O23 - Service: PDF Architect 5 CrashHandler - pdfforge GmbH - C:\Program Files\PDF Architect 5\crash-handler-ws.exe
O23 - Service: PDF Architect 5 Creator - pdfforge GmbH - C:\Program Files\PDF Architect 5\creator-ws.exe
O23 - Service: PDF Architect 5 Manager - © pdfforge GmbH. - C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
O23 - Service: Seagate Scheduler2 Service (SgtSch2Svc) - Seagate - C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
O23 - Service: SWLock Server (SWLckServer) - Unknown owner - C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe

Ahoj

Poprosim o obidva logy z FRST podla tohto navodu (FRST.txt a Addition.txt): https://forum.viry.cz/viewtopic.php?f=13&t=152707

V pripade, ze sa FRSTLauncher nebude dat stiahnut alebo spustit, pouzi iba samotny FRST.

Ak sa logy nezmestia do jedneho prispevku, zabal ich do archivu RAR alebo ZIP a posli ako prilohu.

po restartu černá obrazovka - chkdsk, sfc, mic nepomáhalo, až bootrec a teď mi to hlásí při kliknutí na start (w10) - nabídka start nefunguje - zkusíme to opravit při vašem příštím přihlášení ... zkusím ještě jednou a hodím echo

ups - teď mi vyskočil log :

# AdwCleaner 7.0.8.0 - Logfile created on Thu Mar 15 20:53:35 2018
# Updated on 2018/08/02 by Malwarebytes
# Database: 2018-03-14.3
# Running on Windows 10 Home (X86)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.AdvancedSystemCare, C:\Users\Admin\AppData\LocalLow\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\Admin\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\Admin\AppData\LocalLow\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\Admin\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.Legacy, C:\ProgramData\IObit\ASCDownloader
PUP.Optional.Legacy, C:\Users\All Users\IObit\ASCDownloader
PUP.Optional.SlimCleanerPlus, C:\Users\Admin\AppData\Local\slimware utilities inc
PUP.Optional.SlimCleanerPlus, C:\Users\Admin\AppData\Local\SlimWare Utilities Inc


***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Legacy, Driver Booster Scheduler
PUP.Adware.Heuristic, SlimCleaner Plus (Scheduled Scan - Admin)


***** [ Registry ] *****

PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IOBIT\ASC
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IObit\RealTimeProtector
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IObit\ASC
PUP.Optional.SlimCleanerPlus, [Key] - HKLM\SOFTWARE\SlimWare Utilities Inc
PUP.Optional.SlimCleanerPlus, [Key] - HKU\S-1-5-21-4274060390-290019901-698256631-1001\Software\SlimWare Utilities Inc
PUP.Optional.SlimCleanerPlus, [Key] - HKCU\Software\SlimWare Utilities Inc
PUP.Optional.InstallCore, [Key] - HKU\S-1-5-21-4274060390-290019901-698256631-1001\Software\csastats
PUP.Optional.InstallCore, [Key] - HKCU\Software\csastats
PUP.Optional.ProductSetup.A, [Key] - HKU\S-1-5-21-4274060390-290019901-698256631-1001\Software\PRODUCTSETUP
PUP.Optional.ProductSetup.A, [Key] - HKCU\Software\PRODUCTSETUP


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [2645 B] - [2018/3/15 16:46:27]
C:/AdwCleaner/AdwCleaner[S0].txt - [3017 B] - [2018/3/15 16:38:6]


########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt ##########

aha - už tu je jiný koment ... ok jdu na to ...

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14.03.2018
Ran by Admin (administrator) on DESKTOP-9BBP2FF (15-03-2018 22:15:14)
Running from C:\Users\Admin\Desktop
Loaded Profiles: Admin (Available Profiles: Admin & 2)
Platform: Microsoft Windows 10 Home Version 1709 16299.248 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(IObit) C:\Program Files\IObit\IObit Uninstaller\IUService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\portcommunicationservice\DeviceControlLog.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\portcommunicationservice\PCSVC.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 5\creator-ws.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
() C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
(© pdfforge GmbH.) C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(Seagate) C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18022-0\MsMpEng.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Update\DropboxUpdate.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Lenovo Group Limited) C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(IObit) C:\Program Files\IObit\Driver Booster\5.2.0\Pub\PubMonitor.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Admin\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [488344 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [P17RunE] => RunDll32 P17RunE.dll,RunDLLEntry
HKLM\...\Run: [EpsonAPD4SV] => C:\Program Files\EPSON\EPSON Advanced Printer Driver 4\Tools\EAPSV\EAPSV.EXE [212608 2013-11-14] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [NetLockMngr] => C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe [1253088 2008-10-21] ()
HKLM\...\Run: [Lightshot] => C:\Program Files\Skillbrains\lightshot\Lightshot.exe [225944 2016-07-11] ()
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [HDD Regenerator] => C:\Program Files\HDD Regenerator\Shell.exe [90336 2013-05-08] ()
HKLM\...\Run: [DiscWizardMonitor.exe] => C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe [5589976 2016-09-09] (Seagate)
HKLM\...\Run: [AcronisTibMounterMonitor] => C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [691056 2015-07-19] (Acronis International GmbH)
HKLM\...\Run: [Seagate Scheduler2 Service] => C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe [400360 2016-09-09] (Seagate)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [3567936 2018-02-26] (Dropbox, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [261944 2018-01-22] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [16553448 2018-02-22] (Realtek Semiconductor)
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7684824 2017-09-07] (Piriform Ltd)
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1422248 2018-02-08] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\Run: [TomTomHOME.exe] => "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" -s
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1422248 2018-02-08] (Garmin Ltd. or its subsidiaries)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Select a coupon.lnk [2017-03-07]
ShortcutTarget: Select a coupon.lnk -> C:\Program Files\EPSON\TMCommandEmulator\PopupWindow.exe (Seiko Epson Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 8.8.4.4 10.200.200.1 192.168.1.1
Tcpip\..\Interfaces\{1bf3fde3-98e6-4a97-93ec-a0587c323ae9}: [DhcpNameServer] 8.8.4.4 10.200.200.1 192.168.1.1
Tcpip\..\Interfaces\{26073b2a-82fc-4c86-80b2-1d314f9a3695}: [DhcpNameServer] 8.8.4.4 10.200.200.1 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-4274060390-290019901-698256631-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit)
BHO: PDF Architect 4 Helper -> {38279E1A-7019-40C1-B579-E99DFB3312E8} -> C:\Program Files\PDF Architect 4\creator-ie-helper.dll [2016-08-05] (pdfforge GmbH)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-12-06] (Oracle Corporation)
BHO: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files\PDF Architect 5\creator-ie-helper.dll [2017-07-05] (pdfforge GmbH)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-12-06] (Oracle Corporation)
Toolbar: HKLM - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files\PDF Architect 4\creator-ie-plugin.dll [2016-08-05] (pdfforge GmbH)
Toolbar: HKLM - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files\PDF Architect 5\creator-ie-plugin.dll [2017-07-05] (pdfforge GmbH)
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://files.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: fn066ax7.default
FF ProfilePath: C:\Users\Admin\AppData\Roaming\TomTom\HOME\Profiles\lsofn4z9.default [2018-02-27]
FF Extension: (No Name) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fn066ax7.default [2018-03-15]
FF Homepage: Mozilla\Firefox\Profiles\fn066ax7.default -> hxxps://www.seznam.cz/
FF Extension: (UniverseView Extension) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fn066ax7.default\Extensions\firefox@universeview.ext.xpi [2018-01-30]
FF Extension: (Skynet) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fn066ax7.default\Extensions\jid1-j57LkwpAWjGJXw@jetpack.xpi [2017-06-08] [Legacy]
FF Extension: (AntiGameOrigin v6) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fn066ax7.default\Extensions\shole@ogame.us.xpi [2017-12-20]
FF Extension: (Galaxytoolbar) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fn066ax7.default\Extensions\{71bfcce7-421d-4042-95d4-a585a821cbca}.xpi [2017-06-08] [Legacy]
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2017-01-30] [Legacy] [not signed]
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-12-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-12-06] (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.)
FF Plugin: PDF Architect 4 -> C:\Program Files\PDF Architect 4\np-previewer.dll [2016-08-05] (pdfforge GmbH)
FF Plugin: PDF Architect 5 -> C:\Program Files\PDF Architect 5\np-previewer.dll [2017-07-05] (pdfforge GmbH)

