Pomalý notebook
Napsal: 13 led 2019 09:39
Zdravím,
mám problém s rapidním zpomalením notebooku, než bych se pustil do kompletního přeinstalovaní OS, tak bych rád zkusil, jeslti mě tohle nepomůže...
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12.01.2019
Ran by lenovo (13-01-2019 09:36:33)
Running from C:\Users\lenovo\Downloads
Windows 10 Pro Version 1809 17763.253 (X64) (2019-01-02 09:19:33)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-624539942-2889417632-4096173677-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-624539942-2889417632-4096173677-503 - Limited - Disabled)
Guest (S-1-5-21-624539942-2889417632-4096173677-501 - Limited - Disabled)
lenovo (S-1-5-21-624539942-2889417632-4096173677-1001 - Administrator - Enabled) => C:\Users\lenovo
WDAGUtilityAccount (S-1-5-21-624539942-2889417632-4096173677-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 18.01 (HKLM-x32\...\7-Zip) (Version: 18.01 - Igor Pavlov)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20064 - Adobe Systems Incorporated)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Conto Suite (HKLM-x32\...\{D7D800EF-8CEF-4244-B2B5-6BAC4B31A8CE}_is1) (Version: 2.1.0.3 - Consulta Bürotechnik, s.r.o.)
EPSON Advanced Printer Driver for TM-T20II Ver.5 (HKLM-x32\...\EPSON Advanced Printer Driver 5 For TM-T20II) (Version: 5.09.0.0 - Seiko Epson Corporation)
EPSON APD5 Plugin for TM-T20II (HKLM\...\{C3757CB6-47FC-4ECD-ACBF-C7C005948EAC}) (Version: 5.09.0.0 - Seiko Epson Corporation)
EPSON APD5 PrinterReg for TM-T20II (HKLM\...\{E528A3BB-49DB-4721-B1B4-E1CAC97863B4}) (Version: 5.09.0.0 - Seiko Epson Corporation)
EPSON APD5 TM-T20II Sample&Manual (English) (HKLM-x32\...\{3E4541AE-285D-476B-AEDD-17C8620C767C}) (Version: 1.00.0000 - SEIKO EPSON Corporation)
EPSON Port Communication Service (HKLM\...\{8B933A2E-4C01-4681-821D-F055F455F6C0}) (Version: 3.20.0 - SEIKO EPSON CORPORATION)
EPSON TM Bluetooth Connector (HKLM-x32\...\{78758F5A-1778-49F0-B4CE-B83B789B2D90}) (Version: 2.03.0000 - Seiko Epson Corporation)
EPSON TM Coupon Package (HKLM-x32\...\{60ED98A7-BE97-4F26-B32E-5087337C6044}) (Version: 2.10.0000 - Seiko Epson Corporation)
EPSON TM-T20II Utility (HKLM-x32\...\{43ABD186-CBE1-4E66-BE6D-3FC011A7CE03}) (Version: 1.2.0.0 - Seiko Epson Corporation)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.2.0.9297 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5058 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{b23c55fa-5271-4d64-ba8f-6718be55b9a7}) (Version: 10.1.1.33 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{B294CE94-FE0F-4427-910C-180AF9FCFED1}) (Version: 1.0.1.620 - Intel Corporation)
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.5.8.400 - Intel Corporation)
IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.20 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.17 - Lenovo) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-624539942-2889417632-4096173677-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.5 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0074 - Lenovo)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.11029.20079 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.11029.20079 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-624539942-2889417632-4096173677-1001\...\OneDriveSetup.exe) (Version: 18.240.1202.0003 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.3399 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
Zoner Photo Studio X (HKLM\...\ZonerPhotoStudioX_CZ_is1) (Version: 19.1806.2.72 - ZONER software)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-07-12] (Foxit Software Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-09-18] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-07-12] (Foxit Software Inc.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {051AD285-B0D0-494B-BBEF-F5B99C6BAFED} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-27] (Microsoft Corporation)
Task: {095165E5-A91F-4ACE-91E0-3609AC68A1C5} - System32\Tasks\ASC12_SkipUac_lenovo => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {14DF9803-2F7C-411C-AA88-D5FCA89A9B1F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {1CAD8540-33D9-4CA9-8CFD-36A6F42F401F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-20] (Microsoft Corporation)
Task: {1D9F6868-968D-4E70-B0DE-66328FBCD752} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-02-19] (Intel(R) Corporation)
Task: {2498DC20-FB87-40E3-BCDF-574B6439F595} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-27] (Microsoft Corporation)
Task: {2FAB486C-ED62-4F17-AAC1-588E76139563} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [2018-09-12] (Lenovo.)
Task: {3942D623-735B-4424-867A-26FDC35A1FF0} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe [2018-11-06] ()
Task: {4101895F-6C47-4369-AC99-BE1F45C9421C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-27] (Microsoft Corporation)
Task: {462B82DE-01AC-4FB0-A18C-B8028BCE53CD} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-09-21] (Realtek Semiconductor)
Task: {48DB511C-48AF-445B-89A1-09712709039A} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-624539942-2889417632-4096173677-1001 => C:\Users\lenovo\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [2018-10-29] (Lenovo Group Limited)
Task: {495F2FD6-1C5D-44D4-B487-DBA02FD6ACD6} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [2018-11-06] (Lenovo)
Task: {52612189-1DA1-44E0-ACA1-8265012E3992} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-09-21] (Realtek Semiconductor)
Task: {58C9FBAC-24BE-4B89-B6F2-61C9A3655A35} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-22] (Google Inc.)
Task: {631E115E-2171-4309-9547-44772571B21B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-22] (Google Inc.)
Task: {6463408C-2EB3-4B27-9BDA-D7D8DBE682FF} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2018-10-22] ()
Task: {6B51BADE-FB6C-4EB1-926B-287359EE3186} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-15] (Microsoft Corporation)
Task: {72B57ED1-7A9A-4126-A880-DEAB156125FC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-27] (Microsoft Corporation)
Task: {78F9785F-4DCA-4B80-9063-27327C06E549} - System32\Tasks\AviraSystemSpeedupRemoval => %comspec% [Argument = /C rmdir "C:\Program Files (x86)\Avira\System Speedup" /S /Q & schtasks /Delete /F /TN AviraSystemSpeedupRemoval]
Task: {A351E9E7-4335-43C2-BE49-1C8CA525F29F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-20] (Microsoft Corporation)
Task: {AB5CECD4-3DD0-49CC-AF73-03646F310285} - System32\Tasks\ASC12_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {E11C5803-9310-4BD6-A264-38258898E11E} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2018-10-22] ()
Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-09-15] ()
Task: {EBB4C987-B9F0-476D-8394-3116D1C0E95E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-15] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\Windows\System32\InputHost.dll
2018-09-26 09:08 - 2018-09-26 09:08 - 000165160 _____ () C:\WINDOWS\system32\IntelWifiIhv04.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-11-22 10:10 - 2018-09-18 19:29 - 000398808 _____ () C:\WINDOWS\system32\igfxTray.exe
2018-09-15 08:28 - 2018-09-15 08:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2019-01-04 08:03 - 2019-01-04 08:03 - 002834944 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.1811.3343.0_x64__8wekyb3d8bbwe\People.BackgroundTasks.dll
2019-01-04 08:03 - 2019-01-04 08:03 - 000120320 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.1811.3343.0_x64__8wekyb3d8bbwe\PeopleUtilRT.dll
2019-01-04 08:03 - 2019-01-04 08:03 - 009032704 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.1811.3343.0_x64__8wekyb3d8bbwe\Microsoft.People.NativeComponents.dll
2018-12-14 20:56 - 2018-12-14 20:59 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-12-14 20:56 - 2018-12-14 20:59 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2019-01-13 09:32 - 2019-01-13 09:32 - 002907136 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\PhoneCommunicationAppService.dll
2019-01-13 09:32 - 2019-01-13 09:32 - 002172928 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.AppCore.dll
2019-01-13 09:32 - 2019-01-13 09:32 - 001795584 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\PhoneContentDataStore.dll
2018-09-15 18:45 - 2018-09-15 18:45 - 004734464 _____ () C:\Program Files\WindowsApps\Microsoft.Wallet_2.2.18179.0_x64__8wekyb3d8bbwe\Microsoft.Wallet.dll
2018-12-11 16:43 - 2018-12-11 16:47 - 034870272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-12-11 16:43 - 2018-12-11 16:47 - 000292352 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-02-22 11:15 - 2018-02-22 11:15 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2018-11-29 19:20 - 2018-11-29 19:20 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-12-11 16:43 - 2018-12-11 16:47 - 005967872 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-12-11 16:43 - 2018-12-11 16:47 - 009072128 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-07-09 21:52 - 2018-07-09 21:53 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-10-04 10:41 - 2018-10-04 10:42 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-14 20:56 - 2018-12-14 20:59 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-14 20:56 - 2018-12-14 20:59 - 010927616 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-12-14 20:56 - 2018-12-14 20:59 - 002916864 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\skypert.dll
2019-01-13 09:32 - 2019-01-13 09:32 - 005172224 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.exe
2018-10-31 15:36 - 2018-10-31 15:39 - 001004032 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-11-06 15:48 - 2018-11-06 15:49 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-06 15:48 - 2018-11-06 15:49 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 14:46 - 2017-09-29 14:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\
HKU\S-1-5-21-624539942-2889417632-4096173677-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img3.jpg
DNS Servers: 77.236.192.130 - 77.236.192.150
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E0C7B5EC-3DAC-4211-9E71-5EABDD38A4B4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{A6BF105F-280C-42B8-A9C8-B73DC44E5BE2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{1B6E827D-FC26-4552-AFAD-3419B1CC72C4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{EC762325-390B-43FB-87D5-652174052C11}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{A3DBB8E6-1F5F-4D75-AEB1-C2C89E6D5BE6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{B4ED5B12-E171-491A-8276-A5CA713BDC94}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ()
FirewallRules: [{CB8FFD89-22FC-4D2D-953D-A2711EF749D0}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe ()
FirewallRules: [{47103D2A-42C3-47B2-8277-9392AE476FFC}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe ()
FirewallRules: [{F854C263-477B-42EF-8C7C-290E6E21CB8B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{63BF862C-7837-4CC6-853C-E617BF1E8CEB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{7783AFCE-97B4-49A5-A396-42471758E5BC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation)
FirewallRules: [{D331EED1-F69F-4CBA-AF36-D61904E9283A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{30B377A2-504B-4D62-9E06-DD7CD89B21A1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [TCP Query User{138E0B9E-8003-41A6-9AD3-DD2A1B968DA7}C:\users\lenovo\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lenovo\appdata\roaming\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [UDP Query User{EFADEB55-E4AE-438B-9079-7F72D28908E0}C:\users\lenovo\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lenovo\appdata\roaming\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [{29387A5A-637E-4284-96B0-C2F24F96DBB0}] => (Allow) C:\Program Files (x86)\EPSON\TM-T20II Software\TMT20IIUTL\TMT20IIUTL.EXE (Seiko Epson Corporation)
FirewallRules: [{29652616-7651-4929-9D30-7F0DE62BCF11}] => (Allow) C:\Program Files (x86)\EPSON\TM-T20II Software\TMT20IIUTL\TMT20IIUTL.EXE (Seiko Epson Corporation)
FirewallRules: [{846C2732-8AE5-482F-B154-A53A34BA9C2C}] => (Allow) C:\Program Files (x86)\EPSON\EPSON Advanced Printer Driver 5\NetworkSettingTool\APDNetSetting.exe (Seiko Epson Corporation)
FirewallRules: [{8DCDAB16-AEF7-4D41-BEB6-28168B6BA0F0}] => (Allow) C:\Program Files (x86)\EPSON\EPSON Advanced Printer Driver 5\NetworkSettingTool\APDNetSetting.exe (Seiko Epson Corporation)
==================== Restore Points =========================
10-01-2019 18:56:47 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/10/2019 06:46:48 PM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Failed to process session change. System.NullReferenceException: Object reference not set to an instance of an object.