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR DefaultSearchURL: Default -> hxxps://www.bazos.cz/favicon.ico
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2018-03-15]
CHR Extension: (OGame Resources Extension) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dinnmkijapcbjfflfncafmfhajnggenb [2017-01-27]
CHR Extension: (Kolekce HARDDISKŮ Pro NOTEBOOK - Most...) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\diooefmhnhhbgihnangmolikjmejnidm [2017-12-27]
CHR Extension: (Adobe Acrobat) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-06]
CHR Extension: (Ogame Universe Selector) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehiplgmmoacclieapngapldejejpebbl [2017-01-27]
CHR Extension: (notebook: (napájení ze sítě. Nenabíjí...) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eicncpbbgkfhgdjkbgnckoohobebmeho [2017-11-23]
CHR Extension: (NEW - Lenovo IdeaPad 110-15ACL Mother...) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\elcdapgmbonjmblagdblhhiilfbgboei [2017-12-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-01]
CHR Extension: (Baterie ASUS K50AB K50C K50IJ K51AC K...) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hciadgnhibmggheijglinbnlndnecgfl [2017-10-24]
CHR Extension: (FormApps Extension) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-06-15]
CHR Extension: (UniverseView Extension) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmfkhoihjbbohnfecpmhekhippaplnh [2017-09-28]
CHR Extension: (OGame Galaxy Level) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jicjihmmljbdapdapjdenoekonahpjka [2017-01-27]
CHR Extension: (Save to Facebook) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2017-03-29]
CHR Extension: (OGame Nearby Players) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\knaaglboaiokbmjlkgnngoaadfplkdgm [2018-02-14]
CHR Extension: (AntiGameOrigin) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldbahlcmhmlpomdepooifmhnalokdhgm [2017-01-27]
CHR Extension: (OGame Timer Hot Fixed) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nalkfbbnhkdhgjmadbkdaaebkijjdcik [2017-01-27]
CHR Extension: (OGame UI++) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhbgpipnadhelnecpcjcikbnedilhddf [2018-02-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Ogame Attack Notifier) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfklenkjpjchjbddeddiponngbcglaho [2017-01-27]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-28]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2017-02-17] (Creative Labs) [File not signed]
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-06] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-06] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [43344 2018-02-26] (Dropbox, Inc.)
R2 EPSON_Device_Control_Log_Service; C:\Program Files\epson\portcommunicationservice\DeviceControlLog.exe [334848 2014-08-22] (SEIKO EPSON CORPORATION) [File not signed]
R2 EPSON_Port_Communication_Service; C:\Program Files\epson\portcommunicationservice\PCSVC.exe [409600 2014-08-22] (SEIKO EPSON CORPORATION) [File not signed]
R2 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [1162768 2018-02-08] (Garmin Ltd. or its subsidiaries)
R2 IObitUnSvr; C:\Program Files\IObit\IObit Uninstaller\IUService.exe [206112 2017-06-14] (IObit)
S3 iumsvc; C:\Program Files\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2236640 2016-08-05] (pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [970976 2016-08-05] (pdfforge GmbH)
R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [772832 2016-08-05] (pdfforge GmbH)
S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2470576 2017-07-05] (pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; C:\Program Files\PDF Architect 5\crash-handler-ws.exe [982200 2017-07-05] (pdfforge GmbH)
R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator-ws.exe [780984 2017-07-05] (pdfforge GmbH)
R2 PDF Architect 5 Manager; C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (© pdfforge GmbH.)
R2 SgtSch2Svc; C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe [846864 2016-09-09] (Seagate)
R2 SWLckServer; C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe [577248 2008-10-21] () [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\NisSrv.exe [279240 2018-03-02] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MsMpEng.exe [87040 2018-03-02] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 EfiInvoker; C:\Windows\System32\Drivers\invoker.sys [5632 2008-08-11] (Windows (R) Server 2003 DDK provider) [File not signed]
R2 EPSON_PCS_Parallel_Port_Driver; C:\WINDOWS\system32\DRIVERS\pcslpt.sys [19592 2014-08-22] (SEIKO EPSON CORPORATION)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [214304 2017-10-03] (Acronis International GmbH)
S3 FlexBios; C:\Windows\System32\Drivers\FlexBios.sys [33148 2008-08-11] (Your Corporation) [File not signed]
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2017-02-15] (REALiX(tm))
R2 IntelHaxm; C:\WINDOWS\system32\DRIVERS\IntelHaxm.sys [86136 2016-12-07] (Intel Corporation)
R3 IUFileFilter; C:\Program Files\IObit\IObit Uninstaller\drivers\win10_x86\IUFileFilter.sys [38304 2017-06-06] (IObit.com)
R3 IURegProcessFilter; C:\Program Files\IObit\IObit Uninstaller\drivers\win10_x86\IURegProcessFilter.sys [42912 2017-06-12] (IObit.com)
S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [44032 2016-05-20] ()
R1 MpKsl79581d89; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3F2B6B64-09E6-4FA3-A6F6-8A034B30EC5F}\MpKsl79581d89.sys [49504 2018-03-13] (Microsoft Corporation)
R1 MpKsl8690c78c; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{35A4A07C-BAB6-4166-8319-747A38F5A012}\MpKsl8690c78c.sys [49504 2018-03-15] (Microsoft Corporation)
S3 P17; C:\WINDOWS\system32\drivers\P17.sys [1147392 2009-04-21] (Creative Technology Ltd.)
S3 PortTalk; C:\WINDOWS\System32\Drivers\PortTalk.sys [3567 2002-01-12] (Beyond Logic hxxp://www.beyondlogic.org) [File not signed]
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [17160 2015-03-05] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [13064 2016-11-24] ()
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [848832 2018-02-21] (Realtek )
R2 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [685160 2017-10-03] (Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [184136 2017-10-03] (Acronis International GmbH)
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [83120 2016-08-19] ()
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [21168 2016-08-19] ()
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [383664 2016-08-19] ()
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15360 2018-02-10] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [38912 2018-03-02] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [237608 2018-03-02] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [93736 2018-03-02] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [186880 2017-09-29] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-15 22:15 - 2018-03-15 22:15 - 000021364 _____ C:\Users\Admin\Desktop\FRST.txt
2018-03-15 22:13 - 2018-03-15 22:15 - 000000000 ____D C:\FRST
2018-03-15 22:12 - 2018-03-15 22:11 - 000112640 _____ (forum.viry.cz) C:\Users\Admin\Desktop\FRSTLauncher.exe
2018-03-15 22:11 - 2018-03-15 22:11 - 000112640 _____ (forum.viry.cz) C:\Users\Admin\Downloads\FRSTLauncher.exe
2018-03-15 22:08 - 2018-03-15 22:08 - 000112640 _____ (forum.viry.cz) C:\Users\Admin\Downloads\Nepotvrzeno 503617.crdownload
2018-03-15 22:08 - 2018-03-15 22:07 - 001764352 _____ (Farbar) C:\Users\Admin\Desktop\FRST.exe
2018-03-15 22:07 - 2018-03-15 22:07 - 001764352 _____ (Farbar) C:\Users\Admin\Downloads\FRST.exe
2018-03-15 21:51 - 2018-03-15 21:51 - 008222496 _____ (Malwarebytes) C:\Users\Admin\Desktop\adwcleaner_7.0.8.0.exe
2018-03-15 21:50 - 2018-03-15 21:51 - 008222496 _____ (Malwarebytes) C:\Users\Admin\Downloads\adwcleaner_7.0.8.0.exe
2018-03-15 17:36 - 2018-03-15 21:53 - 000000000 ____D C:\AdwCleaner
2018-03-13 14:34 - 2018-03-13 14:34 - 000000000 _____ C:\Users\Admin\Desktop\Nový rastrový obrázek.bmp
2018-03-11 13:55 - 2018-03-11 13:55 - 000323586 _____ C:\Users\Admin\Desktop\Příloha k vyúčtování - EXTRA výhody - jaro 2018.pdf
2018-03-09 22:30 - 2018-03-09 22:32 - 219176474 _____ C:\Users\Admin\Downloads\windows10.0-kb4074588-x86_delta_98660723c331de0418c2f815fccefebd47f74302.msu
2018-03-09 22:24 - 2018-03-09 22:28 - 394785427 _____ C:\Users\Admin\Downloads\windows10.0-kb4074588-x86_5fa12d42df88ac4d63f56a071c3c7a553a892a5f.msu
2018-03-09 11:49 - 2018-03-09 11:49 - 007196268 _____ C:\Users\Admin\Downloads\Navod_Huawei_LTE_TDD_B2338.pdf
2018-03-08 23:31 - 2018-03-08 23:31 - 000000000 ____D C:\WINDOWS\Panther
2018-03-08 23:17 - 2018-03-08 23:17 - 000008234 _____ C:\Users\Admin\Desktop\v.txt
2018-03-08 19:13 - 2018-03-08 19:13 - 006967928 _____ (ESET spol. s r.o.) C:\Users\Admin\Downloads\esetonlinescanner_csy.exe
2018-03-08 19:13 - 2018-03-08 19:13 - 000000000 ____D C:\Users\Admin\AppData\Local\ESET
2018-03-08 18:58 - 2018-03-08 18:58 - 000195346 _____ C:\Users\Admin\Downloads\wu170509.diagcab
2018-03-08 18:31 - 2018-03-08 18:32 - 000002420 _____ C:\Users\2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-03-08 18:31 - 2018-03-08 18:32 - 000000000 ___RD C:\Users\2\OneDrive
2018-03-08 18:30 - 2018-03-08 18:30 - 000000000 ____D C:\Users\2\AppData\Roaming\IObit
2018-03-08 18:30 - 2018-03-08 18:30 - 000000000 ____D C:\Users\2\AppData\Local\Comms
2018-03-08 18:29 - 2018-03-08 18:30 - 000000000 ____D C:\Users\2\AppData\Local\Dropbox
2018-03-08 18:29 - 2018-03-08 18:29 - 000000000 ____D C:\Users\2\AppData\Local\Publishers
2018-03-08 18:28 - 2018-03-15 20:48 - 000000000 ____D C:\Users\2
2018-03-08 18:28 - 2018-03-08 18:31 - 000000000 ____D C:\Users\2\AppData\Local\Packages
2018-03-08 18:28 - 2018-03-08 18:29 - 000000000 ____D C:\Users\2\AppData\Local\VirtualStore
2018-03-08 18:28 - 2018-03-08 18:28 - 000000020 ___SH C:\Users\2\ntuser.ini
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Šablony
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Soubory cookie
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Poslední
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Okolní tiskárny
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Okolní síť
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Nabídka Start
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Dokumenty
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Documents\Obrázky
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Documents\Hudba
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Documents\Filmy
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Data aplikací
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\AppData\Local\Data aplikací
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 ___RD C:\Users\2\3D Objects
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 ____D C:\Users\2\AppData\Roaming\Adobe
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 ____D C:\Users\2\AppData\Local\Google
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 ____D C:\Users\2\AppData\Local\ConnectedDevicesPlatform
2018-03-08 18:28 - 2017-06-12 12:43 - 000000000 ____D C:\Users\2\AppData\Local\Microsoft Help
2018-03-08 18:13 - 2018-03-08 18:13 - 000000072 ___SH C:\bootTel.dat
2018-03-08 17:35 - 2018-03-08 17:47 - 000000000 _____ C:\Recovery.txt
2018-03-08 16:16 - 2018-03-10 10:17 - 000001270 _____ C:\Users\Admin\Desktop\cmd.lnk
2018-03-07 15:20 - 2018-03-07 15:20 - 000000000 ____D C:\WINDOWS\$regcmp$
2018-03-07 12:28 - 2018-03-07 12:28 - 000329325 _____ C:\Users\Admin\Downloads\CBP-3141SAS_BACKPLANES-DATASHEET-EN.pdf
2018-03-06 11:24 - 2018-03-06 11:24 - 003377328 _____ C:\Users\Admin\Downloads\MrpUniZaklad.exe
2018-03-05 19:55 - 2018-03-05 19:55 - 000955620 _____ C:\Users\Admin\Downloads\winema.pdf
2018-03-05 19:35 - 2018-03-05 19:35 - 000662295 _____ C:\Users\Admin\Downloads\jedskl.pdf
2018-03-05 19:27 - 2018-03-05 19:27 - 001941731 _____ C:\Users\Admin\Downloads\mrpks-ucto.pdf
2018-03-01 11:40 - 2018-03-15 20:48 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-02-28 22:06 - 2018-02-28 22:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-02-28 16:37 - 2018-02-28 16:37 - 000001207 _____ C:\Users\Public\Desktop\Hasleo WinToUSB.lnk
2018-02-28 16:37 - 2018-02-28 16:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hasleo WinToUSB
2018-02-28 16:37 - 2018-02-28 16:37 - 000000000 ____D C:\Program Files\Hasleo
2018-02-28 16:36 - 2018-02-28 16:36 - 005622415 _____ (Hasleo Software. ) C:\Users\Admin\Downloads\WinToUSB_Free.exe
2018-02-28 10:57 - 2018-02-28 10:57 - 000063783 _____ C:\Users\Admin\Downloads\(1978) Návod M 3900.pdf
2018-02-27 12:15 - 2018-02-27 12:21 - 068659424 _____ (TomTom International B.V.) C:\Users\Admin\Downloads\InstallTomTomMyDriveConnect_4_2_0_3437.exe
2018-02-27 12:14 - 2018-02-27 12:14 - 006694752 _____ (TomTom International B.V.) C:\Users\Admin\Downloads\InstallMyTomTomSA.exe
2018-02-27 12:14 - 2018-02-27 12:14 - 000000000 ____D C:\Program Files\TomTom International B.V
2018-02-27 12:10 - 2018-02-27 12:10 - 000510041 _____ C:\Users\Admin\Downloads\Navod jak nahrát POI do TT Vaia_Go100x.pdf
2018-02-27 10:08 - 2018-02-27 10:09 - 000000000 ____D C:\Users\Admin\Desktop\tomtom-Europe-975-7685+aktivator+návod+radary-Mapy-Evropy-(2016)-cz
2018-02-26 14:46 - 2018-02-26 17:14 - 2732488005 _____ C:\Users\Admin\Desktop\tomtom-Europe-975-7685+aktivator+návod+radary-Mapy-Evropy-(2016)-cz.rar
2018-02-26 14:27 - 2018-02-26 14:27 - 000000000 ____D C:\Users\Admin\Documents\TomTom
2018-02-26 14:27 - 2018-02-26 14:27 - 000000000 ____D C:\Users\Admin\AppData\Roaming\TomTom
2018-02-26 12:24 - 2018-02-26 12:24 - 000043344 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2018-02-26 12:24 - 2018-02-26 12:24 - 000035432 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2018-02-26 12:24 - 2018-02-26 12:24 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2018-02-26 12:24 - 2018-02-26 12:24 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2018-02-26 10:35 - 2018-02-26 14:27 - 000000000 ____D C:\Users\Admin\AppData\Local\TomTom
2018-02-23 16:38 - 2018-02-23 16:38 - 000000000 ____D C:\WINDOWS\pss
2018-02-22 18:14 - 2018-02-22 18:14 - 072520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes.dat
2018-02-22 18:14 - 2018-02-22 18:14 - 013381194 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2018-02-22 18:14 - 2018-02-22 18:14 - 007170864 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 007053688 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 004244224 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 003610088 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSndMgr.cpl
2018-02-22 18:14 - 2018-02-22 18:14 - 003173744 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 003135240 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 002906624 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkPgExt.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 002869224 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoInstII.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 002800328 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 002563488 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApoApi.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001824920 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001531672 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001529296 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX32APO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001512312 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001451616 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX32Proxy.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001400800 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001313120 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001279312 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001256184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001250336 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001239800 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001074048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001051152 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001036640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000936616 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000911088 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000877432 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000860520 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo2.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000794800 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000742608 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000737968 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000688232 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000669584 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000645816 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000615872 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000562416 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000523096 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Caf32APO2.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000481816 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000471288 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000402064 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000401048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000390936 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000387624 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000371808 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000367352 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000364016 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000363416 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000357152 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSXT.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000341152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000327944 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000322064 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000316432 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000307232 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000307232 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000285624 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000232752 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000232416 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000229584 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000229584 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000229032 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000225040 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000221904 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000214664 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000214664 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000200736 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000197440 _____ C:\WINDOWS\system32\AcpiServiceVnA.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000196008 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSHD.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000183608 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP360.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000181224 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000150552 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000144680 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000130296 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000116648 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000101616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000101328 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000099584 _____ (Conexant System, Inc.) C:\WINDOWS\system32\Caf32api.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000096600 _____ C:\WINDOWS\system32\audioLibVc.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000088272 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000083640 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000078480 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000074376 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000071704 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000067752 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\TepeqAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000003780 _____ C:\WINDOWS\system32\cxapo.prop
2018-02-22 17:22 - 2018-02-22 18:15 - 000000000 ____D C:\WINDOWS\system32\RTCOM
2018-02-22 17:21 - 2018-02-22 18:14 - 004559848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHDA.sys
2018-02-22 17:21 - 2018-02-22 18:14 - 000022160 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR.dll
2018-02-22 17:21 - 2017-06-29 18:52 - 000456184 _____ (Intel Corporation) C:\WINDOWS\system32\tbb_waves.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 020886432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRenderAVX.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 020794464 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRender.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 019139544 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioCapture.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 012016256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 011924336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO40.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 005675096 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV3apo.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 005324736 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 004982552 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 001832056 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 001791792 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesLib.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 000965672 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 000868448 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 000836144 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 000522696 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 013798176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 003661720 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 001948800 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 001502640 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO70.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 001201808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO60.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 001029832 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO50.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000992608 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO40.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000954192 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000799008 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000522696 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000439592 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX32.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000415864 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX32.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000369784 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000357976 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC32.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000243856 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000142320 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO.dll
2018-02-22 17:21 - 2017-06-29 18:48 - 000532888 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTACap.dll
2018-02-22 17:21 - 2017-06-29 18:48 - 000105648 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTARen.dll
2018-02-22 17:21 - 2017-06-29 03:05 - 005804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2018-02-22 17:21 - 2017-06-29 03:05 - 000005604 _____ C:\WINDOWS\system32\cxapo.lncs
2018-02-22 16:21 - 2018-02-22 17:01 - 000000366 _____ C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - Admin).job
2018-02-22 16:14 - 2018-03-15 20:48 - 000000000 ____D C:\Users\Admin\AppData\Local\SlimWare Utilities Inc
2018-02-21 10:04 - 2018-02-21 10:04 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2018-02-21 10:04 - 2018-02-21 10:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-02-21 10:04 - 2018-02-21 10:04 - 000000000 ____D C:\Program Files\iTunes
2018-02-21 10:04 - 2018-02-21 10:04 - 000000000 ____D C:\Program Files\iPod
2018-02-21 10:01 - 2018-02-21 10:01 - 000000000 ____D C:\Program Files\Apple Software Update
2018-02-14 14:12 - 2018-02-10 06:20 - 000915320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-02-14 14:12 - 2018-02-10 06:20 - 000799592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-02-14 14:12 - 2018-02-10 06:16 - 006412184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-02-14 14:12 - 2018-02-10 06:16 - 001627600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-02-14 14:12 - 2018-02-10 06:16 - 000358808 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2018-02-14 14:12 - 2018-02-10 06:16 - 000358808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-02-14 14:12 - 2018-02-10 06:13 - 000271768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-02-14 14:12 - 2018-02-10 06:12 - 000965016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-02-14 14:12 - 2018-02-10 06:12 - 000142744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-02-14 14:12 - 2018-02-10 06:09 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-02-14 14:12 - 2018-02-10 06:09 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-02-14 14:12 - 2018-02-10 06:09 - 002338776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-02-14 14:12 - 2018-02-10 06:09 - 002117528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-02-14 14:12 - 2018-02-10 06:08 - 002193168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-02-14 14:12 - 2018-02-10 06:08 - 000534936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-02-14 14:12 - 2018-02-10 06:07 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-02-14 14:12 - 2018-02-10 06:07 - 000575392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-02-14 14:12 - 2018-02-10 06:07 - 000434072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-02-14 14:12 - 2018-02-10 06:07 - 000279456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-02-14 14:12 - 2018-02-10 06:06 - 006481640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-02-14 14:12 - 2018-02-10 06:06 - 006014688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-02-14 14:12 - 2018-02-10 06:06 - 004670728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-02-14 14:12 - 2018-02-10 06:06 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 004937224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-02-14 14:12 - 2018-02-10 06:05 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 001149272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 000662208 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 000456232 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-02-14 14:12 - 2018-02-10 06:05 - 000322968 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-02-14 14:12 - 2018-02-10 06:03 - 002172312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-02-14 14:12 - 2018-02-10 06:03 - 000758168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-02-14 14:12 - 2018-02-10 06:03 - 000506264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-02-14 14:12 - 2018-02-10 05:47 - 013704192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-02-14 14:12 - 2018-02-10 05:46 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-02-14 14:12 - 2018-02-10 05:46 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-02-14 14:12 - 2018-02-10 05:46 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-02-14 14:12 - 2018-02-10 05:46 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-02-14 14:12 - 2018-02-10 05:44 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 018923008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 006466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-02-14 14:12 - 2018-02-10 05:43 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismp6.sys
2018-02-14 14:12 - 2018-02-10 05:42 - 001130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-02-14 14:12 - 2018-02-10 05:42 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-02-14 14:12 - 2018-02-10 05:42 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-02-14 14:12 - 2018-02-10 05:42 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-02-14 14:12 - 2018-02-10 05:42 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-02-14 14:12 - 2018-02-10 05:42 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2018-02-14 14:12 - 2018-02-10 05:41 - 019352576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-02-14 14:12 - 2018-02-10 05:41 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-02-14 14:12 - 2018-02-10 05:41 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-02-14 14:12 - 2018-02-10 05:41 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-02-14 14:12 - 2018-02-10 05:41 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-02-14 14:12 - 2018-02-10 05:41 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-02-14 14:12 - 2018-02-10 05:41 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-02-14 14:12 - 2018-02-10 05:40 - 001171456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-02-14 14:12 - 2018-02-10 05:40 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-02-14 14:12 - 2018-02-10 05:40 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-02-14 14:12 - 2018-02-10 05:40 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-02-14 14:12 - 2018-02-10 05:40 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-02-14 14:12 - 2018-02-10 05:39 - 011925504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-02-14 14:12 - 2018-02-10 05:39 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2018-02-14 14:12 - 2018-02-10 05:38 - 006567936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-02-14 14:12 - 2018-02-10 05:38 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 003678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 002650624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 001771520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 006031360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 002464768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 002341888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 001623552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-02-14 14:12 - 2018-02-10 05:36 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 000900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 004384768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-02-14 14:12 - 2018-02-10 05:35 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-02-14 14:12 - 2018-02-10 05:34 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-02-14 14:12 - 2018-02-10 05:34 - 001288704 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-02-14 14:12 - 2018-02-10 05:34 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-02-14 14:12 - 2018-02-10 05:33 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-02-14 14:12 - 2018-02-10 05:33 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-02-14 14:12 - 2018-02-10 05:33 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-02-14 14:12 - 2018-02-10 05:30 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2018-02-14 14:11 - 2018-02-10 06:22 - 000239000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-02-14 14:11 - 2018-02-10 06:20 - 001322904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-02-14 14:11 - 2018-02-10 06:19 - 000603544 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-02-14 14:11 - 2018-02-10 06:19 - 000119192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-02-14 14:11 - 2018-02-10 06:19 - 000062360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-02-14 14:11 - 2018-02-10 06:19 - 000030616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-02-14 14:11 - 2018-02-10 06:18 - 001902496 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-02-14 14:11 - 2018-02-10 06:18 - 001384288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-02-14 14:11 - 2018-02-10 06:18 - 000517016 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-02-14 14:11 - 2018-02-10 06:18 - 000221592 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 002255112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000542856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000542104 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000348056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000320416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000211864 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-02-14 14:11 - 2018-02-10 06:16 - 001116728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-02-14 14:11 - 2018-02-10 06:16 - 000975216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-02-14 14:11 - 2018-02-10 06:15 - 001145624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-02-14 14:11 - 2018-02-10 06:13 - 000376216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2018-02-14 14:11 - 2018-02-10 06:12 - 004382032 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2018-02-14 14:11 - 2018-02-10 06:11 - 001250528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2018-02-14 14:11 - 2018-02-10 06:11 - 000612736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-02-14 14:11 - 2018-02-10 06:11 - 000416152 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-02-14 14:11 - 2018-02-10 06:10 - 000445336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2018-02-14 14:11 - 2018-02-10 06:10 - 000422592 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-02-14 14:11 - 2018-02-10 06:09 - 001123456 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-02-14 14:11 - 2018-02-10 06:09 - 000806808 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2018-02-14 14:11 - 2018-02-10 06:09 - 000608152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-02-14 14:11 - 2018-02-10 06:09 - 000559976 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2018-02-14 14:11 - 2018-02-10 06:09 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2018-02-14 14:11 - 2018-02-10 06:09 - 000339360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-02-14 14:11 - 2018-02-10 06:09 - 000320312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2018-02-14 14:11 - 2018-02-10 06:09 - 000203672 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-02-14 14:11 - 2018-02-10 06:08 - 003980720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2018-02-14 14:11 - 2018-02-10 06:08 - 001852312 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-02-14 14:11 - 2018-02-10 06:08 - 000718488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2018-02-14 14:11 - 2018-02-10 06:08 - 000592792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000543920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000538768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-02-14 14:11 - 2018-02-10 06:07 - 000527864 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000414824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-02-14 14:11 - 2018-02-10 06:07 - 000284112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000170904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000123808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000089504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000083216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000076184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2018-02-14 14:11 - 2018-02-10 06:07 - 000061024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000040856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000040840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2018-02-14 14:11 - 2018-02-10 06:06 - 000078232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 001360992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 001006192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2018-02-14 14:11 - 2018-02-10 06:05 - 000718488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000718232 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000654456 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000295488 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
2018-02-14 14:11 - 2018-02-10 06:05 - 000225176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000193248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000079256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000077552 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2018-02-14 14:11 - 2018-02-10 06:03 - 000505160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2018-02-14 14:11 - 2018-02-10 05:47 - 000942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-02-14 14:11 - 2018-02-10 05:46 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-02-14 14:11 - 2018-02-10 05:46 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-02-14 14:11 - 2018-02-10 05:45 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-02-14 14:11 - 2018-02-10 05:45 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2018-02-14 14:11 - 2018-02-10 05:44 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-02-14 14:11 - 2018-02-10 05:44 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-02-14 14:11 - 2018-02-10 05:44 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-02-14 14:11 - 2018-02-10 05:44 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2018-02-14 14:11 - 2018-02-10 05:44 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2018-02-14 14:11 - 2018-02-10 05:44 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2018-02-14 14:11 - 2018-02-10 05:44 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb80236.sys
2018-02-14 14:11 - 2018-02-10 05:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2018-02-14 14:11 - 2018-02-10 05:42 - 000731136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2018-02-14 14:11 - 2018-02-10 05:42 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-02-14 14:11 - 2018-02-10 05:42 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-02-14 14:11 - 2018-02-10 05:42 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2018-02-14 14:11 - 2018-02-10 05:42 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2018-02-14 14:11 - 2018-02-10 05:40 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 002677760 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2018-02-14 14:11 - 2018-02-10 05:39 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvr32.exe
2018-02-14 14:11 - 2018-02-10 05:38 - 002184192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 000830976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2018-02-14 14:11 - 2018-02-10 05:38 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-02-14 14:11 - 2018-02-10 05:38 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-02-14 14:11 - 2018-02-10 05:37 - 003419136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-02-14 14:11 - 2018-02-10 05:37 - 003287040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2018-02-14 14:11 - 2018-02-10 05:37 - 003227648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-02-14 14:11 - 2018-02-10 05:37 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2018-02-14 14:11 - 2018-02-10 05:37 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-02-14 14:11 - 2018-02-10 05:36 - 001342464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000973312 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 002413568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 001630208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-02-14 14:11 - 2018-02-10 05:35 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2018-02-14 14:11 - 2018-02-10 05:34 - 006532096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2018-02-14 14:11 - 2018-02-10 05:34 - 001762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-02-14 14:11 - 2018-02-10 05:34 - 001352192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2018-02-14 14:11 - 2018-02-10 05:34 - 000603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2018-02-14 14:11 - 2018-02-10 05:34 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2018-02-14 14:11 - 2018-02-10 05:34 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2018-02-14 14:11 - 2018-02-10 05:33 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-02-14 14:11 - 2018-02-10 05:33 - 000620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-14 14:11 - 2018-02-10 05:33 - 000604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-02-14 14:11 - 2018-02-10 05:32 - 002427904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2018-02-14 14:11 - 2018-02-10 05:32 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2018-02-14 14:11 - 2018-02-10 05:32 - 000576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-02-14 14:11 - 2018-02-10 05:32 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2018-02-14 14:11 - 2018-02-10 05:32 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.ProxyStub.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 001488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2018-02-14 14:11 - 2018-02-10 05:31 - 001286144 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2018-02-14 14:11 - 2018-02-10 05:31 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 001104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2018-02-14 14:11 - 2018-02-10 05:31 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2018-02-14 14:11 - 2018-02-10 04:03 - 000804240 _____ C:\WINDOWS\system32\locale.nls
2018-02-14 14:11 - 2018-02-02 04:36 - 003903944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2018-02-14 14:11 - 2018-02-02 04:36 - 000921032 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2018-02-14 14:11 - 2018-02-02 04:36 - 000854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2018-02-14 14:11 - 2018-02-02 04:36 - 000649672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2018-02-14 14:11 - 2018-02-02 04:36 - 000054720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2018-02-14 10:15 - 2018-02-14 10:15 - 000001933 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2018-02-14 10:15 - 2018-02-14 10:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-15 22:10 - 2017-01-27 10:21 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2018-03-15 21:53 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-03-15 21:39 - 2017-10-26 02:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-03-15 21:17 - 2017-09-29 12:45 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-03-15 21:17 - 2017-01-27 18:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-03-15 21:14 - 2017-10-11 09:17 - 127391104 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-03-15 21:14 - 2017-01-27 18:25 - 127391104 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-03-15 21:04 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-03-15 21:02 - 2017-03-28 10:42 - 000340992 ___SH C:\Users\Admin\Desktop\Thumbs.db
2018-03-15 21:01 - 2017-09-29 12:55 - 000000000 ___HD C:\Program Files\WindowsApps
2018-03-15 20:55 - 2017-10-26 02:25 - 002763344 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-03-15 20:55 - 2017-09-30 13:07 - 001253706 _____ C:\WINDOWS\system32\perfh005.dat
2018-03-15 20:55 - 2017-09-30 13:07 - 000304588 _____ C:\WINDOWS\system32\perfc005.dat
2018-03-15 20:48 - 2017-10-26 02:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-03-15 20:48 - 2017-10-26 02:16 - 000000000 ____D C:\Users\Admin
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ___RD C:\Program Files\Windows Defender
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\TextInput
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\setup
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\rescache
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-03-15 20:48 - 2017-09-29 12:52 - 000000000 ____D C:\WINDOWS\INF
2018-03-15 20:48 - 2017-09-29 06:31 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-03-15 20:48 - 2017-09-29 06:31 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-03-15 20:48 - 2017-03-18 19:23 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-03-15 20:48 - 2017-02-15 15:57 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\IObit
2018-03-15 20:48 - 2017-02-15 15:57 - 000000000 ____D C:\ProgramData\ProductData
2018-03-15 20:48 - 2017-02-06 14:16 - 000000000 ____D C:\Program Files\TeamViewer
2018-03-15 20:46 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\registration
2018-03-15 20:46 - 2017-02-15 15:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\IObit
2018-03-15 20:46 - 2017-02-15 15:57 - 000000000 ____D C:\ProgramData\IObit
2018-03-15 20:46 - 2017-02-15 15:57 - 000000000 ____D C:\Program Files\IObit
2018-03-15 17:46 - 2017-02-15 16:00 - 000000000 ____D C:\Program Files\Common Files\IObit
2018-03-13 17:18 - 2017-01-26 16:56 - 000002432 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-03-13 17:18 - 2017-01-26 16:56 - 000000000 ___RD C:\Users\Admin\OneDrive
2018-03-09 10:44 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-03-09 10:09 - 2017-01-27 17:20 - 000069632 _____ C:\Users\Admin\Desktop\servis.xls
2018-03-08 23:31 - 2017-09-29 06:31 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-03-08 23:29 - 2017-11-03 10:45 - 000000000 ____D C:\Users\Admin\Desktop\firefox
2018-03-08 19:09 - 2017-10-26 02:16 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2018-03-08 18:58 - 2017-05-04 11:47 - 000000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2018-03-08 18:29 - 2017-09-29 12:55 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-03-08 18:28 - 2016-04-27 05:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-03-06 11:37 - 2017-04-20 11:15 - 000000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2018-03-05 16:43 - 2017-01-27 10:21 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-03-05 16:43 - 2017-01-27 10:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-03-02 22:09 - 2017-09-29 12:57 - 000834552 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-03-02 22:09 - 2017-09-29 12:57 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-03-02 09:55 - 2017-10-13 09:09 - 000000000 ____D C:\Users\Admin\AppData\Local\LenovoServiceBridge
2018-03-01 13:41 - 2017-12-19 10:10 - 000000000 ____D C:\WINDOWS\Minidump
2018-03-01 11:45 - 2017-01-27 10:21 - 000001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-02-28 22:06 - 2017-12-06 10:36 - 000000000 ____D C:\Program Files\Dropbox
2018-02-27 20:25 - 2017-02-08 08:10 - 000000000 ____D C:\marek záloha
2018-02-27 10:42 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-02-27 10:04 - 2017-01-27 10:48 - 000002166 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-02-27 10:04 - 2017-01-27 10:24 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-02-26 14:26 - 2017-09-14 17:34 - 000000000 ____D C:\Users\Admin\AppData\Local\Downloaded Installations
2018-02-26 10:36 - 2017-01-28 14:55 - 000000000 ____D C:\ProgramData\Package Cache
2018-02-25 16:58 - 2017-01-30 17:43 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-02-22 18:16 - 2017-10-11 08:36 - 000002297 _____ C:\Users\Public\Desktop\Driver Booster 5.lnk
2018-02-22 18:15 - 2017-03-31 23:52 - 000000000 ____D C:\WINDOWS\system32\DAX3
2018-02-22 18:15 - 2017-03-31 23:52 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-02-22 17:52 - 2017-02-21 18:32 - 000060928 _____ C:\Users\Admin\Desktop\stavy měřidel.xls
2018-02-22 17:22 - 2017-02-17 14:27 - 000000000 ___HD C:\Program Files\Temp
2018-02-22 17:01 - 2017-10-26 02:15 - 000396648 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-02-21 10:22 - 2017-10-11 08:44 - 000848832 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x86.sys
2018-02-21 10:18 - 2017-10-11 08:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
2018-02-21 10:01 - 2017-08-14 21:38 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2018-02-15 12:11 - 2017-10-24 12:32 - 000000000 ___RD C:\Users\Admin\3D Objects
2018-02-15 12:09 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-02-14 14:16 - 2015-10-30 06:48 - 000000167 _____ C:\WINDOWS\win.ini
2018-02-14 14:14 - 2017-09-29 12:49 - 000160664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2018-02-14 14:13 - 2017-09-29 12:49 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2018-02-14 14:13 - 2017-09-29 12:49 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2018-02-14 14:13 - 2017-09-29 12:49 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2018-02-14 10:15 - 2017-10-24 09:45 - 000000000 ____D C:\ProgramData\Garmin
2018-02-14 10:15 - 2017-10-24 09:45 - 000000000 ____D C:\Program Files\Garmin

==================== Files in the root of some directories =======

2017-08-16 11:57 - 2017-08-16 11:57 - 000003584 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-01-30 10:22 - 2017-01-30 10:22 - 000000001 _____ () C:\Users\Admin\AppData\Local\llftool.4.40.agreement
2017-04-27 12:41 - 2017-04-27 12:41 - 000000019 _____ () C:\Users\Admin\AppData\Local\llftool.license
2017-01-30 17:02 - 2017-01-30 17:02 - 000000003 _____ () C:\Users\Admin\AppData\Local\updater.log
2017-01-30 17:02 - 2017-05-08 16:58 - 000000413 _____ () C:\Users\Admin\AppData\Local\UserProducts.xml

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-03-15 20:59

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:223.08 GB) (Free:45.87 GB) NTFS
\\?\Volume{8b28f46f-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.17 GB) NTFS

Available physical RAM: 960.72 MB
Total physical RAM: 3068.49 MB
Percentage of memory in use: 68%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 8B28F46F)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.1 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - Admin).job => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Admin.job => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-4274060390-290019901-698256631-1001.job => C:\Program Files\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files\Skillbrains\Updater\Updater.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\Admin\Desktop\1.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\Admin\Desktop\1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Admin\Desktop\2.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\Admin\Desktop\2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [136]

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Admin\Desktop" je 26066 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14.03.2018
Ran by Admin (15-03-2018 22:15:45)
Running from C:\Users\Admin\Desktop
Microsoft Windows 10 Home Version 1709 16299.248 (X86) (2017-10-26 01:23:18)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

2 (S-1-5-21-4274060390-290019901-698256631-1007 - Administrator - Enabled) => C:\Users\2
Admin (S-1-5-21-4274060390-290019901-698256631-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-4274060390-290019901-698256631-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4274060390-290019901-698256631-503 - Limited - Disabled)
Guest (S-1-5-21-4274060390-290019901-698256631-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4274060390-290019901-698256631-1006 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-4274060390-290019901-698256631-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . . (HKLM\...\{4A7F2465-EAE2-4A22-9842-2A0F537F243E}) (Version: 2.6.2.4 - Intel) Hidden
7-Data Recovery Suite version 4.0.0 (HKLM\...\{02386A56-080B-485c-941D-AF96B29140DD}_is1) (Version: 4.0.0 - SharpNight Co,Ltd)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
AIDA64 Extreme v4.20 (HKLM\...\AIDA64 Extreme_is1) (Version: 4.20 - FinalWire Ltd.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
ANT Drivers Installer x86 (HKLM\...\{E31469C1-98C4-4DBA-A0F7-38C5C499EEAD}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Mobile Device Support (HKLM\...\{BD40DFE8-9908-43A8-93C0-67608DD3D400}) (Version: 11.0.5.14 - Apple Inc.)
Apple Software Update (HKLM\...\{19589375-5C58-4AFA-842F-8B34744CCEAD}) (Version: 2.5.0.1 - Apple Inc.)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Laboratories Inc. (silabser) Ports (09/19/2016 6.7.4.261) (HKLM\...\9E2C239D42290B984A9E2B350A67AF8BC8BD11B9) (Version: 09/19/2016 6.7.4.261 - Silicon Laboratories Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.34 - Piriform)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
Driver Booster 5 (HKLM\...\Driver Booster_is1) (Version: 5.2.0 - IObit)
Dropbox (HKLM\...\Dropbox) (Version: 44.4.58 - Dropbox, Inc.)
Dropbox Update Helper (HKLM\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Elevated Installer (HKLM\...\{9AB7E852-655C-4BDE-9042-1D3E6807C85A}) (Version: 6.1.1.0 - Garmin Ltd or its subsidiaries) Hidden
EPSON Advanced Printer Driver 4 (HKLM\...\{11FF6AF6-0141-4EF8-829A-989459A1E5D8}) (Version: 4.56.0300 - SEIKO EPSON CORPORATION)
EPSON APD4 Point and Print Support (HKLM\...\{4BB82AD9-0CF6-4E14-BD75-C1AB657C2914}) (Version: 4.56.0300 - SEIKO EPSON CORPORATION) Hidden
EPSON Port Communication Service (HKLM\...\{F23694FE-12E5-4B8F-AC8A-9C78D32ED7FD}) (Version: 3.12.0 - SEIKO EPSON CORPORATION)
EPSON TM Coupon Package (HKLM\...\{60ED98A7-BE97-4F26-B32E-5087337C6044}) (Version: 1.20.0000 - Seiko Epson Corporation)
FormApps Signing Extension (HKLM\...\{ACA43D91-8B42-4D42-8C8B-A893BD6AA40D}) (Version: 2.8.2.28 - Software602 a.s.)
Free Registry Defrag (HKLM\...\Free Registry Defrag_is1) (Version: - iExpert Software)
Garmin Express (HKLM\...\{E695D74A-9567-46DA-A4EE-0E191F21194B}) (Version: 6.1.1.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM\...\{fb1ff7db-c0d2-43c4-99bf-5b2fa4f9ca0b}) (Version: 6.1.1.0 - Garmin Ltd or its subsidiaries)
Garmin Express Tray (HKLM\...\{7C8FDEF1-F311-459C-B3CC-EEF73C721BFD}) (Version: 6.1.1.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 64.0.3282.186 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Hard Disk Low Level Format Tool 4.40 (HKLM\...\Hard Disk Low Level Format Tool_is1) (Version: - HDDGURU)
HDD Regenerator (HKLM\...\{CC5DA723-D428-40D1-B82B-21EB64B1273C}) (Version: 20.11.0011 - Abstradrome)
InstPortMon (HKLM\...\{CCC2D881-2262-4DE1-BC15-32E4727F1259}) (Version: 1.4.0.0 - InstPortMon) Hidden
Intel(R) Update Manager (HKLM\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel® Driver Update Utility (HKLM\...\{66e8e99a-eb6f-4403-9fc2-0ddd4d6f353e}) (Version: 2.6.2.4 - Intel)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{55669453-883A-4F15-9D3B-BC990F5C9A32}) (Version: 6.0.6 - Intel Corporation)
IObit Uninstaller (HKLM\...\IObitUninstall) (Version: 7.0.2.49 - IObit)
ISO2Disc 1.10 (HKLM\...\ISO2Disc_is1) (Version: - Top Password Software, Inc.)
iTunes (HKLM\...\{6EBB5549-1773-43E1-BB82-E7A14CA5AB6B}) (Version: 12.7.3.46 - Apple Inc.)
Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 151 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java SE Development Kit 8 Update 121 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180121}) (Version: 8.0.1210.13 - Oracle Corporation)
Java SE Development Kit 8 Update 151 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180151}) (Version: 8.0.1510.12 - Oracle Corporation)
JRF (HKLM\...\JRF) (Version: 1.3.0.0 - ICZ a.s.)
Kingston SSD Manager version 1.0.1.3 (HKLM\...\{9A5DD901-0B98-4F2B-9421-B5975014184F}_is1) (Version: 1.0.1.3 - Kingston Digital, Inc)
Lenovo Moto Smart Assistant (HKLM\...\{4EE4FC82-5245-478B-BBD2-15E977072240}) (Version: 3.3.1.10 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.5.9 - Lenovo)
Lightshot-5.4.0.10 (HKLM\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.10 - Skillbrains)
Macrorit Disk Partition Expert Free 2016 (HKLM\...\Macrorit_MDE) (Version: 2016 - Macrorit Inc.)
Manager (HKLM\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\OneDriveSetup.exe) (Version: 17.005.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MiniTool Partition Wizard Free 10.2.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Money S3 (HKLM\...\Money S3) (Version: - )
Mozilla Firefox 58.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 58.0.2 (x86 cs)) (Version: 58.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.2.6611 - Mozilla)
Naviextras Toolbox (HKLM\...\Naviextras Toolbox) (Version: 3.18.5.667499 - NNG Llc.)
Naviextras Toolbox Prerequesities (HKLM\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.)
NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
Paragon Backup and Recovery™ 16 (HKLM\...\{DADAA9CF-36B6-11E6-B0B5-005056C00008}) (Version: 10.28.101 - Paragon Software)
PC Inspector File Recovery (HKLM\...\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}) (Version: 4.0 - )
PDF Architect 4 (HKLM\...\PDF Architect 4) (Version: 4.0.34.26215 - pdfforge GmbH)
PDF Architect 4 Create Module (HKLM\...\{7B38A9AD-77A9-4CF5-AD21-5CE9E1F5011D}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 Edit Module (HKLM\...\{DEC7E684-E5AC-470B-8951-8E608692338D}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 View Module (HKLM\...\{9E815348-7C38-494E-B8BF-B7CB18FB8A2F}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 5 (HKLM\...\PDF Architect 5) (Version: 5.0.22.32360 - pdfforge GmbH)
PDF Architect 5 Create Module (HKLM\...\{195F60E3-5445-4DDA-8A65-C1A221E1D6FA}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{1EC3144E-90D5-4936-8292-E8C5152ADF77}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{BD9CE601-084F-49A2-9E13-F0BF6AD7FEEB}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.3 - pdfforge GmbH)
PL-2303 USB-to-Serial (HKLM\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.16.0 - Prolific Technology Inc.)
Podpora aplikací Apple (32bitová) (HKLM\...\{D4C80B0C-CF67-43A7-90C3-466853543B54}) (Version: 6.3 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8248 - Realtek Semiconductor Corp.)
Seagate DiscWizard (HKLM\...\{15C6E3DD-11C8-4A57-BD32-828613558488}) (Version: 18.0.6036 - Seagate)
SeaTools for Windows 1.4.0.5 (HKLM\...\SeaTools for Windows) (Version: 1.4.0.5 - Seagate Technology)
Správce síťových licencí produktů Cígler Software (HKLM\...\Správce síťových licencí produktů CÍGLER SOFTWARE) (Version: - )
TeamViewer 13 (HKLM\...\TeamViewer) (Version: 13.0.6447 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 9.10 release candidate 1 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visual Studio C++ 10.0 Runtime (HKLM\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
WinRAR 5.50 beta 3 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.3 - win.rar GmbH)
WinToUSB verze 3.9 (HKLM\...\WinToUSB_is1) (Version: 3.9 - Hasleo Software.)
Wondershare Data Recovery(Build 6.1.1.0) (HKLM\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 6.1.1.0 - Wondershare Software Co.,Ltd.)
Wondershare Helper Compact 2.5.2 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileCoAuthLib.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files\Seagate\DiscWizard\tishell.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files\Seagate\DiscWizard\tishell.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files\Seagate\DiscWizard\tishell.dll [2014-09-09] (Acronis)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers1: [PDFArchitect4_ManagerExt] -> {3AECFCB3-8472-48E9-BC7B-5A3CD945C886} => C:\Program Files\PDF Architect 4\creator-context-menu.dll [2016-08-05] (pdfforge GmbH)
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-07-05] (pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\WINDOWS\system32\mscoree.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-05-26] (Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-05-26] (Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-4274060390-290019901-698256631-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ContextMenuHandlers4_S-1-5-21-4274060390-290019901-698256631-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ContextMenuHandlers5_S-1-5-21-4274060390-290019901-698256631-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1E65E0FC-CAA0-4C4A-A104-60DA9CC443CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {2572FEFA-663B-45EF-9C2F-EA19CA46D97E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-01-27] (Google Inc.)
Task: {42B53D3A-CC2F-4347-AB32-EBC633D8E790} - System32\Tasks\Driver Booster Scheduler => C:\Program Files\IObit\Driver Booster\5.2.0\Scheduler.exe [2018-01-26] (IObit)
Task: {48C837F1-8641-434B-9FFF-8C877C6A1AFF} - System32\Tasks\Driver Booster SkipUAC (Admin) => C:\Program Files\IObit\Driver Booster\5.2.0\DriverBooster.exe [2018-01-29] (IObit)
Task: {623861E5-A91C-4522-AB42-C2C6EA83F632} - System32\Tasks\Uninstaller_SkipUac_Admin => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2017-09-15] (IObit)
Task: {62DF66DA-8E87-4EA4-87CC-72C2A244925B} - System32\Tasks\update-S-1-5-21-4274060390-290019901-698256631-1001 => C:\Program Files\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {6CF3EE67-502E-41A7-A175-E1EC67699E39} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-02] (Microsoft Corporation)
Task: {783355F8-F13D-4DB6-8684-F040D6E2F48C} - System32\Tasks\update-sys => C:\Program Files\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {8BD721AC-4D1A-4327-84EA-A64767B01F4E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2017-12-06] (Dropbox, Inc.)
Task: {9480003E-B860-4C10-95E1-738BA5B5CCED} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {9A9E9E00-981F-4576-88CA-BF3E014912F4} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2017-12-06] (Dropbox, Inc.)
Task: {A324B01E-68A7-42CC-8103-CB297F683511} - System32\Tasks\GarminUpdaterTask => C:\Program Files\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2018-02-08] ()
Task: {A9C723BB-56F2-4355-8811-227A04FC9261} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-07] (Piriform Ltd)
Task: {BA8E357E-5FE6-419F-B25E-8330D1330501} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - Admin) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: {C0C31BA8-00ED-41FE-9ED4-0E1DCBCF891E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-02] (Microsoft Corporation)
Task: {C421654F-DDE2-4740-BE83-547ABFA6EE67} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-4274060390-290019901-698256631-1001 => C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [2018-02-07] (Lenovo Group Limited)
Task: {C532E63C-C0D9-4CCE-B713-EABBD1A1CBE2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-01-27] (Google Inc.)
Task: {D4CC8D90-942F-4105-91A6-62F3F1CCE7A0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2017-10-12] (Apple Inc.)
Task: {DCDEB200-7EC6-45A2-9B72-A15B47A4A19A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-02] (Microsoft Corporation)
Task: {E01045E5-B2D8-4173-B8E9-3B762043EDB2} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {E63095BC-B2CA-4616-BD78-34C004682C0B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-02] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - Admin).job => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Admin.job => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-4274060390-290019901-698256631-1001.job => C:\Program Files\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files\Skillbrains\Updater\Updater.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Admin\Desktop\Baterie ASUS K50AB K50C K50IJ K51AC K.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hciadgnhibmggheijglinbnlndnecgfl
ShortcutWithArgument: C:\Users\Admin\Desktop\Kolekce HARDDISKŮ Pro NOTEBOOK - Most.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=diooefmhnhhbgihnangmolikjmejnidm
ShortcutWithArgument: C:\Users\Admin\Desktop\NEW - Lenovo IdeaPad 110-15ACL Mother.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=elcdapgmbonjmblagdblhhiilfbgboei
ShortcutWithArgument: C:\Users\Admin\Desktop\notebook_ (napájení ze sítě. Nenabíjí.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=eicncpbbgkfhgdjkbgnckoohobebmeho
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Baterie ASUS K50AB K50C K50IJ K51AC K.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hciadgnhibmggheijglinbnlndnecgfl
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Kolekce HARDDISKŮ Pro NOTEBOOK - Most.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=diooefmhnhhbgihnangmolikjmejnidm
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\NEW - Lenovo IdeaPad 110-15ACL Mother.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=elcdapgmbonjmblagdblhhiilfbgboei
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\notebook_ (napájení ze sítě. Nenabíjí.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=eicncpbbgkfhgdjkbgnckoohobebmeho