at Avira.OE.ServiceHost.ServiceHost.OnSessionChange(Object sender, SessionChangeEventArgs args)
at Avira.OE.ServiceHost.Program.WindowsServiceOnSessionChange(Object sender, SessionChangeEventArgs sessionChangeEventArgs)
at Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHandler`1 eventHandler, Object sender, T eventArgs)
at Avira.OE.ServiceHost.WindowsService.OnSessionChange(SessionChangeDescription changeDescription)
at System.ServiceProcess.ServiceBase.DeferredSessionChange(Int32 eventType, Int32 sessionId)
Error: (01/10/2019 12:14:15 PM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Failed to process session change. System.NullReferenceException: Object reference not set to an instance of an object.
at Avira.OE.ServiceHost.ServiceHost.OnSessionChange(Object sender, SessionChangeEventArgs args)
at Avira.OE.ServiceHost.Program.WindowsServiceOnSessionChange(Object sender, SessionChangeEventArgs sessionChangeEventArgs)
at Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHandler`1 eventHandler, Object sender, T eventArgs)
at Avira.OE.ServiceHost.WindowsService.OnSessionChange(SessionChangeDescription changeDescription)
at System.ServiceProcess.ServiceBase.DeferredSessionChange(Int32 eventType, Int32 sessionId)
Error: (01/10/2019 11:37:54 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Failed to process session change. System.NullReferenceException: Object reference not set to an instance of an object.
at Avira.OE.ServiceHost.ServiceHost.OnSessionChange(Object sender, SessionChangeEventArgs args)
at Avira.OE.ServiceHost.Program.WindowsServiceOnSessionChange(Object sender, SessionChangeEventArgs sessionChangeEventArgs)
at Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHandler`1 eventHandler, Object sender, T eventArgs)
at Avira.OE.ServiceHost.WindowsService.OnSessionChange(SessionChangeDescription changeDescription)
at System.ServiceProcess.ServiceBase.DeferredSessionChange(Int32 eventType, Int32 sessionId)
Error: (01/10/2019 07:55:38 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Failed to process session change. System.NullReferenceException: Object reference not set to an instance of an object.
at Avira.OE.ServiceHost.ServiceHost.OnSessionChange(Object sender, SessionChangeEventArgs args)
at Avira.OE.ServiceHost.Program.WindowsServiceOnSessionChange(Object sender, SessionChangeEventArgs sessionChangeEventArgs)
at Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHandler`1 eventHandler, Object sender, T eventArgs)
at Avira.OE.ServiceHost.WindowsService.OnSessionChange(SessionChangeDescription changeDescription)
at System.ServiceProcess.ServiceBase.DeferredSessionChange(Int32 eventType, Int32 sessionId)
Error: (01/10/2019 07:45:20 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\msiexec.exe /V; Popis = Removed Avira Software Updater; Chyba = 0x80070422).
Error: (01/10/2019 07:45:15 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\msiexec.exe /V; Popis = Removed Avira Software Updater; Chyba = 0x80070422).
Error: (01/10/2019 07:44:18 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\msiexec.exe /V; Popis = Removed Avira Safe Shopping; Chyba = 0x80070422).
Error: (01/10/2019 07:43:57 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\msiexec.exe /V; Popis = Removed Avira Safe Shopping; Chyba = 0x80070422).
System errors:
=============
Error: (01/13/2019 09:35:10 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (01/13/2019 09:35:10 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (01/13/2019 09:35:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService12 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (01/13/2019 09:34:46 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\WINDOWS\system32\IntelWifiIhv04.dll
Error: (01/13/2019 09:34:46 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\WINDOWS\system32\IntelWifiIhv04.dll
Error: (01/13/2019 09:34:45 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\WINDOWS\system32\IntelWifiIhv04.dll
Error: (01/13/2019 09:34:42 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Lenovo Platform Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (01/13/2019 09:34:42 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Lenovo EasyResume Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===================================
Date: 2019-01-10 07:42:20.445
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-10 07:42:20.344
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-10 07:42:20.256
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-10 07:42:20.207
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-09 19:04:34.969
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-09 19:04:34.923
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-09 19:04:34.868
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-09 19:04:34.825
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz
Percentage of memory in use: 25%
Total physical RAM: 8066.42 MB
Available physical RAM: 5984.47 MB
Total Virtual: 9346.42 MB
Available Virtual: 7416.91 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:166.34 GB) (Free:113.52 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:310.37 GB) (Free:310.25 GB) NTFS
\\?\Volume{a86f6fbd-6a26-4af6-8287-7b573c56c4bf}\ () (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: B1389AF8)
Partition: GPT.
==================== End of Addition.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12.01.2019
Ran by lenovo (administrator) on DESKTOP-P4EH0F7 (13-01-2019 09:35:57)
Running from C:\Users\lenovo\Downloads
Loaded Profiles: lenovo (Available Profiles: lenovo)
Platform: Windows 10 Pro Version 1809 17763.253 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\portcommunicationservice\PCSVC.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\portcommunicationservice\DeviceControlLog.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(Lenovo Group Limited) C:\Windows\SysWOW64\Lenovo\PowerMgr\EasyResume.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_a6dc7343c725f003\driver\tphkload.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNE799~1.INF\driver\tpnumlkd.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNE799~1.INF\driver\tposd.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNE799~1.INF\driver\shtctky.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178912 2016-05-25] (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-624539942-2889417632-4096173677-1001\...\Run: [] => [X]
HKU\S-1-5-21-624539942-2889417632-4096173677-1001\...\Run: [Advanced SystemCare 12] => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
HKU\S-1-5-21-624539942-2889417632-4096173677-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-12] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Select a coupon.lnk [2018-04-19]
ShortcutTarget: Select a coupon.lnk -> C:\Program Files\epson\TMCommandEmulator\PopupWindow.exe (Seiko Epson Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TM-T20II Utility(Automatic Restore).lnk [2018-04-19]
ShortcutTarget: TM-T20II Utility(Automatic Restore).lnk -> C:\Program Files (x86)\EPSON\TM-T20II Software\TMT20IIUTL\TMRESTOREAPP.exe (Seiko Epson Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 77.236.192.130 77.236.192.150
Tcpip\..\Interfaces\{d19095a6-442d-4e93-bdea-033028fbea9b}: [DhcpNameServer] 77.236.192.130 77.236.192.150
Internet Explorer:
==================
HKU\S-1-5-21-624539942-2889417632-4096173677-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://new.restauracesatlava.cz/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-11-20] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-11-14] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-14] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-14] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-14] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-14] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\VNDptKDv.default [2019-01-02]
FF Extension: (Avira Browser Safety) - C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\VNDptKDv.default\Extensions\abs@avira.com [2019-01-02]
FF Extension: (Avira Password Manager) - C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\VNDptKDv.default\Extensions\passwordmanager@avira.com [2019-01-02]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-08-15] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-08-15] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.cz/ig","hxxps://www.google.c ... oogle.com/"
CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default [2019-01-13]
CHR Extension: (Prezentace) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-22]
CHR Extension: (Dokumenty) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-22]
CHR Extension: (Disk Google) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (YouTube) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-22]
CHR Extension: (Avira Password Manager) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2019-01-10]
CHR Extension: (Tabulky) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-22]
CHR Extension: (Avira Browser Safety) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-01-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (AdBlock) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-12-11]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-01-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-02-22]
CHR Extension: (Chrome Media Router) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-07]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9646240 2018-11-20] (Microsoft Corporation)
S3 ContoPrnServerSvc; C:\Conto\CPrnServerSvc.exe [6363136 2017-12-04] (CONSULTA BÜROTECHNIK, s.r.o.) [File not signed]
R2 EPSON_Device_Control_Log_Service; C:\Program Files\epson\portcommunicationservice\DeviceControlLog.exe [408064 2017-12-08] (SEIKO EPSON CORPORATION) [File not signed]
R2 EPSON_Port_Communication_Service; C:\Program Files\epson\portcommunicationservice\PCSVC.exe [582144 2017-12-08] (SEIKO EPSON CORPORATION) [File not signed]
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [532968 2018-05-19] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370736 2018-09-18] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [File not signed]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [File not signed]
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-05-25] (Intel Corporation)
R2 Lenovo Instant On; C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\EasyResume.exe [2351504 2018-11-06] (Lenovo Group Limited)
R2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [773944 2018-09-12] (Lenovo.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-09-05] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324576 2017-09-21] (Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381128 2019-01-09] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2018-09-15] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23880 2018-10-22] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [268328 2018-10-31] (Synaptics Incorporated)
S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11660528 2018-12-07] (TeamViewer GmbH)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_a6dc7343c725f003\driver\TPHKLOAD.exe [422544 2018-07-18] (Lenovo Group Limited)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-07-31] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-07-31] (Microsoft Corporation)
S3 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4059744 2018-09-05] (Intel® Corporation)
S2 AdvancedSystemCareService12; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 cpuz143; C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [48960 2019-01-13] (CPUID)
S3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [41976 2015-06-26] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136728 2018-05-16] (Intel Corporation)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [8714872 2018-09-26] (Intel Corporation)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [41272 2018-09-12] (Lenovo.)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [777944 2016-04-07] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [46120 2018-10-31] (Synaptics Incorporated)