==================== Loaded Modules (Whitelisted) ==============

2016-02-15 21:02 - 2016-02-15 21:02 - 000027160 _____ () C:\WINDOWS\System32\us008lm.dll
2018-01-05 00:14 - 2018-01-05 00:14 - 000076088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-01-05 00:14 - 2018-01-05 00:14 - 001042232 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-02-17 14:28 - 2017-05-22 10:16 - 000442144 _____ () C:\Program Files\IObit\IObit Uninstaller\madExcept_.bpl
2017-02-17 14:28 - 2017-05-22 10:16 - 000210720 _____ () C:\Program Files\IObit\IObit Uninstaller\madBasic_.bpl
2017-02-17 14:28 - 2017-05-22 10:16 - 000059680 _____ () C:\Program Files\IObit\IObit Uninstaller\madDisAsm_.bpl
2017-05-08 09:35 - 2017-05-08 09:35 - 000325632 _____ () C:\Program Files\Garmin\Device Interaction Service\GpsImgWrapper.dll
2018-02-08 13:32 - 2018-02-08 13:32 - 000073216 _____ () C:\Program Files\Garmin\Device Interaction Service\FixBootSector.dll
2017-04-11 09:09 - 2008-10-21 10:02 - 000577248 _____ () C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
2017-04-11 09:17 - 2008-10-23 17:27 - 000045056 _____ () C:\Program Files\CIGLER SOFTWARE\NetLicence\Mtp32.dll
2017-09-29 12:49 - 2017-09-29 12:49 - 000149840 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2014-09-09 10:00 - 2014-09-09 10:00 - 000023576 _____ () C:\Program Files\Seagate\DiscWizard\ti_managers_proxy_stub.dll
2018-02-27 10:04 - 2018-02-22 05:12 - 002407256 _____ () C:\Program Files\Google\Chrome\Application\64.0.3282.186\swiftshader\libglesv2.dll
2018-02-27 10:04 - 2018-02-22 05:12 - 000115032 _____ () C:\Program Files\Google\Chrome\Application\64.0.3282.186\swiftshader\libegl.dll
2017-09-29 12:49 - 2017-09-29 12:49 - 000036352 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 002643456 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 002329088 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Admin\Desktop\1.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\Admin\Desktop\1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Admin\Desktop\2.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\Admin\Desktop\2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [136]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\facebook.com -> hxxps://staticxx.facebook.com
IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\facebook.net -> hxxps://connect.facebook.net
IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\fbcdn.net -> hxxps://static.xx.fbcdn.net
IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\google-analytics.com -> hxxps://www.google-analytics.com
IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\paragon-software.com -> hxxps://bo4-fe.paragon-software.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 06:48 - 2015-10-30 06:47 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4274060390-290019901-698256631-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 8.8.4.4 - 10.200.200.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\StartupFolder: => "Select a coupon.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "NetLockMngr"
HKLM\...\StartupApproved\Run: => "EpsonAPD4SV"
HKLM\...\StartupApproved\Run: => "P17RunE"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "GrooveMonitor"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run: => "HDD Regenerator"
HKLM\...\StartupApproved\Run: => "Lightshot"
HKLM\...\StartupApproved\Run: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run: => "FreeAgentTheaterTrayIcon"
HKLM\...\StartupApproved\Run: => "DiscWizardMonitor.exe"
HKLM\...\StartupApproved\Run: => "Seagate Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "Dropbox"
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\StartupApproved\Run: => "GarminExpressTrayApp"
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\StartupApproved\Run: => "T-Mobile CManager"
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\StartupApproved\Run: => "TomTomHOME.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C85DB6F2-5130-449B-BAE0-F6FBBA381A18}] => (Allow) LPort=1688
FirewallRules: [{BBDA55A0-DB16-4899-86FB-5FD8D53E939E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{EDD2A6F9-DC44-4174-9415-6625F2EF90CA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CE3F08AF-42D0-42FF-992E-E9C0A0115817}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{CF4E350D-DA88-4B9A-95C5-B0AE1A8EEF21}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{E36460BE-AD59-44E7-A802-3C53774B17D9}] => (Allow) C:\Program Files\EPSON\EPSON Advanced Printer Driver 4\Tools\PrinterNetworkSetting\APDNetSetting.exe
FirewallRules: [{F67516CA-147C-4257-9434-45F69862E810}] => (Allow) C:\Program Files\EPSON\EPSON Advanced Printer Driver 4\Tools\PrinterNetworkSetting\APDNetSetting.exe
FirewallRules: [{E7647B23-A183-4189-9572-125E2D44141C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{DF20069C-1F50-4F85-BB25-DEAC32E9B5DF}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{FE621C56-5ABB-4326-9DBE-354F97E741FE}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6F300745-F378-478F-B8D3-C768E7871088}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{1D46E811-75F7-463B-A61F-9EEA28CE3061}C:\program files\lenovo moto smart assistant\lenovo moto smart assistant.exe] => (Allow) C:\program files\lenovo moto smart assistant\lenovo moto smart assistant.exe
FirewallRules: [UDP Query User{7B8438EC-76B0-4DEF-B970-34BF30D6A8FE}C:\program files\lenovo moto smart assistant\lenovo moto smart assistant.exe] => (Allow) C:\program files\lenovo moto smart assistant\lenovo moto smart assistant.exe
FirewallRules: [{9BCE58D4-E3E8-4390-9221-C166431C99E9}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{112FE497-1A83-4640-959C-029AA0E353DA}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{4C3858D5-65C2-49C5-8723-B836B74F5A8A}] => (Allow) C:\Program Files\IObit\Driver Booster\5.2.0\DriverBooster.exe
FirewallRules: [{A29252FF-0566-4BE1-AFB0-F95DE6AEEDDB}] => (Allow) C:\Program Files\IObit\Driver Booster\5.2.0\DriverBooster.exe
FirewallRules: [{71A369FB-4DAE-4D20-8610-86C0030F603F}] => (Allow) C:\Program Files\IObit\Driver Booster\5.2.0\DBDownloader.exe
FirewallRules: [{238E996B-8FAC-4DFB-8748-5CDD45B557A8}] => (Allow) C:\Program Files\IObit\Driver Booster\5.2.0\DBDownloader.exe
FirewallRules: [{5E5A4A7C-672B-4BDD-A85B-99D23F553EC2}] => (Allow) C:\Program Files\IObit\Driver Booster\5.2.0\AutoUpdate.exe
FirewallRules: [{1B49C0C7-2E71-4E5E-B7CC-8979B9E1E60C}] => (Allow) C:\Program Files\IObit\Driver Booster\5.2.0\AutoUpdate.exe
FirewallRules: [{E6CD0BAB-EC0D-4081-BDA1-02C753848565}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{BE3C60D6-77EF-4BD0-A285-1274269A0E3B}] => (Allow) C:\Program Files\Dropbox\Client\Dropbox.exe

==================== Restore Points =========================

13-03-2018 18:23:20 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/15/2018 09:50:52 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 09:49:52 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 09:48:51 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 09:48:12 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 09:48:12 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 09:48:11 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 09:47:51 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 09:46:51 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba


System errors:
=============
Error: (03/15/2018 09:49:41 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-9BBP2FF)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-9BBP2FF\Admin (SID: S-1-5-21-4274060390-290019901-698256631-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/15/2018 09:49:39 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-9BBP2FF)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-9BBP2FF\Admin (SID: S-1-5-21-4274060390-290019901-698256631-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/15/2018 09:47:57 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9BBP2FF)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/15/2018 09:03:29 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070002): 9NBLGGH4R32N-Microsoft.WindowsFeedbackHub.

Error: (03/15/2018 09:03:12 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070002): 9WZDNCRFJ364-Microsoft.SkypeApp.

Error: (03/15/2018 09:02:19 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070002): 9WZDNCRFJBMP-Microsoft.WindowsStore.

Error: (03/15/2018 08:53:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070002): 9WZDNCRFJ3T6-Microsoft.3DBuilder.

Error: (03/15/2018 08:50:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\NETWORK SERVICE (SID: S-1-5-20) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2018-03-15 22:05:47.882
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Critet.BS
ID: 2147726294
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Admin\Downloads\Nepotvrzeno 777370.crdownload
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-9BBP2FF\Admin
Název procesu: C:\Program Files\Google\Chrome\Application\chrome.exe
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze modulu: AM: 1.1.14600.4, NIS: 2.1.14202.0

Date: 2018-03-15 22:03:32.842
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Critet.BS
ID: 2147726294
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Admin\Downloads\FRST.exe;webfile:_C:\Users\Admin\Downloads\FRST.exe|https://download.bleepingcomputer.com/d ... 5773988296
Původ zjišťování: Internet
Typ zjišťování: FastPath
Zdroj zjišťování: Soubory ke stažení a přílohy
Uživatel: DESKTOP-9BBP2FF\Admin
Název procesu: Unknown
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze modulu: AM: 1.1.14600.4, NIS: 2.1.14202.0

Date: 2018-03-15 17:44:05.524
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1290F9A7-5E17-4865-A6A0-17F4C46113D5}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-03-15 16:23:38.313
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1CCBCA00-7B86-4D35-8E99-E0FCD1ABEA2D}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-03-15 14:39:05.919
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {9BE9ADA7-E446-483A-BCB3-7FF3DDEE324B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-03-15 20:48:50.413
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst: Aktuální
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Verze podpisu: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

Date: 2018-03-08 16:17:58.420
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 1.263.328.0
Předchozí verze podpisu: 1.263.325.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.14600.4
Předchozí verze modulu: 1.1.14600.4
Kód chyby: 0x80004004
Popis chyby :Operace přerušena

Date: 2018-03-08 16:17:58.420
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 1.263.328.0
Předchozí verze podpisu: 1.263.325.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.14600.4
Předchozí verze modulu: 1.1.14600.4
Kód chyby: 0x80004004
Popis chyby :Operace přerušena

Date: 2018-03-01 11:51:06.657
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.263.14.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14600.4
Kód chyby: 0x80240016
Popis chyby ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2018-01-31 14:08:17.298
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.261.558.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14500.5
Kód chyby: 0x800704e8
Popis chyby :Vzdálený systém není k dispozici. Informace týkající se řešení potíží se sítěmi naleznete v Nápovědě systému Windows.

CodeIntegrity:
===================================

Date: 2018-03-15 22:10:25.557
Description:
N/A

Date: 2018-03-15 22:10:25.555
Description:
N/A

Date: 2018-03-15 22:06:45.658
Description:
N/A

Date: 2018-03-15 22:06:45.656
Description:
N/A

Date: 2018-03-15 21:54:44.186
Description:
N/A

Date: 2018-03-15 21:54:44.184
Description:
N/A

Date: 2018-03-15 21:48:13.585
Description:
N/A

Date: 2018-03-15 21:48:13.579
Description:
N/A

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz
Percentage of memory in use: 68%
Total physical RAM: 3068.49 MB
Available physical RAM: 960.72 MB
Total Virtual: 5372.49 MB
Available Virtual: 2662.45 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.08 GB) (Free:45.87 GB) NTFS

\\?\Volume{8b28f46f-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.17 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 8B28F46F)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

V AdwCleaneri je potrebne po Scan kliknut aj na Clean (Cistenie).