R3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [757824 2016-12-26] (Sunplus Innovation Technology Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46584 2018-07-31] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [340008 2018-07-31] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-07-31] (Microsoft Corporation)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-13 09:35 - 2019-01-13 09:36 - 000017753 _____ C:\Users\lenovo\Downloads\FRST.txt
2019-01-13 09:35 - 2019-01-13 09:35 - 000000000 ____D C:\FRST
2019-01-13 09:34 - 2019-01-13 09:34 - 000000000 ____D C:\AdwCleaner
2019-01-13 09:25 - 2019-01-13 09:25 - 007320272 _____ (Malwarebytes) C:\Users\lenovo\Downloads\Nepotvrzeno 941225.crdownload
2019-01-13 09:25 - 2019-01-13 09:25 - 007320272 _____ (Malwarebytes) C:\Users\lenovo\Downloads\AdwCleaner (1).exe
2019-01-13 09:23 - 2019-01-13 09:23 - 002427392 _____ (Farbar) C:\Users\lenovo\Downloads\FRST64.exe
2019-01-13 09:08 - 2019-01-13 09:08 - 000000000 ___HD C:\$Windows.~WS
2019-01-13 09:08 - 2019-01-13 09:08 - 000000000 ____D C:\$WINDOWS.~BT
2019-01-13 09:04 - 2019-01-13 09:04 - 000388608 _____ (Trend Micro Inc.) C:\Users\lenovo\Downloads\hijackthis.exe
2019-01-13 09:01 - 2019-01-13 09:01 - 019229160 _____ (Microsoft Corporation) C:\Users\lenovo\Downloads\MediaCreationTool1809.exe
2019-01-10 12:15 - 2019-01-10 12:15 - 000000000 ___HD C:\$SysReset
2019-01-10 10:47 - 2019-01-10 10:49 - 000251367 _____ C:\Users\lenovo\Downloads\Faktura Gastro 2 Univerzita.pdf
2019-01-10 10:47 - 2019-01-10 10:48 - 000251366 _____ C:\Users\lenovo\Downloads\Faktura Gastro 1 Univerzita.pdf
2019-01-10 07:51 - 2019-01-10 07:51 - 000003118 _____ C:\WINDOWS\System32\Tasks\ASC12_PerformanceMonitor
2019-01-10 07:50 - 2019-01-13 09:34 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\IObit
2019-01-10 07:50 - 2019-01-13 09:34 - 000000000 ____D C:\Users\lenovo\AppData\LocalLow\IObit
2019-01-10 07:50 - 2019-01-13 09:34 - 000000000 ____D C:\ProgramData\IObit
2019-01-10 07:50 - 2019-01-13 09:34 - 000000000 ____D C:\Program Files (x86)\IObit
2019-01-10 07:50 - 2019-01-10 07:53 - 000002238 _____ C:\Users\Public\Desktop\Advanced SystemCare 12.lnk
2019-01-10 07:50 - 2019-01-10 07:51 - 000000000 ____D C:\ProgramData\ProductData
2019-01-10 07:50 - 2019-01-10 07:50 - 000002914 _____ C:\WINDOWS\System32\Tasks\ASC12_SkipUac_lenovo
2019-01-10 07:50 - 2019-01-10 07:50 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2019-01-10 07:50 - 2019-01-10 07:50 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
2019-01-10 07:45 - 2019-01-10 07:46 - 041515816 _____ (IObit ) C:\Users\lenovo\Downloads\advanced-systemcare-setup.exe
2019-01-10 07:43 - 2019-01-10 07:53 - 000002588 _____ C:\WINDOWS\System32\Tasks\AviraSystemSpeedupRemoval
2019-01-09 19:10 - 2019-01-09 19:10 - 005440016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-01-09 19:10 - 2019-01-09 19:10 - 003550592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-01-09 19:10 - 2019-01-09 19:10 - 002469648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-01-09 19:10 - 2019-01-09 19:10 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-01-09 19:10 - 2019-01-09 19:10 - 001201136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 026806784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 023440384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 020811776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 019024384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 012151808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 009677352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 007857152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 006544800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 006057984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 003952952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 003380224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 003338328 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002986352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002777432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002626360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-09 19:09 - 2019-01-09 19:09 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002275896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002186752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001058848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000662528 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000178696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-09 19:09 - 2019-01-09 19:09 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000140808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-09 19:09 - 2019-01-09 19:09 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000098816 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-09 19:09 - 2019-01-09 19:09 - 000047112 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-01-05 07:50 - 2019-01-05 07:51 - 053065250 _____ C:\Users\lenovo\Desktop\contodata_20190105_0750.xml
2019-01-05 07:46 - 2019-01-10 07:53 - 000000000 ____D C:\Users\lenovo\Desktop\šatlava
2019-01-03 10:09 - 2018-10-31 23:41 - 000428584 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2019-01-03 10:09 - 2018-10-31 23:41 - 000345128 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo50-11.dll
2019-01-03 10:09 - 2018-10-31 23:40 - 000057384 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2019-01-03 10:09 - 2018-10-31 23:40 - 000046120 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2019-01-03 10:09 - 2018-10-31 23:40 - 000045096 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2019-01-03 09:00 - 2019-01-03 09:00 - 000146503 _____ C:\Users\lenovo\Downloads\eet_data_542642522.zip
2019-01-03 08:34 - 2019-01-03 08:34 - 000001353 _____ C:\Users\Public\Desktop\Intel SSD Toolbox.lnk
2019-01-03 08:31 - 2019-01-03 08:32 - 098443832 _____ (Intel Corporation) C:\Users\lenovo\Downloads\Intel SSD Toolbox - v3.5.8.exe
2019-01-03 08:28 - 2019-01-03 08:28 - 000000000 ____D C:\Users\lenovo\Downloads\FirmwareUpdateTool_v3_0_5
2019-01-03 08:17 - 2019-01-03 08:17 - 058625571 _____ C:\Users\lenovo\Downloads\FirmwareUpdateTool_v3_0_5.zip
2019-01-03 08:13 - 2019-01-03 08:13 - 000000000 ____D C:\Users\lenovo\Downloads\lenovo_samsung_firmware
2019-01-03 08:12 - 2019-01-03 08:13 - 006102756 _____ C:\Users\lenovo\Downloads\lenovo_samsung_firmware.zip
2019-01-02 11:31 - 2019-01-02 11:31 - 000000000 ____D C:\Users\lenovo\AppData\Local\mbamtray
2019-01-02 11:31 - 2019-01-02 11:31 - 000000000 ____D C:\Users\lenovo\AppData\Local\mbam
2019-01-02 11:29 - 2019-01-02 11:30 - 081227760 _____ (Malwarebytes ) C:\Users\lenovo\Downloads\mb3-setup-consumer-3.6.1.2711-1.0.508-1.0.8211.exe
2019-01-02 10:46 - 2019-01-02 10:46 - 000000000 ____D C:\Users\lenovo\AppData\Local\AviraSpeedup
2019-01-02 10:37 - 2019-01-02 10:37 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2019-01-02 10:36 - 2019-01-02 10:46 - 000000000 ____D C:\Users\lenovo\AppData\Local\Avira
2019-01-02 10:36 - 2019-01-02 10:44 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avira
2019-01-02 10:36 - 2019-01-02 10:36 - 000000000 ____D C:\Users\Public\PrivacyPal Sessions
2019-01-02 10:33 - 2019-01-13 09:26 - 000000000 ____D C:\ProgramData\Avira
2019-01-02 10:33 - 2019-01-10 07:55 - 000000000 ____D C:\Program Files (x86)\Avira
2019-01-02 10:33 - 2019-01-02 10:33 - 005822840 _____ (Avira Operations GmbH & Co. KG) C:\Users\lenovo\Downloads\avira_en_fass0_5c2c854dbea62__wsnew3.exe
2019-01-02 10:33 - 2019-01-02 10:33 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Mozilla
2019-01-02 10:23 - 2019-01-13 08:45 - 001693636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-02 10:21 - 2019-01-02 10:21 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-01-02 10:19 - 2019-01-13 09:35 - 000003700 _____ C:\WINDOWS\System32\Tasks\Lenovo Power Management Driver PnP Task
2019-01-02 10:19 - 2019-01-13 09:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-02 10:19 - 2019-01-10 07:53 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-01-02 10:19 - 2019-01-10 07:53 - 000002362 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2019-01-02 10:19 - 2019-01-10 07:50 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-624539942-2889417632-4096173677-1001
2019-01-02 10:19 - 2019-01-02 10:19 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2019-01-02 10:19 - 2019-01-02 10:19 - 000007623 _____ C:\WINDOWS\diagerr.xml
2019-01-02 10:19 - 2019-01-02 10:19 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-02 10:19 - 2019-01-02 10:19 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-02 10:19 - 2019-01-02 10:19 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-01-02 10:19 - 2019-01-02 10:19 - 000002306 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_Dolby
2019-01-02 10:19 - 2019-01-02 10:19 - 000000020 ___SH C:\Users\lenovo\ntuser.ini
2019-01-02 10:19 - 2019-01-02 10:19 - 000000000 ____D C:\WINDOWS\System32\Tasks\TVT
2019-01-02 10:19 - 2019-01-02 10:19 - 000000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2019-01-02 10:19 - 2019-01-02 10:19 - 000000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2019-01-02 10:19 - 2019-01-02 10:19 - 000000000 ____D C:\Users\lenovo\AppData\Local\PackageStaging
2019-01-02 10:18 - 2019-01-02 10:18 - 000000000 ____D C:\ProgramData\USOShared
2019-01-02 10:16 - 2019-01-02 10:16 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-01-02 10:15 - 2019-01-10 07:50 - 000002390 _____ C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-02 10:15 - 2019-01-05 08:47 - 000000000 ____D C:\Users\lenovo
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Šablony
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Soubory cookie
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Poslední
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Okolní tiskárny
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Okolní síť
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Nabídka Start
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Dokumenty
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Documents\Obrázky
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Documents\Hudba
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Documents\Filmy
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Data aplikací
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\AppData\Local\Data aplikací
2019-01-02 10:15 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-01-02 10:14 - 2018-09-18 19:29 - 000099920 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2019-01-02 10:13 - 2019-01-13 08:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-02 10:13 - 2019-01-10 07:55 - 000464568 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-01-02 09:55 - 2019-01-02 11:34 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-01-02 09:54 - 2019-01-02 09:55 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-01-02 09:51 - 2019-01-02 09:51 - 024617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 022112072 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 019284992 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 007724776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 006306152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005585056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005565440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005312512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005113008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004918784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004886016 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004765184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 004306432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004300800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 003983360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003744256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003577856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003504640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003379000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002927104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002883584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002721792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 002702536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002689536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-01-02 09:51 - 2019-01-02 09:51 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-01-02 09:51 - 2019-01-02 09:51 - 002149352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002072384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001842600 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001751560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001696216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-01-02 09:51 - 2019-01-02 09:51 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001674688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001672056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001612808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001483264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001467344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001466872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001456736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001401864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001395248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 001341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-01-02 09:51 - 2019-01-02 09:51 - 001331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001294864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001289400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001282432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001259000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-02 09:51 - 2019-01-02 09:51 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001219584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2019-01-02 09:51 - 2019-01-02 09:51 - 001180760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001177632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2019-01-02 09:51 - 2019-01-02 09:51 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001097312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001073448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 001048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001026992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000850960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000828936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000763032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000743432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000667152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000650040 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000649736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000566584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000495624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000298536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000193016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000130088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000091640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-01-02 09:49 - 2019-01-02 09:49 - 006347776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2019-01-02 09:49 - 2019-01-02 09:49 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2019-01-02 09:49 - 2019-01-02 09:49 - 005489664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2019-01-02 09:49 - 2019-01-02 09:49 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-01-02 09:48 - 2019-01-02 09:48 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-01-02 09:48 - 2019-01-02 09:48 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-01-02 09:48 - 2019-01-02 09:48 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-01-02 09:48 - 2019-01-02 09:48 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-01-02 09:48 - 2019-01-02 09:48 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-01-02 09:48 - 2019-01-02 09:48 - 000000000 ____D C:\Program Files\MSBuild
2019-01-02 09:48 - 2019-01-02 09:48 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-01-02 09:48 - 2019-01-02 09:48 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-01-02 09:38 - 2019-01-02 09:38 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-01-02 09:05 - 2019-01-13 09:09 - 000000000 ___DC C:\WINDOWS\Panther
2019-01-02 09:00 - 2019-01-02 09:00 - 000000000 ____D C:\Users\lenovo\AppData\Local\Tvsukernel
2018-12-27 09:22 - 2018-12-27 09:22 - 000000000 ____D C:\Users\lenovo\AppData\Local\ElevatedDiagnostics
2018-12-27 08:23 - 2018-12-27 08:23 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ldiagio_01009.Wdf
2018-12-21 13:19 - 2018-12-21 15:21 - 2148635375 _____ C:\Users\lenovo\Downloads\takeout-20181220T200841Z-001.zip
2018-12-20 08:42 - 2018-12-20 08:42 - 000013593 _____ C:\Users\lenovo\Downloads\ČSOB 21.12.2018.xlsx
2018-12-17 09:42 - 2018-12-17 09:42 - 000017021 _____ C:\Users\lenovo\Downloads\Faktura Gastro 109 Daltech.xlsx
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-13 09:35 - 2018-10-17 06:45 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-01-13 09:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-13 09:35 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-13 09:35 - 2018-02-11 13:40 - 000000000 __SHD C:\Users\lenovo\IntelGraphicsProfiles
2019-01-13 09:34 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-13 09:32 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-13 09:26 - 2018-02-22 11:19 - 000000000 ____D C:\ProgramData\Package Cache
2019-01-13 08:45 - 2018-09-15 18:39 - 000718018 _____ C:\WINDOWS\system32\perfh005.dat
2019-01-13 08:45 - 2018-09-15 18:39 - 000145062 _____ C:\WINDOWS\system32\perfc005.dat
2019-01-13 08:45 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-01-10 08:30 - 2018-02-23 11:38 - 000000000 ____D C:\Users\lenovo\Documents\šatlava
2019-01-10 08:30 - 2018-02-09 17:58 - 000000000 ____D C:\Users\lenovo\AppData\Local\Packages
2019-01-10 07:53 - 2018-02-22 12:28 - 000000000 ___RD C:\Users\lenovo\Documents\Plocha
2019-01-10 07:50 - 2018-02-09 18:18 - 000000000 ___RD C:\Users\lenovo\OneDrive
2019-01-10 07:39 - 2018-02-22 11:54 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-01-09 19:16 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-01-09 19:16 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-01-09 19:16 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-01-09 19:16 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-09 19:13 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-09 19:12 - 2018-02-22 11:48 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-09 19:10 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\servicing
2019-01-09 19:10 - 2018-02-22 11:48 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-03 12:08 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-03 08:34 - 2018-02-22 11:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2019-01-03 08:33 - 2018-02-11 13:40 - 000000000 ____D C:\Program Files (x86)\Intel
2019-01-03 07:59 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\appcompat
2019-01-02 20:48 - 2018-09-15 08:36 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 20:48 - 2018-09-15 08:36 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-02 10:48 - 2018-02-23 11:39 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\uTorrent
2019-01-02 10:47 - 2018-09-18 08:12 - 001174339 _____ C:\WINDOWS\TestDll.bin
2019-01-02 10:19 - 2018-09-15 08:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-01-02 10:19 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2019-01-02 10:19 - 2018-02-09 17:58 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-01-02 10:19 - 2018-02-09 17:58 - 000000000 ___RD C:\Users\lenovo\3D Objects
2019-01-02 10:19 - 2018-02-09 17:58 - 000000000 ____D C:\Users\lenovo\AppData\Local\ConnectedDevicesPlatform
2019-01-02 10:18 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-01-02 10:18 - 2018-02-22 11:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-01-02 10:18 - 2018-02-22 11:35 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-01-02 10:17 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Registration
2019-01-02 10:17 - 2018-05-14 11:41 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-01-02 10:16 - 2018-12-01 08:25 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2019-01-02 10:16 - 2018-02-23 11:39 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2019-01-02 10:15 - 2018-02-22 11:18 - 000000000 ____D C:\Program Files (x86)\SunplusIT Integrated Camera
2019-01-02 10:14 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ServiceState
2019-01-02 10:14 - 2018-02-22 11:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2019-01-02 10:14 - 2018-02-22 10:57 - 000335633 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2019-01-02 10:14 - 2018-02-22 10:57 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-01-02 10:14 - 2018-02-22 10:57 - 000000000 ____D C:\WINDOWS\system32\DAX2
2019-01-02 10:14 - 2018-02-11 13:40 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-01-02 10:14 - 2018-02-11 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2019-01-02 10:13 - 2018-11-27 12:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-01-02 10:13 - 2018-11-15 10:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo
2019-01-02 10:13 - 2018-10-10 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2019-01-02 10:13 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-01-02 10:13 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\spool
2019-01-02 10:13 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-01-02 10:13 - 2018-09-15 08:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-01-02 10:13 - 2018-04-19 06:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Advanced Printer Driver 5
2019-01-02 10:13 - 2018-04-19 06:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON TM Bluetooth Connector
2019-01-02 10:13 - 2018-04-19 06:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON TM-T20II
2019-01-02 10:13 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-01-02 10:13 - 2018-03-22 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2019-01-02 10:13 - 2018-03-22 08:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2019-01-02 10:13 - 2018-03-01 09:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView
2019-01-02 10:13 - 2018-02-22 14:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Consulta Conto
2019-01-02 10:13 - 2018-02-22 11:20 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2019-01-02 10:13 - 2018-02-11 13:40 - 000000000 ____D C:\Program Files\Intel
2019-01-02 10:13 - 2017-09-29 14:46 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2019-01-02 10:08 - 2018-09-15 08:36 - 000000000 ____D C:\WINDOWS\Setup
2019-01-02 09:59 - 2018-09-15 08:33 - 000000000 __RHD C:\Users\Public\Libraries
2019-01-02 09:59 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-01-02 09:56 - 2018-12-04 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2019-01-02 09:56 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-01-02 09:55 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Resources
2019-01-02 09:55 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Help
2019-01-02 09:55 - 2018-04-19 06:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson
2019-01-02 09:55 - 2018-02-22 11:21 - 000000000 ____D C:\Program Files\Synaptics
2019-01-02 09:55 - 2018-02-22 10:57 - 000000000 ____D C:\Program Files\Realtek
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-01-02 09:49 - 2018-09-15 18:40 - 000000000 ____D C:\WINDOWS\OCR
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2018-12-27 09:22 - 2018-02-22 10:55 - 000000000 ____D C:\Users\lenovo\AppData\Local\LenovoServiceBridge
2018-12-27 08:23 - 2018-12-04 20:01 - 000000000 ____D C:\Users\lenovo\AppData\Local\Lenovo
2018-12-27 08:23 - 2018-02-22 11:03 - 000000000 ____D C:\ProgramData\Lenovo
2018-12-22 09:12 - 2018-02-27 12:28 - 000000000 ____D C:\Users\lenovo\Desktop\PDF
2018-12-17 17:24 - 2018-11-19 08:06 - 000001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk
2018-12-17 17:24 - 2018-11-19 08:06 - 000001028 _____ C:\Users\Public\Desktop\TeamViewer 14.lnk
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
mám problém s rapidním zpomalením notebooku, než bych se pustil do kompletního přeinstalovaní OS, tak bych rád zkusil, jeslti mě tohle nepomůže...