Odinstaluj vsetky programy od IObit (Driver Booster, Advanced SystemCare, atd.) - su to smejdy, ktore mozu poskodit system.

Velikost slozky "C:\Users\Admin\Desktop" je 26066 MB.

• Presun vsetky subory a zlozky z plochy do dokumentov a na ploche nechaj iba odkazy/zastupcov. Prilis velka velkost plochy moze sposobit spomalenie systemu.

Nasledne vytvor a posil nove logy z FRST.

# AdwCleaner 7.0.8.0 - Logfile created on Thu Mar 15 21:51:26 2018
# Updated on 2018/08/02 by Malwarebytes
# Running on Windows 10 Home (X86)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

Deleted: C:\Users\Admin\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\Admin\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\Admin\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\Admin\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\ProgramData\IObit\ASCDownloader
Deleted: C:\Users\All Users\IObit\ASCDownloader
Deleted: C:\Users\Admin\AppData\Local\slimware utilities inc
Deleted: C:\Users\Admin\AppData\Local\SlimWare Utilities Inc


***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted: SlimCleaner Plus (Scheduled Scan - Admin)


***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\IOBIT\ASC
Deleted: [Key] - HKLM\SOFTWARE\IObit\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\IObit\RealTimeProtector
Deleted: [Key] - HKLM\SOFTWARE\IObit\ASC
Deleted: [Key] - HKLM\SOFTWARE\SlimWare Utilities Inc
Deleted: [Key] - HKU\S-1-5-21-4274060390-290019901-698256631-1001\Software\SlimWare Utilities Inc
Deleted: [Key] - HKCU\Software\SlimWare Utilities Inc
Deleted: [Key] - HKU\S-1-5-21-4274060390-290019901-698256631-1001\Software\csastats
Deleted: [Key] - HKCU\Software\csastats
Deleted: [Key] - HKU\S-1-5-21-4274060390-290019901-698256631-1001\Software\PRODUCTSETUP
Deleted: [Key] - HKCU\Software\PRODUCTSETUP


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [2645 B] - [2018/3/15 16:46:27]
C:/AdwCleaner/AdwCleaner[S0].txt - [3017 B] - [2018/3/15 16:38:6]
C:/AdwCleaner/AdwCleaner[S1].txt - [2654 B] - [2018/3/15 20:53:35]
C:/AdwCleaner/AdwCleaner[S2].txt - [2675 B] - [2018/3/15 21:50:57]


########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########

OK, pokracuj teda dalsimi krokmi a potom posli nove logy z FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14.03.2018
Ran by Admin (administrator) on DESKTOP-9BBP2FF (15-03-2018 23:02:52)
Running from C:\Users\Admin\Desktop
Loaded Profiles: Admin (Available Profiles: Admin & 2)
Platform: Microsoft Windows 10 Home Version 1709 16299.248 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\portcommunicationservice\DeviceControlLog.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\portcommunicationservice\PCSVC.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
() C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
(© pdfforge GmbH.) C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 5\creator-ws.exe
(Seagate) C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18022-0\MsMpEng.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Update\DropboxUpdate.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Lenovo Group Limited) C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\Admin\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [488344 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [P17RunE] => RunDll32 P17RunE.dll,RunDLLEntry
HKLM\...\Run: [EpsonAPD4SV] => C:\Program Files\EPSON\EPSON Advanced Printer Driver 4\Tools\EAPSV\EAPSV.EXE [212608 2013-11-14] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [NetLockMngr] => C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe [1253088 2008-10-21] ()
HKLM\...\Run: [Lightshot] => C:\Program Files\Skillbrains\lightshot\Lightshot.exe [225944 2016-07-11] ()
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [HDD Regenerator] => C:\Program Files\HDD Regenerator\Shell.exe [90336 2013-05-08] ()
HKLM\...\Run: [DiscWizardMonitor.exe] => C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe [5589976 2016-09-09] (Seagate)
HKLM\...\Run: [AcronisTibMounterMonitor] => C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [691056 2015-07-19] (Acronis International GmbH)
HKLM\...\Run: [Seagate Scheduler2 Service] => C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe [400360 2016-09-09] (Seagate)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [3567936 2018-02-26] (Dropbox, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [261944 2018-01-22] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [16553448 2018-02-22] (Realtek Semiconductor)
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7684824 2017-09-07] (Piriform Ltd)
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1422248 2018-02-08] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\Run: [TomTomHOME.exe] => "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" -s
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1422248 2018-02-08] (Garmin Ltd. or its subsidiaries)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Select a coupon.lnk [2017-03-07]
ShortcutTarget: Select a coupon.lnk -> C:\Program Files\EPSON\TMCommandEmulator\PopupWindow.exe (Seiko Epson Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 8.8.4.4 10.200.200.1 192.168.1.1
Tcpip\..\Interfaces\{1bf3fde3-98e6-4a97-93ec-a0587c323ae9}: [DhcpNameServer] 8.8.4.4 10.200.200.1 192.168.1.1
Tcpip\..\Interfaces\{26073b2a-82fc-4c86-80b2-1d314f9a3695}: [DhcpNameServer] 8.8.4.4 10.200.200.1 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-4274060390-290019901-698256631-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
BHO: PDF Architect 4 Helper -> {38279E1A-7019-40C1-B579-E99DFB3312E8} -> C:\Program Files\PDF Architect 4\creator-ie-helper.dll [2016-08-05] (pdfforge GmbH)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-12-06] (Oracle Corporation)
BHO: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files\PDF Architect 5\creator-ie-helper.dll [2017-07-05] (pdfforge GmbH)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-12-06] (Oracle Corporation)
Toolbar: HKLM - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files\PDF Architect 4\creator-ie-plugin.dll [2016-08-05] (pdfforge GmbH)
Toolbar: HKLM - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files\PDF Architect 5\creator-ie-plugin.dll [2017-07-05] (pdfforge GmbH)
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://files.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: fn066ax7.default
FF ProfilePath: C:\Users\Admin\AppData\Roaming\TomTom\HOME\Profiles\lsofn4z9.default [2018-02-27]
FF Extension: (No Name) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fn066ax7.default [2018-03-15]
FF Homepage: Mozilla\Firefox\Profiles\fn066ax7.default -> hxxps://www.seznam.cz/
FF Extension: (UniverseView Extension) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fn066ax7.default\Extensions\firefox@universeview.ext.xpi [2018-01-30]
FF Extension: (Skynet) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fn066ax7.default\Extensions\jid1-j57LkwpAWjGJXw@jetpack.xpi [2017-06-08] [Legacy]
FF Extension: (AntiGameOrigin v6) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fn066ax7.default\Extensions\shole@ogame.us.xpi [2017-12-20]
FF Extension: (Galaxytoolbar) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fn066ax7.default\Extensions\{71bfcce7-421d-4042-95d4-a585a821cbca}.xpi [2017-06-08] [Legacy]
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2017-01-30] [Legacy] [not signed]
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-12-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-12-06] (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.)
FF Plugin: PDF Architect 4 -> C:\Program Files\PDF Architect 4\np-previewer.dll [2016-08-05] (pdfforge GmbH)
FF Plugin: PDF Architect 5 -> C:\Program Files\PDF Architect 5\np-previewer.dll [2017-07-05] (pdfforge GmbH)