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12.01.2019
Ran by lenovo (13-01-2019 09:36:33)
Running from C:\Users\lenovo\Downloads
Windows 10 Pro Version 1809 17763.253 (X64) (2019-01-02 09:19:33)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-624539942-2889417632-4096173677-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-624539942-2889417632-4096173677-503 - Limited - Disabled)
Guest (S-1-5-21-624539942-2889417632-4096173677-501 - Limited - Disabled)
lenovo (S-1-5-21-624539942-2889417632-4096173677-1001 - Administrator - Enabled) => C:\Users\lenovo
WDAGUtilityAccount (S-1-5-21-624539942-2889417632-4096173677-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 18.01 (HKLM-x32\...\7-Zip) (Version: 18.01 - Igor Pavlov)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20064 - Adobe Systems Incorporated)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Conto Suite (HKLM-x32\...\{D7D800EF-8CEF-4244-B2B5-6BAC4B31A8CE}_is1) (Version: 2.1.0.3 - Consulta Bürotechnik, s.r.o.)
EPSON Advanced Printer Driver for TM-T20II Ver.5 (HKLM-x32\...\EPSON Advanced Printer Driver 5 For TM-T20II) (Version: 5.09.0.0 - Seiko Epson Corporation)
EPSON APD5 Plugin for TM-T20II (HKLM\...\{C3757CB6-47FC-4ECD-ACBF-C7C005948EAC}) (Version: 5.09.0.0 - Seiko Epson Corporation)
EPSON APD5 PrinterReg for TM-T20II (HKLM\...\{E528A3BB-49DB-4721-B1B4-E1CAC97863B4}) (Version: 5.09.0.0 - Seiko Epson Corporation)
EPSON APD5 TM-T20II Sample&Manual (English) (HKLM-x32\...\{3E4541AE-285D-476B-AEDD-17C8620C767C}) (Version: 1.00.0000 - SEIKO EPSON Corporation)
EPSON Port Communication Service (HKLM\...\{8B933A2E-4C01-4681-821D-F055F455F6C0}) (Version: 3.20.0 - SEIKO EPSON CORPORATION)
EPSON TM Bluetooth Connector (HKLM-x32\...\{78758F5A-1778-49F0-B4CE-B83B789B2D90}) (Version: 2.03.0000 - Seiko Epson Corporation)
EPSON TM Coupon Package (HKLM-x32\...\{60ED98A7-BE97-4F26-B32E-5087337C6044}) (Version: 2.10.0000 - Seiko Epson Corporation)
EPSON TM-T20II Utility (HKLM-x32\...\{43ABD186-CBE1-4E66-BE6D-3FC011A7CE03}) (Version: 1.2.0.0 - Seiko Epson Corporation)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.2.0.9297 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5058 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{b23c55fa-5271-4d64-ba8f-6718be55b9a7}) (Version: 10.1.1.33 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{B294CE94-FE0F-4427-910C-180AF9FCFED1}) (Version: 1.0.1.620 - Intel Corporation)
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.5.8.400 - Intel Corporation)
IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.20 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.17 - Lenovo) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-624539942-2889417632-4096173677-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.5 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0074 - Lenovo)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.11029.20079 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.11029.20079 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-624539942-2889417632-4096173677-1001\...\OneDriveSetup.exe) (Version: 18.240.1202.0003 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.3399 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
Zoner Photo Studio X (HKLM\...\ZonerPhotoStudioX_CZ_is1) (Version: 19.1806.2.72 - ZONER software)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-07-12] (Foxit Software Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-09-18] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-07-12] (Foxit Software Inc.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {051AD285-B0D0-494B-BBEF-F5B99C6BAFED} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-27] (Microsoft Corporation)
Task: {095165E5-A91F-4ACE-91E0-3609AC68A1C5} - System32\Tasks\ASC12_SkipUac_lenovo => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {14DF9803-2F7C-411C-AA88-D5FCA89A9B1F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {1CAD8540-33D9-4CA9-8CFD-36A6F42F401F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-20] (Microsoft Corporation)
Task: {1D9F6868-968D-4E70-B0DE-66328FBCD752} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-02-19] (Intel(R) Corporation)
Task: {2498DC20-FB87-40E3-BCDF-574B6439F595} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-27] (Microsoft Corporation)
Task: {2FAB486C-ED62-4F17-AAC1-588E76139563} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [2018-09-12] (Lenovo.)
Task: {3942D623-735B-4424-867A-26FDC35A1FF0} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe [2018-11-06] ()
Task: {4101895F-6C47-4369-AC99-BE1F45C9421C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-27] (Microsoft Corporation)
Task: {462B82DE-01AC-4FB0-A18C-B8028BCE53CD} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-09-21] (Realtek Semiconductor)
Task: {48DB511C-48AF-445B-89A1-09712709039A} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-624539942-2889417632-4096173677-1001 => C:\Users\lenovo\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [2018-10-29] (Lenovo Group Limited)
Task: {495F2FD6-1C5D-44D4-B487-DBA02FD6ACD6} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [2018-11-06] (Lenovo)
Task: {52612189-1DA1-44E0-ACA1-8265012E3992} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-09-21] (Realtek Semiconductor)
Task: {58C9FBAC-24BE-4B89-B6F2-61C9A3655A35} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-22] (Google Inc.)
Task: {631E115E-2171-4309-9547-44772571B21B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-22] (Google Inc.)
Task: {6463408C-2EB3-4B27-9BDA-D7D8DBE682FF} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2018-10-22] ()
Task: {6B51BADE-FB6C-4EB1-926B-287359EE3186} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-15] (Microsoft Corporation)
Task: {72B57ED1-7A9A-4126-A880-DEAB156125FC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-27] (Microsoft Corporation)
Task: {78F9785F-4DCA-4B80-9063-27327C06E549} - System32\Tasks\AviraSystemSpeedupRemoval => %comspec% [Argument = /C rmdir "C:\Program Files (x86)\Avira\System Speedup" /S /Q & schtasks /Delete /F /TN AviraSystemSpeedupRemoval]
Task: {A351E9E7-4335-43C2-BE49-1C8CA525F29F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-11-20] (Microsoft Corporation)
Task: {AB5CECD4-3DD0-49CC-AF73-03646F310285} - System32\Tasks\ASC12_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {E11C5803-9310-4BD6-A264-38258898E11E} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2018-10-22] ()
Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-09-15] ()
Task: {EBB4C987-B9F0-476D-8394-3116D1C0E95E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-15] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\Windows\System32\InputHost.dll
2018-09-26 09:08 - 2018-09-26 09:08 - 000165160 _____ () C:\WINDOWS\system32\IntelWifiIhv04.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-11-22 10:10 - 2018-09-18 19:29 - 000398808 _____ () C:\WINDOWS\system32\igfxTray.exe
2018-09-15 08:28 - 2018-09-15 08:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2019-01-04 08:03 - 2019-01-04 08:03 - 002834944 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.1811.3343.0_x64__8wekyb3d8bbwe\People.BackgroundTasks.dll
2019-01-04 08:03 - 2019-01-04 08:03 - 000120320 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.1811.3343.0_x64__8wekyb3d8bbwe\PeopleUtilRT.dll
2019-01-04 08:03 - 2019-01-04 08:03 - 009032704 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.1811.3343.0_x64__8wekyb3d8bbwe\Microsoft.People.NativeComponents.dll
2018-12-14 20:56 - 2018-12-14 20:59 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-12-14 20:56 - 2018-12-14 20:59 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2019-01-13 09:32 - 2019-01-13 09:32 - 002907136 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\PhoneCommunicationAppService.dll
2019-01-13 09:32 - 2019-01-13 09:32 - 002172928 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.AppCore.dll
2019-01-13 09:32 - 2019-01-13 09:32 - 001795584 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\PhoneContentDataStore.dll
2018-09-15 18:45 - 2018-09-15 18:45 - 004734464 _____ () C:\Program Files\WindowsApps\Microsoft.Wallet_2.2.18179.0_x64__8wekyb3d8bbwe\Microsoft.Wallet.dll
2018-12-11 16:43 - 2018-12-11 16:47 - 034870272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-12-11 16:43 - 2018-12-11 16:47 - 000292352 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-02-22 11:15 - 2018-02-22 11:15 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2018-11-29 19:20 - 2018-11-29 19:20 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-12-11 16:43 - 2018-12-11 16:47 - 005967872 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-12-11 16:43 - 2018-12-11 16:47 - 009072128 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-07-09 21:52 - 2018-07-09 21:53 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-10-04 10:41 - 2018-10-04 10:42 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-14 20:56 - 2018-12-14 20:59 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-14 20:56 - 2018-12-14 20:59 - 010927616 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-12-14 20:56 - 2018-12-14 20:59 - 002916864 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\skypert.dll
2019-01-13 09:32 - 2019-01-13 09:32 - 005172224 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.exe
2018-10-31 15:36 - 2018-10-31 15:39 - 001004032 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-11-06 15:48 - 2018-11-06 15:49 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-06 15:48 - 2018-11-06 15:49 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 14:46 - 2017-09-29 14:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\
HKU\S-1-5-21-624539942-2889417632-4096173677-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img3.jpg
DNS Servers: 77.236.192.130 - 77.236.192.150
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E0C7B5EC-3DAC-4211-9E71-5EABDD38A4B4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{A6BF105F-280C-42B8-A9C8-B73DC44E5BE2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{1B6E827D-FC26-4552-AFAD-3419B1CC72C4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{EC762325-390B-43FB-87D5-652174052C11}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{A3DBB8E6-1F5F-4D75-AEB1-C2C89E6D5BE6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{B4ED5B12-E171-491A-8276-A5CA713BDC94}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ()
FirewallRules: [{CB8FFD89-22FC-4D2D-953D-A2711EF749D0}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe ()
FirewallRules: [{47103D2A-42C3-47B2-8277-9392AE476FFC}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe ()
FirewallRules: [{F854C263-477B-42EF-8C7C-290E6E21CB8B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{63BF862C-7837-4CC6-853C-E617BF1E8CEB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{7783AFCE-97B4-49A5-A396-42471758E5BC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation)
FirewallRules: [{D331EED1-F69F-4CBA-AF36-D61904E9283A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{30B377A2-504B-4D62-9E06-DD7CD89B21A1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [TCP Query User{138E0B9E-8003-41A6-9AD3-DD2A1B968DA7}C:\users\lenovo\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lenovo\appdata\roaming\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [UDP Query User{EFADEB55-E4AE-438B-9079-7F72D28908E0}C:\users\lenovo\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lenovo\appdata\roaming\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [{29387A5A-637E-4284-96B0-C2F24F96DBB0}] => (Allow) C:\Program Files (x86)\EPSON\TM-T20II Software\TMT20IIUTL\TMT20IIUTL.EXE (Seiko Epson Corporation)
FirewallRules: [{29652616-7651-4929-9D30-7F0DE62BCF11}] => (Allow) C:\Program Files (x86)\EPSON\TM-T20II Software\TMT20IIUTL\TMT20IIUTL.EXE (Seiko Epson Corporation)
FirewallRules: [{846C2732-8AE5-482F-B154-A53A34BA9C2C}] => (Allow) C:\Program Files (x86)\EPSON\EPSON Advanced Printer Driver 5\NetworkSettingTool\APDNetSetting.exe (Seiko Epson Corporation)
FirewallRules: [{8DCDAB16-AEF7-4D41-BEB6-28168B6BA0F0}] => (Allow) C:\Program Files (x86)\EPSON\EPSON Advanced Printer Driver 5\NetworkSettingTool\APDNetSetting.exe (Seiko Epson Corporation)
==================== Restore Points =========================
10-01-2019 18:56:47 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/10/2019 06:46:48 PM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Failed to process session change. System.NullReferenceException: Object reference not set to an instance of an object.