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR DefaultSearchURL: Default -> hxxps://www.bazos.cz/favicon.ico
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2018-03-15]
CHR Extension: (OGame Resources Extension) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dinnmkijapcbjfflfncafmfhajnggenb [2017-01-27]
CHR Extension: (Kolekce HARDDISKŮ Pro NOTEBOOK - Most...) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\diooefmhnhhbgihnangmolikjmejnidm [2017-12-27]
CHR Extension: (Adobe Acrobat) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-06]
CHR Extension: (Ogame Universe Selector) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehiplgmmoacclieapngapldejejpebbl [2017-01-27]
CHR Extension: (notebook: (napájení ze sítě. Nenabíjí...) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eicncpbbgkfhgdjkbgnckoohobebmeho [2017-11-23]
CHR Extension: (NEW - Lenovo IdeaPad 110-15ACL Mother...) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\elcdapgmbonjmblagdblhhiilfbgboei [2017-12-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-01]
CHR Extension: (Baterie ASUS K50AB K50C K50IJ K51AC K...) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hciadgnhibmggheijglinbnlndnecgfl [2017-10-24]
CHR Extension: (FormApps Extension) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-06-15]
CHR Extension: (UniverseView Extension) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmfkhoihjbbohnfecpmhekhippaplnh [2017-09-28]
CHR Extension: (OGame Galaxy Level) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jicjihmmljbdapdapjdenoekonahpjka [2017-01-27]
CHR Extension: (Save to Facebook) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2017-03-29]
CHR Extension: (OGame Nearby Players) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\knaaglboaiokbmjlkgnngoaadfplkdgm [2018-02-14]
CHR Extension: (AntiGameOrigin) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldbahlcmhmlpomdepooifmhnalokdhgm [2017-01-27]
CHR Extension: (OGame Timer Hot Fixed) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nalkfbbnhkdhgjmadbkdaaebkijjdcik [2017-01-27]
CHR Extension: (OGame UI++) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhbgpipnadhelnecpcjcikbnedilhddf [2018-02-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Ogame Attack Notifier) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfklenkjpjchjbddeddiponngbcglaho [2017-01-27]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-28]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2017-02-17] (Creative Labs) [File not signed]
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-06] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-06] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [43344 2018-02-26] (Dropbox, Inc.)
R2 EPSON_Device_Control_Log_Service; C:\Program Files\epson\portcommunicationservice\DeviceControlLog.exe [334848 2014-08-22] (SEIKO EPSON CORPORATION) [File not signed]
R2 EPSON_Port_Communication_Service; C:\Program Files\epson\portcommunicationservice\PCSVC.exe [409600 2014-08-22] (SEIKO EPSON CORPORATION) [File not signed]
R2 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [1162768 2018-02-08] (Garmin Ltd. or its subsidiaries)
S3 iumsvc; C:\Program Files\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2236640 2016-08-05] (pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [970976 2016-08-05] (pdfforge GmbH)
R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [772832 2016-08-05] (pdfforge GmbH)
S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2470576 2017-07-05] (pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; C:\Program Files\PDF Architect 5\crash-handler-ws.exe [982200 2017-07-05] (pdfforge GmbH)
R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator-ws.exe [780984 2017-07-05] (pdfforge GmbH)
R2 PDF Architect 5 Manager; C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (© pdfforge GmbH.)
R2 SgtSch2Svc; C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe [846864 2016-09-09] (Seagate)
R2 SWLckServer; C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe [577248 2008-10-21] () [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\NisSrv.exe [279240 2018-03-02] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MsMpEng.exe [87040 2018-03-02] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 EfiInvoker; C:\Windows\System32\Drivers\invoker.sys [5632 2008-08-11] (Windows (R) Server 2003 DDK provider) [File not signed]
R2 EPSON_PCS_Parallel_Port_Driver; C:\WINDOWS\system32\DRIVERS\pcslpt.sys [19592 2014-08-22] (SEIKO EPSON CORPORATION)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [214304 2017-10-03] (Acronis International GmbH)
S3 FlexBios; C:\Windows\System32\Drivers\FlexBios.sys [33148 2008-08-11] (Your Corporation) [File not signed]
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2017-02-15] (REALiX(tm))
R2 IntelHaxm; C:\WINDOWS\system32\DRIVERS\IntelHaxm.sys [86136 2016-12-07] (Intel Corporation)
S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [44032 2016-05-20] ()
S3 P17; C:\WINDOWS\system32\drivers\P17.sys [1147392 2009-04-21] (Creative Technology Ltd.)
S3 PortTalk; C:\WINDOWS\System32\Drivers\PortTalk.sys [3567 2002-01-12] (Beyond Logic hxxp://www.beyondlogic.org) [File not signed]
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [17160 2015-03-05] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [13064 2016-11-24] ()
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [848832 2018-02-21] (Realtek )
R2 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [685160 2017-10-03] (Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [184136 2017-10-03] (Acronis International GmbH)
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [83120 2016-08-19] ()
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [21168 2016-08-19] ()
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [383664 2016-08-19] ()
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15360 2018-02-10] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [38912 2018-03-02] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [237608 2018-03-02] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [93736 2018-03-02] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [186880 2017-09-29] (Microsoft Corporation)
S4 IUFileFilter; \??\C:\Program Files\IObit\IObit Uninstaller\drivers\win10_x86\IUFileFilter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-15 23:02 - 2018-03-15 23:03 - 000020178 _____ C:\Users\Admin\Desktop\FRST.txt
2018-03-15 23:02 - 2018-03-15 22:11 - 000112640 _____ (forum.viry.cz) C:\Users\Admin\Desktop\FRSTLauncher.exe
2018-03-15 23:02 - 2018-03-15 22:07 - 001764352 _____ (Farbar) C:\Users\Admin\Desktop\FRST.exe
2018-03-15 23:01 - 2018-03-15 23:02 - 000112640 _____ (forum.viry.cz) C:\Users\Admin\Downloads\FRSTLauncher(1).exe
2018-03-15 22:42 - 2018-03-15 22:42 - 000001075 _____ C:\Users\Admin\Desktop\z plochy – zástupce.lnk
2018-03-15 22:36 - 2018-03-15 22:41 - 000000000 ____D C:\Users\Admin\z plochy
2018-03-15 22:13 - 2018-03-15 23:02 - 000000000 ____D C:\FRST
2018-03-15 22:11 - 2018-03-15 22:11 - 000112640 _____ (forum.viry.cz) C:\Users\Admin\Downloads\FRSTLauncher.exe
2018-03-15 22:08 - 2018-03-15 22:08 - 000112640 _____ (forum.viry.cz) C:\Users\Admin\Downloads\Nepotvrzeno 503617.crdownload
2018-03-15 22:07 - 2018-03-15 22:07 - 001764352 _____ (Farbar) C:\Users\Admin\Downloads\FRST.exe
2018-03-15 21:50 - 2018-03-15 21:51 - 008222496 _____ (Malwarebytes) C:\Users\Admin\Downloads\adwcleaner_7.0.8.0.exe
2018-03-15 17:36 - 2018-03-15 22:50 - 000000000 ____D C:\AdwCleaner
2018-03-09 22:30 - 2018-03-09 22:32 - 219176474 _____ C:\Users\Admin\Downloads\windows10.0-kb4074588-x86_delta_98660723c331de0418c2f815fccefebd47f74302.msu
2018-03-09 22:24 - 2018-03-09 22:28 - 394785427 _____ C:\Users\Admin\Downloads\windows10.0-kb4074588-x86_5fa12d42df88ac4d63f56a071c3c7a553a892a5f.msu
2018-03-09 11:49 - 2018-03-09 11:49 - 007196268 _____ C:\Users\Admin\Downloads\Navod_Huawei_LTE_TDD_B2338.pdf
2018-03-08 23:31 - 2018-03-08 23:31 - 000000000 ____D C:\WINDOWS\Panther
2018-03-08 19:13 - 2018-03-08 19:13 - 006967928 _____ (ESET spol. s r.o.) C:\Users\Admin\Downloads\esetonlinescanner_csy.exe
2018-03-08 19:13 - 2018-03-08 19:13 - 000000000 ____D C:\Users\Admin\AppData\Local\ESET
2018-03-08 18:58 - 2018-03-08 18:58 - 000195346 _____ C:\Users\Admin\Downloads\wu170509.diagcab
2018-03-08 18:31 - 2018-03-08 18:32 - 000002420 _____ C:\Users\2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-03-08 18:31 - 2018-03-08 18:32 - 000000000 ___RD C:\Users\2\OneDrive
2018-03-08 18:30 - 2018-03-08 18:30 - 000000000 ____D C:\Users\2\AppData\Roaming\IObit
2018-03-08 18:30 - 2018-03-08 18:30 - 000000000 ____D C:\Users\2\AppData\Local\Comms
2018-03-08 18:29 - 2018-03-08 18:30 - 000000000 ____D C:\Users\2\AppData\Local\Dropbox
2018-03-08 18:29 - 2018-03-08 18:29 - 000000000 ____D C:\Users\2\AppData\Local\Publishers
2018-03-08 18:28 - 2018-03-15 20:48 - 000000000 ____D C:\Users\2
2018-03-08 18:28 - 2018-03-08 18:31 - 000000000 ____D C:\Users\2\AppData\Local\Packages
2018-03-08 18:28 - 2018-03-08 18:29 - 000000000 ____D C:\Users\2\AppData\Local\VirtualStore
2018-03-08 18:28 - 2018-03-08 18:28 - 000000020 ___SH C:\Users\2\ntuser.ini
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Šablony
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Soubory cookie
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Poslední
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Okolní tiskárny
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Okolní síť
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Nabídka Start
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Dokumenty
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Documents\Obrázky
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Documents\Hudba
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Documents\Filmy
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\Data aplikací
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 _SHDL C:\Users\2\AppData\Local\Data aplikací
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 ___RD C:\Users\2\3D Objects
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 ____D C:\Users\2\AppData\Roaming\Adobe
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 ____D C:\Users\2\AppData\Local\Google
2018-03-08 18:28 - 2018-03-08 18:28 - 000000000 ____D C:\Users\2\AppData\Local\ConnectedDevicesPlatform
2018-03-08 18:28 - 2017-06-12 12:43 - 000000000 ____D C:\Users\2\AppData\Local\Microsoft Help
2018-03-08 18:13 - 2018-03-08 18:13 - 000000072 ___SH C:\bootTel.dat
2018-03-08 17:35 - 2018-03-08 17:47 - 000000000 _____ C:\Recovery.txt
2018-03-08 16:16 - 2018-03-10 10:17 - 000001270 _____ C:\Users\Admin\Desktop\cmd.lnk
2018-03-07 15:20 - 2018-03-07 15:20 - 000000000 ____D C:\WINDOWS\$regcmp$
2018-03-07 12:28 - 2018-03-07 12:28 - 000329325 _____ C:\Users\Admin\Downloads\CBP-3141SAS_BACKPLANES-DATASHEET-EN.pdf
2018-03-06 11:24 - 2018-03-06 11:24 - 003377328 _____ C:\Users\Admin\Downloads\MrpUniZaklad.exe
2018-03-05 19:55 - 2018-03-05 19:55 - 000955620 _____ C:\Users\Admin\Downloads\winema.pdf
2018-03-05 19:35 - 2018-03-05 19:35 - 000662295 _____ C:\Users\Admin\Downloads\jedskl.pdf
2018-03-05 19:27 - 2018-03-05 19:27 - 001941731 _____ C:\Users\Admin\Downloads\mrpks-ucto.pdf
2018-03-01 11:40 - 2018-03-15 20:48 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-02-28 22:06 - 2018-02-28 22:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-02-28 16:37 - 2018-02-28 16:37 - 000001207 _____ C:\Users\Public\Desktop\Hasleo WinToUSB.lnk
2018-02-28 16:37 - 2018-02-28 16:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hasleo WinToUSB
2018-02-28 16:37 - 2018-02-28 16:37 - 000000000 ____D C:\Program Files\Hasleo
2018-02-28 16:36 - 2018-02-28 16:36 - 005622415 _____ (Hasleo Software. ) C:\Users\Admin\Downloads\WinToUSB_Free.exe
2018-02-28 10:57 - 2018-02-28 10:57 - 000063783 _____ C:\Users\Admin\Downloads\(1978) Návod M 3900.pdf
2018-02-27 12:15 - 2018-02-27 12:21 - 068659424 _____ (TomTom International B.V.) C:\Users\Admin\Downloads\InstallTomTomMyDriveConnect_4_2_0_3437.exe
2018-02-27 12:14 - 2018-02-27 12:14 - 006694752 _____ (TomTom International B.V.) C:\Users\Admin\Downloads\InstallMyTomTomSA.exe
2018-02-27 12:14 - 2018-02-27 12:14 - 000000000 ____D C:\Program Files\TomTom International B.V
2018-02-27 12:10 - 2018-02-27 12:10 - 000510041 _____ C:\Users\Admin\Downloads\Navod jak nahrát POI do TT Vaia_Go100x.pdf
2018-02-26 14:27 - 2018-02-26 14:27 - 000000000 ____D C:\Users\Admin\Documents\TomTom
2018-02-26 14:27 - 2018-02-26 14:27 - 000000000 ____D C:\Users\Admin\AppData\Roaming\TomTom
2018-02-26 12:24 - 2018-02-26 12:24 - 000043344 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2018-02-26 12:24 - 2018-02-26 12:24 - 000035432 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2018-02-26 12:24 - 2018-02-26 12:24 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2018-02-26 12:24 - 2018-02-26 12:24 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2018-02-26 10:35 - 2018-02-26 14:27 - 000000000 ____D C:\Users\Admin\AppData\Local\TomTom
2018-02-23 16:38 - 2018-02-23 16:38 - 000000000 ____D C:\WINDOWS\pss
2018-02-22 18:14 - 2018-02-22 18:14 - 072520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes.dat
2018-02-22 18:14 - 2018-02-22 18:14 - 013381194 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2018-02-22 18:14 - 2018-02-22 18:14 - 007170864 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 007053688 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 004244224 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 003610088 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSndMgr.cpl
2018-02-22 18:14 - 2018-02-22 18:14 - 003173744 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 003135240 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 002906624 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkPgExt.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 002869224 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoInstII.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 002800328 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 002563488 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApoApi.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001824920 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001531672 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001529296 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX32APO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001512312 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001451616 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX32Proxy.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001400800 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001313120 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001279312 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001256184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001250336 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001239800 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001074048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001051152 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 001036640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000936616 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000911088 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000877432 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000860520 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo2.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000794800 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000742608 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000737968 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000688232 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000669584 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000645816 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000615872 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000562416 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000523096 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\Caf32APO2.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000481816 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000471288 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000402064 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000401048 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000390936 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000387624 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000371808 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000367352 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000364016 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000363416 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000357152 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSXT.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000341152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000327944 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000322064 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000316432 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000307232 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000307232 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000285624 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000232752 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000232416 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA32.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000229584 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000229584 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000229032 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000225040 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000221904 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000214664 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000214664 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000200736 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000197440 _____ C:\WINDOWS\system32\AcpiServiceVnA.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000196008 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSHD.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000183608 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP360.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000181224 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000150552 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000144680 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000130296 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000116648 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000101616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000101328 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000099584 _____ (Conexant System, Inc.) C:\WINDOWS\system32\Caf32api.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000096600 _____ C:\WINDOWS\system32\audioLibVc.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000088272 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000083640 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000078480 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000074376 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000071704 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG32A.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000067752 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\TepeqAPO.dll
2018-02-22 18:14 - 2018-02-22 18:14 - 000003780 _____ C:\WINDOWS\system32\cxapo.prop
2018-02-22 17:22 - 2018-02-22 18:15 - 000000000 ____D C:\WINDOWS\system32\RTCOM
2018-02-22 17:21 - 2018-02-22 18:14 - 004559848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHDA.sys
2018-02-22 17:21 - 2018-02-22 18:14 - 000022160 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR.dll
2018-02-22 17:21 - 2017-06-29 18:52 - 000456184 _____ (Intel Corporation) C:\WINDOWS\system32\tbb_waves.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 020886432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRenderAVX.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 020794464 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRender.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 019139544 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioCapture.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 012016256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 011924336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO40.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 005675096 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV3apo.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 005324736 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 004982552 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 001832056 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 001791792 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesLib.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 000965672 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 000868448 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 000836144 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2018-02-22 17:21 - 2017-06-29 18:50 - 000522696 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 013798176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 003661720 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 001948800 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 001502640 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO70.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 001201808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO60.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 001029832 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO50.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000992608 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO40.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000954192 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000799008 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000522696 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000439592 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX32.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000415864 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX32.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000369784 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000357976 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC32.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000243856 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2018-02-22 17:21 - 2017-06-29 18:49 - 000142320 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO.dll
2018-02-22 17:21 - 2017-06-29 18:48 - 000532888 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTACap.dll
2018-02-22 17:21 - 2017-06-29 18:48 - 000105648 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTARen.dll
2018-02-22 17:21 - 2017-06-29 03:05 - 005804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2018-02-22 17:21 - 2017-06-29 03:05 - 000005604 _____ C:\WINDOWS\system32\cxapo.lncs
2018-02-21 10:04 - 2018-02-21 10:04 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2018-02-21 10:04 - 2018-02-21 10:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-02-21 10:04 - 2018-02-21 10:04 - 000000000 ____D C:\Program Files\iTunes
2018-02-21 10:04 - 2018-02-21 10:04 - 000000000 ____D C:\Program Files\iPod
2018-02-21 10:01 - 2018-02-21 10:01 - 000000000 ____D C:\Program Files\Apple Software Update
2018-02-14 14:12 - 2018-02-10 06:20 - 000915320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-02-14 14:12 - 2018-02-10 06:20 - 000799592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-02-14 14:12 - 2018-02-10 06:16 - 006412184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-02-14 14:12 - 2018-02-10 06:16 - 001627600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-02-14 14:12 - 2018-02-10 06:16 - 000358808 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2018-02-14 14:12 - 2018-02-10 06:16 - 000358808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-02-14 14:12 - 2018-02-10 06:13 - 000271768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-02-14 14:12 - 2018-02-10 06:12 - 000965016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-02-14 14:12 - 2018-02-10 06:12 - 000142744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-02-14 14:12 - 2018-02-10 06:09 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-02-14 14:12 - 2018-02-10 06:09 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-02-14 14:12 - 2018-02-10 06:09 - 002338776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-02-14 14:12 - 2018-02-10 06:09 - 002117528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-02-14 14:12 - 2018-02-10 06:08 - 002193168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-02-14 14:12 - 2018-02-10 06:08 - 000534936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-02-14 14:12 - 2018-02-10 06:07 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-02-14 14:12 - 2018-02-10 06:07 - 000575392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-02-14 14:12 - 2018-02-10 06:07 - 000434072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-02-14 14:12 - 2018-02-10 06:07 - 000279456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-02-14 14:12 - 2018-02-10 06:06 - 006481640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-02-14 14:12 - 2018-02-10 06:06 - 006014688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-02-14 14:12 - 2018-02-10 06:06 - 004670728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-02-14 14:12 - 2018-02-10 06:06 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 004937224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-02-14 14:12 - 2018-02-10 06:05 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 001149272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 000662208 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 000456232 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-02-14 14:12 - 2018-02-10 06:05 - 000322968 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-02-14 14:12 - 2018-02-10 06:05 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-02-14 14:12 - 2018-02-10 06:03 - 002172312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-02-14 14:12 - 2018-02-10 06:03 - 000758168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-02-14 14:12 - 2018-02-10 06:03 - 000506264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-02-14 14:12 - 2018-02-10 05:47 - 013704192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-02-14 14:12 - 2018-02-10 05:46 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-02-14 14:12 - 2018-02-10 05:46 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-02-14 14:12 - 2018-02-10 05:46 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-02-14 14:12 - 2018-02-10 05:46 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-02-14 14:12 - 2018-02-10 05:44 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 018923008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 006466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-02-14 14:12 - 2018-02-10 05:43 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-02-14 14:12 - 2018-02-10 05:43 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismp6.sys
2018-02-14 14:12 - 2018-02-10 05:42 - 001130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-02-14 14:12 - 2018-02-10 05:42 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-02-14 14:12 - 2018-02-10 05:42 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-02-14 14:12 - 2018-02-10 05:42 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-02-14 14:12 - 2018-02-10 05:42 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-02-14 14:12 - 2018-02-10 05:42 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2018-02-14 14:12 - 2018-02-10 05:41 - 019352576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-02-14 14:12 - 2018-02-10 05:41 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-02-14 14:12 - 2018-02-10 05:41 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-02-14 14:12 - 2018-02-10 05:41 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-02-14 14:12 - 2018-02-10 05:41 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-02-14 14:12 - 2018-02-10 05:41 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-02-14 14:12 - 2018-02-10 05:41 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-02-14 14:12 - 2018-02-10 05:40 - 001171456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-02-14 14:12 - 2018-02-10 05:40 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-02-14 14:12 - 2018-02-10 05:40 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-02-14 14:12 - 2018-02-10 05:40 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-02-14 14:12 - 2018-02-10 05:40 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-02-14 14:12 - 2018-02-10 05:39 - 011925504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-02-14 14:12 - 2018-02-10 05:39 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2018-02-14 14:12 - 2018-02-10 05:38 - 006567936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-02-14 14:12 - 2018-02-10 05:38 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 003678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 002650624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 001771520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-02-14 14:12 - 2018-02-10 05:37 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 006031360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 002464768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 002341888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 001623552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-02-14 14:12 - 2018-02-10 05:36 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 000900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-02-14 14:12 - 2018-02-10 05:36 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 004384768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-02-14 14:12 - 2018-02-10 05:35 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2018-02-14 14:12 - 2018-02-10 05:35 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-02-14 14:12 - 2018-02-10 05:34 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-02-14 14:12 - 2018-02-10 05:34 - 001288704 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-02-14 14:12 - 2018-02-10 05:34 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-02-14 14:12 - 2018-02-10 05:33 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-02-14 14:12 - 2018-02-10 05:33 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-02-14 14:12 - 2018-02-10 05:33 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-02-14 14:12 - 2018-02-10 05:30 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2018-02-14 14:11 - 2018-02-10 06:22 - 000239000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-02-14 14:11 - 2018-02-10 06:20 - 001322904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-02-14 14:11 - 2018-02-10 06:19 - 000603544 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-02-14 14:11 - 2018-02-10 06:19 - 000119192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-02-14 14:11 - 2018-02-10 06:19 - 000062360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-02-14 14:11 - 2018-02-10 06:19 - 000030616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-02-14 14:11 - 2018-02-10 06:18 - 001902496 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-02-14 14:11 - 2018-02-10 06:18 - 001384288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-02-14 14:11 - 2018-02-10 06:18 - 000517016 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-02-14 14:11 - 2018-02-10 06:18 - 000221592 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 002255112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000542856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000542104 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000348056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000320416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-02-14 14:11 - 2018-02-10 06:17 - 000211864 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-02-14 14:11 - 2018-02-10 06:16 - 001116728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-02-14 14:11 - 2018-02-10 06:16 - 000975216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-02-14 14:11 - 2018-02-10 06:15 - 001145624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-02-14 14:11 - 2018-02-10 06:13 - 000376216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2018-02-14 14:11 - 2018-02-10 06:12 - 004382032 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2018-02-14 14:11 - 2018-02-10 06:11 - 001250528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2018-02-14 14:11 - 2018-02-10 06:11 - 000612736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-02-14 14:11 - 2018-02-10 06:11 - 000416152 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-02-14 14:11 - 2018-02-10 06:10 - 000445336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2018-02-14 14:11 - 2018-02-10 06:10 - 000422592 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-02-14 14:11 - 2018-02-10 06:09 - 001123456 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-02-14 14:11 - 2018-02-10 06:09 - 000806808 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2018-02-14 14:11 - 2018-02-10 06:09 - 000608152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-02-14 14:11 - 2018-02-10 06:09 - 000559976 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2018-02-14 14:11 - 2018-02-10 06:09 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2018-02-14 14:11 - 2018-02-10 06:09 - 000339360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-02-14 14:11 - 2018-02-10 06:09 - 000320312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2018-02-14 14:11 - 2018-02-10 06:09 - 000203672 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-02-14 14:11 - 2018-02-10 06:08 - 003980720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2018-02-14 14:11 - 2018-02-10 06:08 - 001852312 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-02-14 14:11 - 2018-02-10 06:08 - 000718488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2018-02-14 14:11 - 2018-02-10 06:08 - 000592792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000543920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000538768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-02-14 14:11 - 2018-02-10 06:07 - 000527864 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000414824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-02-14 14:11 - 2018-02-10 06:07 - 000284112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000170904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000123808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000089504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000083216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000076184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2018-02-14 14:11 - 2018-02-10 06:07 - 000061024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000040856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-02-14 14:11 - 2018-02-10 06:07 - 000040840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2018-02-14 14:11 - 2018-02-10 06:06 - 000078232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 001360992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 001006192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2018-02-14 14:11 - 2018-02-10 06:05 - 000718488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000718232 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000654456 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000295488 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
2018-02-14 14:11 - 2018-02-10 06:05 - 000225176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000193248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000079256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2018-02-14 14:11 - 2018-02-10 06:05 - 000077552 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2018-02-14 14:11 - 2018-02-10 06:03 - 000505160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2018-02-14 14:11 - 2018-02-10 05:47 - 000942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-02-14 14:11 - 2018-02-10 05:46 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-02-14 14:11 - 2018-02-10 05:46 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-02-14 14:11 - 2018-02-10 05:46 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-02-14 14:11 - 2018-02-10 05:45 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-02-14 14:11 - 2018-02-10 05:45 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2018-02-14 14:11 - 2018-02-10 05:44 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-02-14 14:11 - 2018-02-10 05:44 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-02-14 14:11 - 2018-02-10 05:44 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-02-14 14:11 - 2018-02-10 05:44 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2018-02-14 14:11 - 2018-02-10 05:44 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2018-02-14 14:11 - 2018-02-10 05:44 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2018-02-14 14:11 - 2018-02-10 05:44 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb80236.sys
2018-02-14 14:11 - 2018-02-10 05:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-02-14 14:11 - 2018-02-10 05:43 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2018-02-14 14:11 - 2018-02-10 05:42 - 000731136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2018-02-14 14:11 - 2018-02-10 05:42 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-02-14 14:11 - 2018-02-10 05:42 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-02-14 14:11 - 2018-02-10 05:42 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2018-02-14 14:11 - 2018-02-10 05:42 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2018-02-14 14:11 - 2018-02-10 05:41 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2018-02-14 14:11 - 2018-02-10 05:40 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2018-02-14 14:11 - 2018-02-10 05:40 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 002677760 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2018-02-14 14:11 - 2018-02-10 05:39 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvr32.exe
2018-02-14 14:11 - 2018-02-10 05:38 - 002184192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 000830976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2018-02-14 14:11 - 2018-02-10 05:38 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-02-14 14:11 - 2018-02-10 05:38 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-02-14 14:11 - 2018-02-10 05:37 - 003419136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-02-14 14:11 - 2018-02-10 05:37 - 003287040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2018-02-14 14:11 - 2018-02-10 05:37 - 003227648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-02-14 14:11 - 2018-02-10 05:37 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2018-02-14 14:11 - 2018-02-10 05:37 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-02-14 14:11 - 2018-02-10 05:36 - 001342464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000973312 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2018-02-14 14:11 - 2018-02-10 05:36 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 002413568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 001630208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-02-14 14:11 - 2018-02-10 05:35 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-02-14 14:11 - 2018-02-10 05:35 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2018-02-14 14:11 - 2018-02-10 05:34 - 006532096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2018-02-14 14:11 - 2018-02-10 05:34 - 001762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-02-14 14:11 - 2018-02-10 05:34 - 001352192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2018-02-14 14:11 - 2018-02-10 05:34 - 000603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2018-02-14 14:11 - 2018-02-10 05:34 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2018-02-14 14:11 - 2018-02-10 05:34 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2018-02-14 14:11 - 2018-02-10 05:33 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-02-14 14:11 - 2018-02-10 05:33 - 000620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-14 14:11 - 2018-02-10 05:33 - 000604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-02-14 14:11 - 2018-02-10 05:32 - 002427904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2018-02-14 14:11 - 2018-02-10 05:32 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2018-02-14 14:11 - 2018-02-10 05:32 - 000576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-02-14 14:11 - 2018-02-10 05:32 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2018-02-14 14:11 - 2018-02-10 05:32 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.ProxyStub.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 001488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2018-02-14 14:11 - 2018-02-10 05:31 - 001286144 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2018-02-14 14:11 - 2018-02-10 05:31 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 001104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2018-02-14 14:11 - 2018-02-10 05:31 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2018-02-14 14:11 - 2018-02-10 05:31 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2018-02-14 14:11 - 2018-02-10 04:03 - 000804240 _____ C:\WINDOWS\system32\locale.nls
2018-02-14 14:11 - 2018-02-02 04:36 - 003903944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2018-02-14 14:11 - 2018-02-02 04:36 - 000921032 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2018-02-14 14:11 - 2018-02-02 04:36 - 000854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2018-02-14 14:11 - 2018-02-02 04:36 - 000649672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2018-02-14 14:11 - 2018-02-02 04:36 - 000054720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2018-02-14 10:15 - 2018-02-14 10:15 - 000001933 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2018-02-14 10:15 - 2018-02-14 10:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-15 23:01 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-03-15 23:00 - 2017-09-29 12:55 - 000000000 ___HD C:\Program Files\WindowsApps
2018-03-15 23:00 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-03-15 22:57 - 2017-10-26 02:25 - 002816764 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-03-15 22:57 - 2017-09-30 13:07 - 001280794 _____ C:\WINDOWS\system32\perfh005.dat
2018-03-15 22:57 - 2017-09-30 13:07 - 000312952 _____ C:\WINDOWS\system32\perfc005.dat
2018-03-15 22:56 - 2017-01-27 10:21 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2018-03-15 22:51 - 2017-10-26 02:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-03-15 22:51 - 2017-09-29 06:31 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-03-15 22:51 - 2017-02-15 15:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\IObit
2018-03-15 22:51 - 2017-02-15 15:57 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\IObit
2018-03-15 22:51 - 2017-02-15 15:57 - 000000000 ____D C:\ProgramData\IObit
2018-03-15 22:42 - 2017-10-26 02:16 - 000000000 ____D C:\Users\Admin
2018-03-15 22:42 - 2017-03-28 10:42 - 000351744 ___SH C:\Users\Admin\Desktop\Thumbs.db
2018-03-15 22:35 - 2017-02-15 15:57 - 000000000 ____D C:\ProgramData\ProductData
2018-03-15 21:39 - 2017-10-26 02:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-03-15 21:17 - 2017-09-29 12:45 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-03-15 21:17 - 2017-01-27 18:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-03-15 21:14 - 2017-10-11 09:17 - 127391104 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-03-15 21:14 - 2017-01-27 18:25 - 127391104 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ___RD C:\Program Files\Windows Defender
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\TextInput
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\setup
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\rescache
2018-03-15 20:48 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-03-15 20:48 - 2017-09-29 12:52 - 000000000 ____D C:\WINDOWS\INF
2018-03-15 20:48 - 2017-09-29 06:31 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-03-15 20:48 - 2017-09-29 06:31 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-03-15 20:48 - 2017-03-18 19:23 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-03-15 20:48 - 2017-02-06 14:16 - 000000000 ____D C:\Program Files\TeamViewer
2018-03-15 20:46 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\registration
2018-03-15 20:46 - 2017-02-15 15:57 - 000000000 ____D C:\Program Files\IObit
2018-03-15 17:46 - 2017-02-15 16:00 - 000000000 ____D C:\Program Files\Common Files\IObit
2018-03-13 17:18 - 2017-01-26 16:56 - 000002432 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-03-13 17:18 - 2017-01-26 16:56 - 000000000 ___RD C:\Users\Admin\OneDrive
2018-03-09 10:44 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-03-08 19:09 - 2017-10-26 02:16 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2018-03-08 18:58 - 2017-05-04 11:47 - 000000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2018-03-08 18:29 - 2017-09-29 12:55 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-03-08 18:28 - 2016-04-27 05:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-03-06 11:37 - 2017-04-20 11:15 - 000000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2018-03-05 16:43 - 2017-01-27 10:21 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-03-05 16:43 - 2017-01-27 10:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-03-02 22:09 - 2017-09-29 12:57 - 000834552 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-03-02 22:09 - 2017-09-29 12:57 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-03-02 09:55 - 2017-10-13 09:09 - 000000000 ____D C:\Users\Admin\AppData\Local\LenovoServiceBridge
2018-03-01 13:41 - 2017-12-19 10:10 - 000000000 ____D C:\WINDOWS\Minidump
2018-03-01 11:45 - 2017-01-27 10:21 - 000001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-02-28 22:06 - 2017-12-06 10:36 - 000000000 ____D C:\Program Files\Dropbox
2018-02-27 20:25 - 2017-02-08 08:10 - 000000000 ____D C:\marek záloha
2018-02-27 10:42 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-02-27 10:04 - 2017-01-27 10:48 - 000002166 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-02-27 10:04 - 2017-01-27 10:24 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-02-26 14:26 - 2017-09-14 17:34 - 000000000 ____D C:\Users\Admin\AppData\Local\Downloaded Installations
2018-02-26 10:36 - 2017-01-28 14:55 - 000000000 ____D C:\ProgramData\Package Cache
2018-02-25 16:58 - 2017-01-30 17:43 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-02-22 18:15 - 2017-03-31 23:52 - 000000000 ____D C:\WINDOWS\system32\DAX3
2018-02-22 18:15 - 2017-03-31 23:52 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-02-22 17:22 - 2017-02-17 14:27 - 000000000 ___HD C:\Program Files\Temp
2018-02-22 17:01 - 2017-10-26 02:15 - 000396648 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-02-21 10:22 - 2017-10-11 08:44 - 000848832 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x86.sys
2018-02-21 10:01 - 2017-08-14 21:38 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2018-02-15 12:11 - 2017-10-24 12:32 - 000000000 ___RD C:\Users\Admin\3D Objects
2018-02-15 12:09 - 2017-09-29 12:55 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-02-14 14:16 - 2015-10-30 06:48 - 000000167 _____ C:\WINDOWS\win.ini
2018-02-14 14:14 - 2017-09-29 12:49 - 000160664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2018-02-14 14:13 - 2017-09-29 12:49 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2018-02-14 14:13 - 2017-09-29 12:49 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2018-02-14 14:13 - 2017-09-29 12:49 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2018-02-14 10:15 - 2017-10-24 09:45 - 000000000 ____D C:\ProgramData\Garmin
2018-02-14 10:15 - 2017-10-24 09:45 - 000000000 ____D C:\Program Files\Garmin

==================== Files in the root of some directories =======

2017-08-16 11:57 - 2017-08-16 11:57 - 000003584 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-01-30 10:22 - 2017-01-30 10:22 - 000000001 _____ () C:\Users\Admin\AppData\Local\llftool.4.40.agreement
2017-04-27 12:41 - 2017-04-27 12:41 - 000000019 _____ () C:\Users\Admin\AppData\Local\llftool.license
2017-01-30 17:02 - 2017-01-30 17:02 - 000000003 _____ () C:\Users\Admin\AppData\Local\updater.log
2017-01-30 17:02 - 2017-05-08 16:58 - 000000413 _____ () C:\Users\Admin\AppData\Local\UserProducts.xml

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-03-15 20:59

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:223.08 GB) (Free:46.25 GB) NTFS
\\?\Volume{8b28f46f-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.17 GB) NTFS

Available physical RAM: 1036.33 MB
Total physical RAM: 3068.49 MB
Percentage of memory in use: 66%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 8B28F46F)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.1 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Admin.job => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-4274060390-290019901-698256631-1001.job => C:\Program Files\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files\Skillbrains\Updater\Updater.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [136]

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Admin\Desktop" je 2 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14.03.2018
Ran by Admin (15-03-2018 23:03:23)
Running from C:\Users\Admin\Desktop
Microsoft Windows 10 Home Version 1709 16299.248 (X86) (2017-10-26 01:23:18)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

2 (S-1-5-21-4274060390-290019901-698256631-1007 - Administrator - Enabled) => C:\Users\2
Admin (S-1-5-21-4274060390-290019901-698256631-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-4274060390-290019901-698256631-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4274060390-290019901-698256631-503 - Limited - Disabled)
Guest (S-1-5-21-4274060390-290019901-698256631-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4274060390-290019901-698256631-1006 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-4274060390-290019901-698256631-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . . (HKLM\...\{4A7F2465-EAE2-4A22-9842-2A0F537F243E}) (Version: 2.6.2.4 - Intel) Hidden
7-Data Recovery Suite version 4.0.0 (HKLM\...\{02386A56-080B-485c-941D-AF96B29140DD}_is1) (Version: 4.0.0 - SharpNight Co,Ltd)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
AIDA64 Extreme v4.20 (HKLM\...\AIDA64 Extreme_is1) (Version: 4.20 - FinalWire Ltd.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
ANT Drivers Installer x86 (HKLM\...\{E31469C1-98C4-4DBA-A0F7-38C5C499EEAD}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Mobile Device Support (HKLM\...\{BD40DFE8-9908-43A8-93C0-67608DD3D400}) (Version: 11.0.5.14 - Apple Inc.)
Apple Software Update (HKLM\...\{19589375-5C58-4AFA-842F-8B34744CCEAD}) (Version: 2.5.0.1 - Apple Inc.)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Laboratories Inc. (silabser) Ports (09/19/2016 6.7.4.261) (HKLM\...\9E2C239D42290B984A9E2B350A67AF8BC8BD11B9) (Version: 09/19/2016 6.7.4.261 - Silicon Laboratories Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.34 - Piriform)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
Dropbox (HKLM\...\Dropbox) (Version: 44.4.58 - Dropbox, Inc.)
Dropbox Update Helper (HKLM\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Elevated Installer (HKLM\...\{9AB7E852-655C-4BDE-9042-1D3E6807C85A}) (Version: 6.1.1.0 - Garmin Ltd or its subsidiaries) Hidden
EPSON Advanced Printer Driver 4 (HKLM\...\{11FF6AF6-0141-4EF8-829A-989459A1E5D8}) (Version: 4.56.0300 - SEIKO EPSON CORPORATION)
EPSON APD4 Point and Print Support (HKLM\...\{4BB82AD9-0CF6-4E14-BD75-C1AB657C2914}) (Version: 4.56.0300 - SEIKO EPSON CORPORATION) Hidden
EPSON Port Communication Service (HKLM\...\{F23694FE-12E5-4B8F-AC8A-9C78D32ED7FD}) (Version: 3.12.0 - SEIKO EPSON CORPORATION)
EPSON TM Coupon Package (HKLM\...\{60ED98A7-BE97-4F26-B32E-5087337C6044}) (Version: 1.20.0000 - Seiko Epson Corporation)
FormApps Signing Extension (HKLM\...\{ACA43D91-8B42-4D42-8C8B-A893BD6AA40D}) (Version: 2.8.2.28 - Software602 a.s.)
Free Registry Defrag (HKLM\...\Free Registry Defrag_is1) (Version: - iExpert Software)
Garmin Express (HKLM\...\{E695D74A-9567-46DA-A4EE-0E191F21194B}) (Version: 6.1.1.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM\...\{fb1ff7db-c0d2-43c4-99bf-5b2fa4f9ca0b}) (Version: 6.1.1.0 - Garmin Ltd or its subsidiaries)
Garmin Express Tray (HKLM\...\{7C8FDEF1-F311-459C-B3CC-EEF73C721BFD}) (Version: 6.1.1.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 64.0.3282.186 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Hard Disk Low Level Format Tool 4.40 (HKLM\...\Hard Disk Low Level Format Tool_is1) (Version: - HDDGURU)
HDD Regenerator (HKLM\...\{CC5DA723-D428-40D1-B82B-21EB64B1273C}) (Version: 20.11.0011 - Abstradrome)
InstPortMon (HKLM\...\{CCC2D881-2262-4DE1-BC15-32E4727F1259}) (Version: 1.4.0.0 - InstPortMon) Hidden
Intel(R) Update Manager (HKLM\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel® Driver Update Utility (HKLM\...\{66e8e99a-eb6f-4403-9fc2-0ddd4d6f353e}) (Version: 2.6.2.4 - Intel)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{55669453-883A-4F15-9D3B-BC990F5C9A32}) (Version: 6.0.6 - Intel Corporation)
ISO2Disc 1.10 (HKLM\...\ISO2Disc_is1) (Version: - Top Password Software, Inc.)
iTunes (HKLM\...\{6EBB5549-1773-43E1-BB82-E7A14CA5AB6B}) (Version: 12.7.3.46 - Apple Inc.)
Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 151 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java SE Development Kit 8 Update 121 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180121}) (Version: 8.0.1210.13 - Oracle Corporation)
Java SE Development Kit 8 Update 151 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180151}) (Version: 8.0.1510.12 - Oracle Corporation)
JRF (HKLM\...\JRF) (Version: 1.3.0.0 - ICZ a.s.)
Kingston SSD Manager version 1.0.1.3 (HKLM\...\{9A5DD901-0B98-4F2B-9421-B5975014184F}_is1) (Version: 1.0.1.3 - Kingston Digital, Inc)
Lenovo Moto Smart Assistant (HKLM\...\{4EE4FC82-5245-478B-BBD2-15E977072240}) (Version: 3.3.1.10 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.5.9 - Lenovo)
Lightshot-5.4.0.10 (HKLM\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.10 - Skillbrains)
Macrorit Disk Partition Expert Free 2016 (HKLM\...\Macrorit_MDE) (Version: 2016 - Macrorit Inc.)
Manager (HKLM\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\OneDriveSetup.exe) (Version: 17.005.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MiniTool Partition Wizard Free 10.2.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Money S3 (HKLM\...\Money S3) (Version: - )
Mozilla Firefox 58.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 58.0.2 (x86 cs)) (Version: 58.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.2.6611 - Mozilla)
Naviextras Toolbox (HKLM\...\Naviextras Toolbox) (Version: 3.18.5.667499 - NNG Llc.)
Naviextras Toolbox Prerequesities (HKLM\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.)
NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
Paragon Backup and Recovery™ 16 (HKLM\...\{DADAA9CF-36B6-11E6-B0B5-005056C00008}) (Version: 10.28.101 - Paragon Software)
PC Inspector File Recovery (HKLM\...\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}) (Version: 4.0 - )
PDF Architect 4 (HKLM\...\PDF Architect 4) (Version: 4.0.34.26215 - pdfforge GmbH)
PDF Architect 4 Create Module (HKLM\...\{7B38A9AD-77A9-4CF5-AD21-5CE9E1F5011D}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 Edit Module (HKLM\...\{DEC7E684-E5AC-470B-8951-8E608692338D}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 View Module (HKLM\...\{9E815348-7C38-494E-B8BF-B7CB18FB8A2F}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 5 (HKLM\...\PDF Architect 5) (Version: 5.0.22.32360 - pdfforge GmbH)
PDF Architect 5 Create Module (HKLM\...\{195F60E3-5445-4DDA-8A65-C1A221E1D6FA}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{1EC3144E-90D5-4936-8292-E8C5152ADF77}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{BD9CE601-084F-49A2-9E13-F0BF6AD7FEEB}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.3 - pdfforge GmbH)
PL-2303 USB-to-Serial (HKLM\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.16.0 - Prolific Technology Inc.)
Podpora aplikací Apple (32bitová) (HKLM\...\{D4C80B0C-CF67-43A7-90C3-466853543B54}) (Version: 6.3 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8248 - Realtek Semiconductor Corp.)
Seagate DiscWizard (HKLM\...\{15C6E3DD-11C8-4A57-BD32-828613558488}) (Version: 18.0.6036 - Seagate)
SeaTools for Windows 1.4.0.5 (HKLM\...\SeaTools for Windows) (Version: 1.4.0.5 - Seagate Technology)
Správce síťových licencí produktů Cígler Software (HKLM\...\Správce síťových licencí produktů CÍGLER SOFTWARE) (Version: - )
TeamViewer 13 (HKLM\...\TeamViewer) (Version: 13.0.6447 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 9.10 release candidate 1 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visual Studio C++ 10.0 Runtime (HKLM\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
WinRAR 5.50 beta 3 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.3 - win.rar GmbH)
WinToUSB verze 3.9 (HKLM\...\WinToUSB_is1) (Version: 3.9 - Hasleo Software.)
Wondershare Data Recovery(Build 6.1.1.0) (HKLM\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 6.1.1.0 - Wondershare Software Co.,Ltd.)
Wondershare Helper Compact 2.5.2 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileCoAuthLib.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-4274060390-290019901-698256631-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll => No File
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files\Seagate\DiscWizard\tishell.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files\Seagate\DiscWizard\tishell.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files\Seagate\DiscWizard\tishell.dll [2014-09-09] (Acronis)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ContextMenuHandlers1: [PDFArchitect4_ManagerExt] -> {3AECFCB3-8472-48E9-BC7B-5A3CD945C886} => C:\Program Files\PDF Architect 4\creator-context-menu.dll [2016-08-05] (pdfforge GmbH)
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-07-05] (pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\WINDOWS\system32\mscoree.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-05-26] (Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.19.0.dll [2018-02-26] (Dropbox, Inc.)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-05-26] (Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-4274060390-290019901-698256631-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ContextMenuHandlers4_S-1-5-21-4274060390-290019901-698256631-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
ContextMenuHandlers5_S-1-5-21-4274060390-290019901-698256631-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1E65E0FC-CAA0-4C4A-A104-60DA9CC443CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {2572FEFA-663B-45EF-9C2F-EA19CA46D97E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-01-27] (Google Inc.)
Task: {48C837F1-8641-434B-9FFF-8C877C6A1AFF} - System32\Tasks\Driver Booster SkipUAC (Admin) => C:\Program Files\IObit\Driver Booster\5.2.0\DriverBooster.exe
Task: {623861E5-A91C-4522-AB42-C2C6EA83F632} - System32\Tasks\Uninstaller_SkipUac_Admin => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {62DF66DA-8E87-4EA4-87CC-72C2A244925B} - System32\Tasks\update-S-1-5-21-4274060390-290019901-698256631-1001 => C:\Program Files\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {6CF3EE67-502E-41A7-A175-E1EC67699E39} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-02] (Microsoft Corporation)
Task: {783355F8-F13D-4DB6-8684-F040D6E2F48C} - System32\Tasks\update-sys => C:\Program Files\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {8BD721AC-4D1A-4327-84EA-A64767B01F4E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2017-12-06] (Dropbox, Inc.)
Task: {9480003E-B860-4C10-95E1-738BA5B5CCED} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {9A9E9E00-981F-4576-88CA-BF3E014912F4} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2017-12-06] (Dropbox, Inc.)
Task: {A324B01E-68A7-42CC-8103-CB297F683511} - System32\Tasks\GarminUpdaterTask => C:\Program Files\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2018-02-08] ()
Task: {A9C723BB-56F2-4355-8811-227A04FC9261} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-07] (Piriform Ltd)
Task: {C0C31BA8-00ED-41FE-9ED4-0E1DCBCF891E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-02] (Microsoft Corporation)
Task: {C421654F-DDE2-4740-BE83-547ABFA6EE67} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-4274060390-290019901-698256631-1001 => C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [2018-02-07] (Lenovo Group Limited)
Task: {C532E63C-C0D9-4CCE-B713-EABBD1A1CBE2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-01-27] (Google Inc.)
Task: {D4CC8D90-942F-4105-91A6-62F3F1CCE7A0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2017-10-12] (Apple Inc.)
Task: {DCDEB200-7EC6-45A2-9B72-A15B47A4A19A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-02] (Microsoft Corporation)
Task: {E01045E5-B2D8-4173-B8E9-3B762043EDB2} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {E63095BC-B2CA-4616-BD78-34C004682C0B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-02] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Admin.job => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-4274060390-290019901-698256631-1001.job => C:\Program Files\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files\Skillbrains\Updater\Updater.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Admin\z plochy\Baterie ASUS K50AB K50C K50IJ K51AC K.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hciadgnhibmggheijglinbnlndnecgfl
ShortcutWithArgument: C:\Users\Admin\Desktop\Kolekce HARDDISKŮ Pro NOTEBOOK - Most.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=diooefmhnhhbgihnangmolikjmejnidm
ShortcutWithArgument: C:\Users\Admin\Desktop\NEW - Lenovo IdeaPad 110-15ACL Mother.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=elcdapgmbonjmblagdblhhiilfbgboei
ShortcutWithArgument: C:\Users\Admin\Desktop\notebook_ (napájení ze sítě. Nenabíjí.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=eicncpbbgkfhgdjkbgnckoohobebmeho
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Baterie ASUS K50AB K50C K50IJ K51AC K.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hciadgnhibmggheijglinbnlndnecgfl
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Kolekce HARDDISKŮ Pro NOTEBOOK - Most.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=diooefmhnhhbgihnangmolikjmejnidm
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\NEW - Lenovo IdeaPad 110-15ACL Mother.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=elcdapgmbonjmblagdblhhiilfbgboei
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\notebook_ (napájení ze sítě. Nenabíjí.._.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=eicncpbbgkfhgdjkbgnckoohobebmeho