at Avira.OE.ServiceHost.ServiceHost.OnSessionChange(Object sender, SessionChangeEventArgs args)
at Avira.OE.ServiceHost.Program.WindowsServiceOnSessionChange(Object sender, SessionChangeEventArgs sessionChangeEventArgs)
at Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHandler`1 eventHandler, Object sender, T eventArgs)
at Avira.OE.ServiceHost.WindowsService.OnSessionChange(SessionChangeDescription changeDescription)
at System.ServiceProcess.ServiceBase.DeferredSessionChange(Int32 eventType, Int32 sessionId)
Error: (01/10/2019 12:14:15 PM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Failed to process session change. System.NullReferenceException: Object reference not set to an instance of an object.
at Avira.OE.ServiceHost.ServiceHost.OnSessionChange(Object sender, SessionChangeEventArgs args)
at Avira.OE.ServiceHost.Program.WindowsServiceOnSessionChange(Object sender, SessionChangeEventArgs sessionChangeEventArgs)
at Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHandler`1 eventHandler, Object sender, T eventArgs)
at Avira.OE.ServiceHost.WindowsService.OnSessionChange(SessionChangeDescription changeDescription)
at System.ServiceProcess.ServiceBase.DeferredSessionChange(Int32 eventType, Int32 sessionId)
Error: (01/10/2019 11:37:54 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Failed to process session change. System.NullReferenceException: Object reference not set to an instance of an object.
at Avira.OE.ServiceHost.ServiceHost.OnSessionChange(Object sender, SessionChangeEventArgs args)
at Avira.OE.ServiceHost.Program.WindowsServiceOnSessionChange(Object sender, SessionChangeEventArgs sessionChangeEventArgs)
at Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHandler`1 eventHandler, Object sender, T eventArgs)
at Avira.OE.ServiceHost.WindowsService.OnSessionChange(SessionChangeDescription changeDescription)
at System.ServiceProcess.ServiceBase.DeferredSessionChange(Int32 eventType, Int32 sessionId)
Error: (01/10/2019 07:55:38 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Failed to process session change. System.NullReferenceException: Object reference not set to an instance of an object.
at Avira.OE.ServiceHost.ServiceHost.OnSessionChange(Object sender, SessionChangeEventArgs args)
at Avira.OE.ServiceHost.Program.WindowsServiceOnSessionChange(Object sender, SessionChangeEventArgs sessionChangeEventArgs)
at Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHandler`1 eventHandler, Object sender, T eventArgs)
at Avira.OE.ServiceHost.WindowsService.OnSessionChange(SessionChangeDescription changeDescription)
at System.ServiceProcess.ServiceBase.DeferredSessionChange(Int32 eventType, Int32 sessionId)
Error: (01/10/2019 07:45:20 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\msiexec.exe /V; Popis = Removed Avira Software Updater; Chyba = 0x80070422).
Error: (01/10/2019 07:45:15 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\msiexec.exe /V; Popis = Removed Avira Software Updater; Chyba = 0x80070422).
Error: (01/10/2019 07:44:18 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\msiexec.exe /V; Popis = Removed Avira Safe Shopping; Chyba = 0x80070422).
Error: (01/10/2019 07:43:57 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\msiexec.exe /V; Popis = Removed Avira Safe Shopping; Chyba = 0x80070422).
System errors:
=============
Error: (01/13/2019 09:35:10 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (01/13/2019 09:35:10 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (01/13/2019 09:35:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService12 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (01/13/2019 09:34:46 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\WINDOWS\system32\IntelWifiIhv04.dll
Error: (01/13/2019 09:34:46 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\WINDOWS\system32\IntelWifiIhv04.dll
Error: (01/13/2019 09:34:45 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\WINDOWS\system32\IntelWifiIhv04.dll
Error: (01/13/2019 09:34:42 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Lenovo Platform Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (01/13/2019 09:34:42 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Lenovo EasyResume Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===================================
Date: 2019-01-10 07:42:20.445
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-10 07:42:20.344
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-10 07:42:20.256
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-10 07:42:20.207
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-09 19:04:34.969
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-09 19:04:34.923
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-09 19:04:34.868
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-01-09 19:04:34.825
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz
Percentage of memory in use: 25%
Total physical RAM: 8066.42 MB
Available physical RAM: 5984.47 MB
Total Virtual: 9346.42 MB
Available Virtual: 7416.91 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:166.34 GB) (Free:113.52 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:310.37 GB) (Free:310.25 GB) NTFS
\\?\Volume{a86f6fbd-6a26-4af6-8287-7b573c56c4bf}\ () (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: B1389AF8)
Partition: GPT.
==================== End of Addition.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12.01.2019
Ran by lenovo (administrator) on DESKTOP-P4EH0F7 (13-01-2019 09:35:57)
Running from C:\Users\lenovo\Downloads
Loaded Profiles: lenovo (Available Profiles: lenovo)
Platform: Windows 10 Pro Version 1809 17763.253 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\portcommunicationservice\PCSVC.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\portcommunicationservice\DeviceControlLog.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(Lenovo Group Limited) C:\Windows\SysWOW64\Lenovo\PowerMgr\EasyResume.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_a6dc7343c725f003\driver\tphkload.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNE799~1.INF\driver\tpnumlkd.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNE799~1.INF\driver\tposd.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNE799~1.INF\driver\shtctky.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178912 2016-05-25] (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-624539942-2889417632-4096173677-1001\...\Run: [] => [X]
HKU\S-1-5-21-624539942-2889417632-4096173677-1001\...\Run: [Advanced SystemCare 12] => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
HKU\S-1-5-21-624539942-2889417632-4096173677-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-12] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Select a coupon.lnk [2018-04-19]
ShortcutTarget: Select a coupon.lnk -> C:\Program Files\epson\TMCommandEmulator\PopupWindow.exe (Seiko Epson Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TM-T20II Utility(Automatic Restore).lnk [2018-04-19]
ShortcutTarget: TM-T20II Utility(Automatic Restore).lnk -> C:\Program Files (x86)\EPSON\TM-T20II Software\TMT20IIUTL\TMRESTOREAPP.exe (Seiko Epson Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 77.236.192.130 77.236.192.150
Tcpip\..\Interfaces\{d19095a6-442d-4e93-bdea-033028fbea9b}: [DhcpNameServer] 77.236.192.130 77.236.192.150
Internet Explorer:
==================
HKU\S-1-5-21-624539942-2889417632-4096173677-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://new.restauracesatlava.cz/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-11-20] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-11-14] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-14] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-14] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-14] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-14] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\VNDptKDv.default [2019-01-02]
FF Extension: (Avira Browser Safety) - C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\VNDptKDv.default\Extensions\abs@avira.com [2019-01-02]
FF Extension: (Avira Password Manager) - C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\VNDptKDv.default\Extensions\passwordmanager@avira.com [2019-01-02]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-08-15] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-08-15] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.cz/ig","hxxps://www.google.c ... oogle.com/"
CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default [2019-01-13]
CHR Extension: (Prezentace) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-22]
CHR Extension: (Dokumenty) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-22]
CHR Extension: (Disk Google) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (YouTube) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-22]
CHR Extension: (Avira Password Manager) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2019-01-10]
CHR Extension: (Tabulky) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-22]
CHR Extension: (Avira Browser Safety) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-01-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (AdBlock) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-12-11]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-01-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-02-22]
CHR Extension: (Chrome Media Router) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-07]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9646240 2018-11-20] (Microsoft Corporation)
S3 ContoPrnServerSvc; C:\Conto\CPrnServerSvc.exe [6363136 2017-12-04] (CONSULTA BÜROTECHNIK, s.r.o.) [File not signed]
R2 EPSON_Device_Control_Log_Service; C:\Program Files\epson\portcommunicationservice\DeviceControlLog.exe [408064 2017-12-08] (SEIKO EPSON CORPORATION) [File not signed]
R2 EPSON_Port_Communication_Service; C:\Program Files\epson\portcommunicationservice\PCSVC.exe [582144 2017-12-08] (SEIKO EPSON CORPORATION) [File not signed]
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [532968 2018-05-19] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370736 2018-09-18] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [File not signed]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [File not signed]
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-05-25] (Intel Corporation)
R2 Lenovo Instant On; C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\EasyResume.exe [2351504 2018-11-06] (Lenovo Group Limited)
R2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [773944 2018-09-12] (Lenovo.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-09-05] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324576 2017-09-21] (Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381128 2019-01-09] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2018-09-15] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23880 2018-10-22] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [268328 2018-10-31] (Synaptics Incorporated)
S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11660528 2018-12-07] (TeamViewer GmbH)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_a6dc7343c725f003\driver\TPHKLOAD.exe [422544 2018-07-18] (Lenovo Group Limited)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-07-31] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-07-31] (Microsoft Corporation)
S3 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4059744 2018-09-05] (Intel® Corporation)
S2 AdvancedSystemCareService12; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 cpuz143; C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [48960 2019-01-13] (CPUID)
S3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [41976 2015-06-26] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136728 2018-05-16] (Intel Corporation)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [8714872 2018-09-26] (Intel Corporation)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [41272 2018-09-12] (Lenovo.)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [777944 2016-04-07] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [46120 2018-10-31] (Synaptics Incorporated)
R3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [757824 2016-12-26] (Sunplus Innovation Technology Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46584 2018-07-31] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [340008 2018-07-31] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-07-31] (Microsoft Corporation)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-13 09:35 - 2019-01-13 09:36 - 000017753 _____ C:\Users\lenovo\Downloads\FRST.txt
2019-01-13 09:35 - 2019-01-13 09:35 - 000000000 ____D C:\FRST
2019-01-13 09:34 - 2019-01-13 09:34 - 000000000 ____D C:\AdwCleaner
2019-01-13 09:25 - 2019-01-13 09:25 - 007320272 _____ (Malwarebytes) C:\Users\lenovo\Downloads\Nepotvrzeno 941225.crdownload
2019-01-13 09:25 - 2019-01-13 09:25 - 007320272 _____ (Malwarebytes) C:\Users\lenovo\Downloads\AdwCleaner (1).exe
2019-01-13 09:23 - 2019-01-13 09:23 - 002427392 _____ (Farbar) C:\Users\lenovo\Downloads\FRST64.exe
2019-01-13 09:08 - 2019-01-13 09:08 - 000000000 ___HD C:\$Windows.~WS
2019-01-13 09:08 - 2019-01-13 09:08 - 000000000 ____D C:\$WINDOWS.~BT
2019-01-13 09:04 - 2019-01-13 09:04 - 000388608 _____ (Trend Micro Inc.) C:\Users\lenovo\Downloads\hijackthis.exe
2019-01-13 09:01 - 2019-01-13 09:01 - 019229160 _____ (Microsoft Corporation) C:\Users\lenovo\Downloads\MediaCreationTool1809.exe
2019-01-10 12:15 - 2019-01-10 12:15 - 000000000 ___HD C:\$SysReset
2019-01-10 10:47 - 2019-01-10 10:49 - 000251367 _____ C:\Users\lenovo\Downloads\Faktura Gastro 2 Univerzita.pdf
2019-01-10 10:47 - 2019-01-10 10:48 - 000251366 _____ C:\Users\lenovo\Downloads\Faktura Gastro 1 Univerzita.pdf
2019-01-10 07:51 - 2019-01-10 07:51 - 000003118 _____ C:\WINDOWS\System32\Tasks\ASC12_PerformanceMonitor
2019-01-10 07:50 - 2019-01-13 09:34 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\IObit
2019-01-10 07:50 - 2019-01-13 09:34 - 000000000 ____D C:\Users\lenovo\AppData\LocalLow\IObit
2019-01-10 07:50 - 2019-01-13 09:34 - 000000000 ____D C:\ProgramData\IObit
2019-01-10 07:50 - 2019-01-13 09:34 - 000000000 ____D C:\Program Files (x86)\IObit
2019-01-10 07:50 - 2019-01-10 07:53 - 000002238 _____ C:\Users\Public\Desktop\Advanced SystemCare 12.lnk
2019-01-10 07:50 - 2019-01-10 07:51 - 000000000 ____D C:\ProgramData\ProductData
2019-01-10 07:50 - 2019-01-10 07:50 - 000002914 _____ C:\WINDOWS\System32\Tasks\ASC12_SkipUac_lenovo
2019-01-10 07:50 - 2019-01-10 07:50 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2019-01-10 07:50 - 2019-01-10 07:50 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
2019-01-10 07:45 - 2019-01-10 07:46 - 041515816 _____ (IObit ) C:\Users\lenovo\Downloads\advanced-systemcare-setup.exe
2019-01-10 07:43 - 2019-01-10 07:53 - 000002588 _____ C:\WINDOWS\System32\Tasks\AviraSystemSpeedupRemoval
2019-01-09 19:10 - 2019-01-09 19:10 - 005440016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-01-09 19:10 - 2019-01-09 19:10 - 003550592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-01-09 19:10 - 2019-01-09 19:10 - 002469648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-01-09 19:10 - 2019-01-09 19:10 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-01-09 19:10 - 2019-01-09 19:10 - 001201136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 026806784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 023440384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 020811776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 019024384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 012151808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 009677352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 007857152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 006544800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 006057984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 003952952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 003380224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 003338328 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002986352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002777432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002626360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-09 19:09 - 2019-01-09 19:09 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002275896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002186752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 001058848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000662528 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000178696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-09 19:09 - 2019-01-09 19:09 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000140808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-09 19:09 - 2019-01-09 19:09 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000098816 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2019-01-09 19:09 - 2019-01-09 19:09 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-09 19:09 - 2019-01-09 19:09 - 000047112 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-01-09 19:09 - 2019-01-09 19:09 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-01-05 07:50 - 2019-01-05 07:51 - 053065250 _____ C:\Users\lenovo\Desktop\contodata_20190105_0750.xml
2019-01-05 07:46 - 2019-01-10 07:53 - 000000000 ____D C:\Users\lenovo\Desktop\šatlava
2019-01-03 10:09 - 2018-10-31 23:41 - 000428584 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2019-01-03 10:09 - 2018-10-31 23:41 - 000345128 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo50-11.dll
2019-01-03 10:09 - 2018-10-31 23:40 - 000057384 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2019-01-03 10:09 - 2018-10-31 23:40 - 000046120 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2019-01-03 10:09 - 2018-10-31 23:40 - 000045096 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2019-01-03 09:00 - 2019-01-03 09:00 - 000146503 _____ C:\Users\lenovo\Downloads\eet_data_542642522.zip
2019-01-03 08:34 - 2019-01-03 08:34 - 000001353 _____ C:\Users\Public\Desktop\Intel SSD Toolbox.lnk
2019-01-03 08:31 - 2019-01-03 08:32 - 098443832 _____ (Intel Corporation) C:\Users\lenovo\Downloads\Intel SSD Toolbox - v3.5.8.exe
2019-01-03 08:28 - 2019-01-03 08:28 - 000000000 ____D C:\Users\lenovo\Downloads\FirmwareUpdateTool_v3_0_5
2019-01-03 08:17 - 2019-01-03 08:17 - 058625571 _____ C:\Users\lenovo\Downloads\FirmwareUpdateTool_v3_0_5.zip
2019-01-03 08:13 - 2019-01-03 08:13 - 000000000 ____D C:\Users\lenovo\Downloads\lenovo_samsung_firmware
2019-01-03 08:12 - 2019-01-03 08:13 - 006102756 _____ C:\Users\lenovo\Downloads\lenovo_samsung_firmware.zip
2019-01-02 11:31 - 2019-01-02 11:31 - 000000000 ____D C:\Users\lenovo\AppData\Local\mbamtray
2019-01-02 11:31 - 2019-01-02 11:31 - 000000000 ____D C:\Users\lenovo\AppData\Local\mbam
2019-01-02 11:29 - 2019-01-02 11:30 - 081227760 _____ (Malwarebytes ) C:\Users\lenovo\Downloads\mb3-setup-consumer-3.6.1.2711-1.0.508-1.0.8211.exe
2019-01-02 10:46 - 2019-01-02 10:46 - 000000000 ____D C:\Users\lenovo\AppData\Local\AviraSpeedup
2019-01-02 10:37 - 2019-01-02 10:37 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2019-01-02 10:36 - 2019-01-02 10:46 - 000000000 ____D C:\Users\lenovo\AppData\Local\Avira
2019-01-02 10:36 - 2019-01-02 10:44 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avira
2019-01-02 10:36 - 2019-01-02 10:36 - 000000000 ____D C:\Users\Public\PrivacyPal Sessions
2019-01-02 10:33 - 2019-01-13 09:26 - 000000000 ____D C:\ProgramData\Avira
2019-01-02 10:33 - 2019-01-10 07:55 - 000000000 ____D C:\Program Files (x86)\Avira
2019-01-02 10:33 - 2019-01-02 10:33 - 005822840 _____ (Avira Operations GmbH & Co. KG) C:\Users\lenovo\Downloads\avira_en_fass0_5c2c854dbea62__wsnew3.exe
2019-01-02 10:33 - 2019-01-02 10:33 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Mozilla
2019-01-02 10:23 - 2019-01-13 08:45 - 001693636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-02 10:21 - 2019-01-02 10:21 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-01-02 10:19 - 2019-01-13 09:35 - 000003700 _____ C:\WINDOWS\System32\Tasks\Lenovo Power Management Driver PnP Task
2019-01-02 10:19 - 2019-01-13 09:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-02 10:19 - 2019-01-10 07:53 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-01-02 10:19 - 2019-01-10 07:53 - 000002362 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2019-01-02 10:19 - 2019-01-10 07:50 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-624539942-2889417632-4096173677-1001
2019-01-02 10:19 - 2019-01-02 10:19 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2019-01-02 10:19 - 2019-01-02 10:19 - 000007623 _____ C:\WINDOWS\diagerr.xml
2019-01-02 10:19 - 2019-01-02 10:19 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-02 10:19 - 2019-01-02 10:19 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-02 10:19 - 2019-01-02 10:19 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-01-02 10:19 - 2019-01-02 10:19 - 000002306 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_Dolby
2019-01-02 10:19 - 2019-01-02 10:19 - 000000020 ___SH C:\Users\lenovo\ntuser.ini
2019-01-02 10:19 - 2019-01-02 10:19 - 000000000 ____D C:\WINDOWS\System32\Tasks\TVT
2019-01-02 10:19 - 2019-01-02 10:19 - 000000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2019-01-02 10:19 - 2019-01-02 10:19 - 000000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2019-01-02 10:19 - 2019-01-02 10:19 - 000000000 ____D C:\Users\lenovo\AppData\Local\PackageStaging
2019-01-02 10:18 - 2019-01-02 10:18 - 000000000 ____D C:\ProgramData\USOShared
2019-01-02 10:16 - 2019-01-02 10:16 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-01-02 10:15 - 2019-01-10 07:50 - 000002390 _____ C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-02 10:15 - 2019-01-05 08:47 - 000000000 ____D C:\Users\lenovo
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Šablony
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Soubory cookie
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Poslední
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Okolní tiskárny
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Okolní síť
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Nabídka Start
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Dokumenty
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Documents\Obrázky
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Documents\Hudba
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Documents\Filmy
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\Data aplikací
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-02 10:15 - 2019-01-02 10:15 - 000000000 _SHDL C:\Users\lenovo\AppData\Local\Data aplikací
2019-01-02 10:15 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-01-02 10:14 - 2018-09-18 19:29 - 000099920 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2019-01-02 10:13 - 2019-01-13 08:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-02 10:13 - 2019-01-10 07:55 - 000464568 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-01-02 09:55 - 2019-01-02 11:34 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-01-02 09:54 - 2019-01-02 09:55 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-01-02 09:51 - 2019-01-02 09:51 - 024617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 022112072 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 019284992 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 007724776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 006306152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005585056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005565440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005312512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 005113008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004918784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004886016 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004765184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 004306432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004300800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 003983360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003744256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003577856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003504640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003379000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002927104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002883584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002721792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 002702536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002689536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-01-02 09:51 - 2019-01-02 09:51 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-01-02 09:51 - 2019-01-02 09:51 - 002149352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 002072384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001842600 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001751560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001696216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-01-02 09:51 - 2019-01-02 09:51 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001674688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001672056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001612808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001483264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001467344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001466872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001456736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001401864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001395248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 001341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-01-02 09:51 - 2019-01-02 09:51 - 001331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001294864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001289400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001282432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001259000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-02 09:51 - 2019-01-02 09:51 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001219584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2019-01-02 09:51 - 2019-01-02 09:51 - 001180760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001177632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2019-01-02 09:51 - 2019-01-02 09:51 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001097312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001073448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 001048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001026992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000850960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000828936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000763032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000743432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000667152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000650040 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000649736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000566584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000495624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000298536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000193016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000130088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000091640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2019-01-02 09:51 - 2019-01-02 09:51 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2019-01-02 09:51 - 2019-01-02 09:51 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-01-02 09:51 - 2019-01-02 09:51 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-01-02 09:49 - 2019-01-02 09:49 - 006347776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2019-01-02 09:49 - 2019-01-02 09:49 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2019-01-02 09:49 - 2019-01-02 09:49 - 005489664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2019-01-02 09:49 - 2019-01-02 09:49 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-01-02 09:48 - 2019-01-02 09:48 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-01-02 09:48 - 2019-01-02 09:48 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-01-02 09:48 - 2019-01-02 09:48 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-01-02 09:48 - 2019-01-02 09:48 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-01-02 09:48 - 2019-01-02 09:48 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-01-02 09:48 - 2019-01-02 09:48 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-01-02 09:48 - 2019-01-02 09:48 - 000000000 ____D C:\Program Files\MSBuild
2019-01-02 09:48 - 2019-01-02 09:48 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-01-02 09:48 - 2019-01-02 09:48 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-01-02 09:38 - 2019-01-02 09:38 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-01-02 09:05 - 2019-01-13 09:09 - 000000000 ___DC C:\WINDOWS\Panther
2019-01-02 09:00 - 2019-01-02 09:00 - 000000000 ____D C:\Users\lenovo\AppData\Local\Tvsukernel
2018-12-27 09:22 - 2018-12-27 09:22 - 000000000 ____D C:\Users\lenovo\AppData\Local\ElevatedDiagnostics
2018-12-27 08:23 - 2018-12-27 08:23 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ldiagio_01009.Wdf
2018-12-21 13:19 - 2018-12-21 15:21 - 2148635375 _____ C:\Users\lenovo\Downloads\takeout-20181220T200841Z-001.zip
2018-12-20 08:42 - 2018-12-20 08:42 - 000013593 _____ C:\Users\lenovo\Downloads\ČSOB 21.12.2018.xlsx
2018-12-17 09:42 - 2018-12-17 09:42 - 000017021 _____ C:\Users\lenovo\Downloads\Faktura Gastro 109 Daltech.xlsx
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-13 09:35 - 2018-10-17 06:45 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-01-13 09:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-13 09:35 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-13 09:35 - 2018-02-11 13:40 - 000000000 __SHD C:\Users\lenovo\IntelGraphicsProfiles
2019-01-13 09:34 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-13 09:32 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-13 09:26 - 2018-02-22 11:19 - 000000000 ____D C:\ProgramData\Package Cache
2019-01-13 08:45 - 2018-09-15 18:39 - 000718018 _____ C:\WINDOWS\system32\perfh005.dat
2019-01-13 08:45 - 2018-09-15 18:39 - 000145062 _____ C:\WINDOWS\system32\perfc005.dat
2019-01-13 08:45 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-01-10 08:30 - 2018-02-23 11:38 - 000000000 ____D C:\Users\lenovo\Documents\šatlava
2019-01-10 08:30 - 2018-02-09 17:58 - 000000000 ____D C:\Users\lenovo\AppData\Local\Packages
2019-01-10 07:53 - 2018-02-22 12:28 - 000000000 ___RD C:\Users\lenovo\Documents\Plocha
2019-01-10 07:50 - 2018-02-09 18:18 - 000000000 ___RD C:\Users\lenovo\OneDrive
2019-01-10 07:39 - 2018-02-22 11:54 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-01-09 19:16 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-01-09 19:16 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-01-09 19:16 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-01-09 19:16 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-09 19:13 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-09 19:12 - 2018-02-22 11:48 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-09 19:10 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\servicing
2019-01-09 19:10 - 2018-02-22 11:48 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-03 12:08 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-03 08:34 - 2018-02-22 11:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2019-01-03 08:33 - 2018-02-11 13:40 - 000000000 ____D C:\Program Files (x86)\Intel
2019-01-03 07:59 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\appcompat
2019-01-02 20:48 - 2018-09-15 08:36 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 20:48 - 2018-09-15 08:36 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-02 10:48 - 2018-02-23 11:39 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\uTorrent
2019-01-02 10:47 - 2018-09-18 08:12 - 001174339 _____ C:\WINDOWS\TestDll.bin
2019-01-02 10:19 - 2018-09-15 08:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-01-02 10:19 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2019-01-02 10:19 - 2018-02-09 17:58 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-01-02 10:19 - 2018-02-09 17:58 - 000000000 ___RD C:\Users\lenovo\3D Objects
2019-01-02 10:19 - 2018-02-09 17:58 - 000000000 ____D C:\Users\lenovo\AppData\Local\ConnectedDevicesPlatform
2019-01-02 10:18 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-01-02 10:18 - 2018-02-22 11:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-01-02 10:18 - 2018-02-22 11:35 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-01-02 10:17 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Registration
2019-01-02 10:17 - 2018-05-14 11:41 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-01-02 10:16 - 2018-12-01 08:25 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2019-01-02 10:16 - 2018-02-23 11:39 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2019-01-02 10:15 - 2018-02-22 11:18 - 000000000 ____D C:\Program Files (x86)\SunplusIT Integrated Camera
2019-01-02 10:14 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ServiceState
2019-01-02 10:14 - 2018-02-22 11:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2019-01-02 10:14 - 2018-02-22 10:57 - 000335633 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2019-01-02 10:14 - 2018-02-22 10:57 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-01-02 10:14 - 2018-02-22 10:57 - 000000000 ____D C:\WINDOWS\system32\DAX2
2019-01-02 10:14 - 2018-02-11 13:40 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-01-02 10:14 - 2018-02-11 13:34 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2019-01-02 10:13 - 2018-11-27 12:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-01-02 10:13 - 2018-11-15 10:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo
2019-01-02 10:13 - 2018-10-10 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2019-01-02 10:13 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-01-02 10:13 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\spool
2019-01-02 10:13 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-01-02 10:13 - 2018-09-15 08:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-01-02 10:13 - 2018-04-19 06:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Advanced Printer Driver 5
2019-01-02 10:13 - 2018-04-19 06:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON TM Bluetooth Connector
2019-01-02 10:13 - 2018-04-19 06:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON TM-T20II
2019-01-02 10:13 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-01-02 10:13 - 2018-03-22 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2019-01-02 10:13 - 2018-03-22 08:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2019-01-02 10:13 - 2018-03-01 09:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView
2019-01-02 10:13 - 2018-02-22 14:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Consulta Conto
2019-01-02 10:13 - 2018-02-22 11:20 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2019-01-02 10:13 - 2018-02-11 13:40 - 000000000 ____D C:\Program Files\Intel
2019-01-02 10:13 - 2017-09-29 14:46 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2019-01-02 10:08 - 2018-09-15 08:36 - 000000000 ____D C:\WINDOWS\Setup
2019-01-02 09:59 - 2018-09-15 08:33 - 000000000 __RHD C:\Users\Public\Libraries
2019-01-02 09:59 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-01-02 09:56 - 2018-12-04 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2019-01-02 09:56 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-01-02 09:55 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Resources
2019-01-02 09:55 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Help
2019-01-02 09:55 - 2018-04-19 06:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson
2019-01-02 09:55 - 2018-02-22 11:21 - 000000000 ____D C:\Program Files\Synaptics
2019-01-02 09:55 - 2018-02-22 10:57 - 000000000 ____D C:\Program Files\Realtek
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-01-02 09:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-01-02 09:49 - 2018-09-15 18:40 - 000000000 ____D C:\WINDOWS\OCR
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-01-02 09:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2018-12-27 09:22 - 2018-02-22 10:55 - 000000000 ____D C:\Users\lenovo\AppData\Local\LenovoServiceBridge
2018-12-27 08:23 - 2018-12-04 20:01 - 000000000 ____D C:\Users\lenovo\AppData\Local\Lenovo
2018-12-27 08:23 - 2018-02-22 11:03 - 000000000 ____D C:\ProgramData\Lenovo
2018-12-22 09:12 - 2018-02-27 12:28 - 000000000 ____D C:\Users\lenovo\Desktop\PDF
2018-12-17 17:24 - 2018-11-19 08:06 - 000001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk
2018-12-17 17:24 - 2018-11-19 08:06 - 000001028 _____ C:\Users\Public\Desktop\TeamViewer 14.lnk
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================