==================== Loaded Modules (Whitelisted) ==============

2016-02-15 21:02 - 2016-02-15 21:02 - 000027160 _____ () C:\WINDOWS\System32\us008lm.dll
2018-01-05 00:14 - 2018-01-05 00:14 - 000076088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-01-05 00:14 - 2018-01-05 00:14 - 001042232 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-05-08 09:35 - 2017-05-08 09:35 - 000325632 _____ () C:\Program Files\Garmin\Device Interaction Service\GpsImgWrapper.dll
2018-02-08 13:32 - 2018-02-08 13:32 - 000073216 _____ () C:\Program Files\Garmin\Device Interaction Service\FixBootSector.dll
2017-04-11 09:09 - 2008-10-21 10:02 - 000577248 _____ () C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
2017-04-11 09:17 - 2008-10-23 17:27 - 000045056 _____ () C:\Program Files\CIGLER SOFTWARE\NetLicence\Mtp32.dll
2017-09-29 12:49 - 2017-09-29 12:49 - 000149840 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2014-09-09 10:00 - 2014-09-09 10:00 - 000023576 _____ () C:\Program Files\Seagate\DiscWizard\ti_managers_proxy_stub.dll
2018-02-27 10:04 - 2018-02-22 05:12 - 002407256 _____ () C:\Program Files\Google\Chrome\Application\64.0.3282.186\swiftshader\libglesv2.dll
2018-02-27 10:04 - 2018-02-22 05:12 - 000115032 _____ () C:\Program Files\Google\Chrome\Application\64.0.3282.186\swiftshader\libegl.dll
2017-09-29 12:49 - 2017-09-29 12:49 - 000036352 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2018-02-14 14:11 - 2018-02-10 05:39 - 002643456 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2018-02-14 14:11 - 2018-02-10 05:38 - 002329088 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [136]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\facebook.com -> hxxps://staticxx.facebook.com
IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\facebook.net -> hxxps://connect.facebook.net
IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\fbcdn.net -> hxxps://static.xx.fbcdn.net
IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\google-analytics.com -> hxxps://www.google-analytics.com
IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\paragon-software.com -> hxxps://bo4-fe.paragon-software.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 06:48 - 2015-10-30 06:47 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4274060390-290019901-698256631-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 8.8.4.4 - 10.200.200.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\StartupFolder: => "Select a coupon.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "NetLockMngr"
HKLM\...\StartupApproved\Run: => "EpsonAPD4SV"
HKLM\...\StartupApproved\Run: => "P17RunE"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "GrooveMonitor"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run: => "HDD Regenerator"
HKLM\...\StartupApproved\Run: => "Lightshot"
HKLM\...\StartupApproved\Run: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run: => "FreeAgentTheaterTrayIcon"
HKLM\...\StartupApproved\Run: => "DiscWizardMonitor.exe"
HKLM\...\StartupApproved\Run: => "Seagate Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "Dropbox"
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\StartupApproved\Run: => "GarminExpressTrayApp"
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\StartupApproved\Run: => "T-Mobile CManager"
HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\StartupApproved\Run: => "TomTomHOME.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C85DB6F2-5130-449B-BAE0-F6FBBA381A18}] => (Allow) LPort=1688
FirewallRules: [{BBDA55A0-DB16-4899-86FB-5FD8D53E939E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{EDD2A6F9-DC44-4174-9415-6625F2EF90CA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CE3F08AF-42D0-42FF-992E-E9C0A0115817}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{CF4E350D-DA88-4B9A-95C5-B0AE1A8EEF21}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{E36460BE-AD59-44E7-A802-3C53774B17D9}] => (Allow) C:\Program Files\EPSON\EPSON Advanced Printer Driver 4\Tools\PrinterNetworkSetting\APDNetSetting.exe
FirewallRules: [{F67516CA-147C-4257-9434-45F69862E810}] => (Allow) C:\Program Files\EPSON\EPSON Advanced Printer Driver 4\Tools\PrinterNetworkSetting\APDNetSetting.exe
FirewallRules: [{E7647B23-A183-4189-9572-125E2D44141C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{DF20069C-1F50-4F85-BB25-DEAC32E9B5DF}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{FE621C56-5ABB-4326-9DBE-354F97E741FE}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6F300745-F378-478F-B8D3-C768E7871088}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{1D46E811-75F7-463B-A61F-9EEA28CE3061}C:\program files\lenovo moto smart assistant\lenovo moto smart assistant.exe] => (Allow) C:\program files\lenovo moto smart assistant\lenovo moto smart assistant.exe
FirewallRules: [UDP Query User{7B8438EC-76B0-4DEF-B970-34BF30D6A8FE}C:\program files\lenovo moto smart assistant\lenovo moto smart assistant.exe] => (Allow) C:\program files\lenovo moto smart assistant\lenovo moto smart assistant.exe
FirewallRules: [{9BCE58D4-E3E8-4390-9221-C166431C99E9}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{112FE497-1A83-4640-959C-029AA0E353DA}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{E6CD0BAB-EC0D-4081-BDA1-02C753848565}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{BE3C60D6-77EF-4BD0-A285-1274269A0E3B}] => (Allow) C:\Program Files\Dropbox\Client\Dropbox.exe

==================== Restore Points =========================

13-03-2018 18:23:20 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/15/2018 10:57:24 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 10:56:59 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 10:56:24 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 10:55:24 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 10:54:24 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 10:53:36 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 10:53:36 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba

Error: (03/15/2018 10:53:36 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Nespecifikovaná chyba


System errors:
=============
Error: (03/15/2018 10:54:07 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-9BBP2FF)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-9BBP2FF\Admin (SID: S-1-5-21-4274060390-290019901-698256631-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/15/2018 10:54:05 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-9BBP2FF)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-9BBP2FF\Admin (SID: S-1-5-21-4274060390-290019901-698256631-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/15/2018 10:54:01 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\NETWORK SERVICE (SID: S-1-5-20) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/15/2018 10:53:58 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-9BBP2FF)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-9BBP2FF\Admin (SID: S-1-5-21-4274060390-290019901-698256631-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/15/2018 10:53:56 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-9BBP2FF)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-9BBP2FF\Admin (SID: S-1-5-21-4274060390-290019901-698256631-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/15/2018 10:52:39 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-9BBP2FF)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-9BBP2FF\Admin (SID: S-1-5-21-4274060390-290019901-698256631-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/15/2018 10:52:28 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-9BBP2FF)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-9BBP2FF\Admin (SID: S-1-5-21-4274060390-290019901-698256631-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/15/2018 10:51:55 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba HomeGroupListener skončila s následující chybou specifickou pro službu:
%%2147944153 = Pro mapovač koncových bodů nejsou k dispozici další koncové body.


Windows Defender:
===================================
Date: 2018-03-15 23:00:39.952
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Critet.BS
ID: 2147726294
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\fn066ax7.default\cache2\entries\6E1DFD902DBC88B1C956B616F8DC27F7DEBBD1DA;file:_C:\Users\Admin\AppData\Local\Temp\XZCSk_iY.exe.part
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-9BBP2FF\Admin
Název procesu: C:\Program Files\Mozilla Firefox\firefox.exe
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze modulu: AM: 1.1.14600.4, NIS: 2.1.14202.0

Date: 2018-03-15 23:00:39.750
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Critet.BS
ID: 2147726294
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Admin\AppData\Local\Temp\XZCSk_iY.exe.part
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-9BBP2FF\Admin
Název procesu: C:\Program Files\Mozilla Firefox\firefox.exe
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze modulu: AM: 1.1.14600.4, NIS: 2.1.14202.0

Date: 2018-03-15 23:00:32.607
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Tiggre!rfn
ID: 2147723625
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Admin\AppData\Local\Temp\2ArDPys_.exe.part
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-9BBP2FF\Admin
Název procesu: C:\Program Files\Mozilla Firefox\firefox.exe
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze modulu: AM: 1.1.14600.4, NIS: 2.1.14202.0

Date: 2018-03-15 22:53:26.008
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Patch
ID: 2147649714
Závažnost: Střední
Kategorie: Nástroj
Cesta: file:_C:\marek záloha\all\Program Files\Adobe\Adobe Photoshop CS6\adobe.photoshop.cs6-patch.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze modulu: AM: 1.1.14600.4, NIS: 2.1.14202.0

Date: 2018-03-15 22:45:19.795
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Patch
ID: 2147649714
Závažnost: Střední
Kategorie: Nástroj
Cesta: file:_C:\marek záloha\all\Program Files\Adobe\Adobe Photoshop CS6\adobe.photoshop.cs6-patch.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.263.585.0, AS: 1.263.585.0, NIS: 118.5.0.0
Verze modulu: AM: 1.1.14600.4, NIS: 2.1.14202.0

Date: 2018-03-15 20:48:50.413
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst: Aktuální
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Verze podpisu: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

Date: 2018-03-08 16:17:58.420
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 1.263.328.0
Předchozí verze podpisu: 1.263.325.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.14600.4
Předchozí verze modulu: 1.1.14600.4
Kód chyby: 0x80004004
Popis chyby :Operace přerušena

Date: 2018-03-08 16:17:58.420
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 1.263.328.0
Předchozí verze podpisu: 1.263.325.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.14600.4
Předchozí verze modulu: 1.1.14600.4
Kód chyby: 0x80004004
Popis chyby :Operace přerušena

Date: 2018-03-01 11:51:06.657
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.263.14.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.14600.4
Kód chyby: 0x80240016
Popis chyby ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2018-03-15 23:02:03.068
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-15 23:02:03.064
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-15 22:58:33.359
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-15 22:58:33.357
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-15 22:56:59.364
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-15 22:56:59.362
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-15 22:55:40.299
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-15 22:55:40.296
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz
Percentage of memory in use: 66%
Total physical RAM: 3068.49 MB
Available physical RAM: 1036.33 MB
Total Virtual: 5372.49 MB
Available Virtual: 3142.27 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.08 GB) (Free:46.25 GB) NTFS

\\?\Volume{8b28f46f-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.17 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 8B28F46F)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

zrychlilo se to, pravda - nicméně ta nabídka start stále zlobí plocha vyčištěna ...

co dál ?

Otvor poznamkovy blok (Win+R -> notepad -> enter)

• Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

  Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Select a coupon.lnk [2017-03-07]
  FF Extension: (No Name) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
  CHR DefaultSearchURL: Default -> hxxps://www.bazos.cz/favicon.ico
  S4 IUFileFilter; \??\C:\Program Files\IObit\IObit Uninstaller\drivers\win10_x86\IUFileFilter.sys [X]
  2018-03-15 22:08 - 2018-03-15 22:08 - 000112640 _____ (forum.viry.cz) C:\Users\Admin\Downloads\Nepotvrzeno 503617.crdownload
  2018-03-08 18:30 - 2018-03-08 18:30 - 000000000 ____D C:\Users\2\AppData\Roaming\IObit
  2018-03-15 22:51 - 2017-02-15 15:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\IObit
  2018-03-15 22:51 - 2017-02-15 15:57 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\IObit
  2018-03-15 22:51 - 2017-02-15 15:57 - 000000000 ____D C:\ProgramData\IObit
  2018-03-15 20:46 - 2017-02-15 15:57 - 000000000 ____D C:\Program Files\IObit
  2018-03-15 17:46 - 2017-02-15 16:00 - 000000000 ____D C:\Program Files\Common Files\IObit
  
  ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
  ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
  ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
  ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
  ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
  ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
  ContextMenuHandlers1_S-1-5-21-4274060390-290019901-698256631-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
  ContextMenuHandlers4_S-1-5-21-4274060390-290019901-698256631-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
  ContextMenuHandlers5_S-1-5-21-4274060390-290019901-698256631-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\FileSyncShell.dll -> No File
  Task: {48C837F1-8641-434B-9FFF-8C877C6A1AFF} - System32\Tasks\Driver Booster SkipUAC (Admin) => C:\Program Files\IObit\Driver Booster\5.2.0\DriverBooster.exe
  Task: {623861E5-A91C-4522-AB42-C2C6EA83F632} - System32\Tasks\Uninstaller_SkipUac_Admin => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
  Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Admin.job => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
  AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [136]
  IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\facebook.com -> hxxps://staticxx.facebook.com
  IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\facebook.net -> hxxps://connect.facebook.net
  IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\fbcdn.net -> hxxps://static.xx.fbcdn.net
  IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\google-analytics.com -> hxxps://www.google-analytics.com
  IE trusted site: HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\paragon-software.com -> hxxps://bo4-fe.paragon-software.com
  HKLM\...\StartupApproved\StartupFolder: => "Select a coupon.lnk"
  HKLM\...\StartupApproved\Run: => "FreeAgentTheaterTrayIcon"
  HKU\S-1-5-21-4274060390-290019901-698256631-1001\...\StartupApproved\Run: => "T-Mobile CManager"
  
  C:\Program Files\IObit
  C:\Program Files\Common Files\IObit
  C:\ProgramData\IObit
  C:\ProgramData\ProductData
  C:\Users\2\AppData\Roaming\IObit
  C:\Users\2\AppData\LocalLow\IObit
  C:\Users\Admin\AppData\Roaming\IObit
  C:\Users\Admin\AppData\LocalLow\IObit
  C:\Users\Default\AppData\Roaming\IObit
  C:\Users\Default\AppData\LocalLow\IObit
  C:\Users\DefaultUser\AppData\Roaming\IObit
  C:\Users\DefaultUser\AppData\LocalLow\IObit
  C:\Users\All Users\IObit
  C:\Windows\IObit
  C:\Windows\Tasks\ImCleanDisabled
  
  Hosts:
  EmptyTemp:
  End

• Uloz na plochu s nazvom fixlist.txt
• Spusti znovu FRST a klikni na Fix
• Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
• Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj