Pomalý notebook

[OndraVas]

Dobrý den, mám šíleně pomalý notebook, prosím o pomoc.

Log z FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-09-2019
Ran by Ondřej (administrator) on ONDRA-PC (LENOVO 20208) (27-09-2019 20:03:30)
Running from C:\Users\Ondřej\Downloads
Loaded Profiles: Ondřej & Mamka (Available Profiles: Ondřej & Mamka)
Platform: Windows 10 Home Version 1903 18362.356 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe
(AlcorMicro, Corp. -> Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\tvsu.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\TvsuCommandLauncher.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\TvsuCommandLauncher.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\UNCServer.exe
(LENOVO -> ) C:\Program Files\Lenovo\iMController\AutoUpdate.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(LENOVO -> LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(LENOVO -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(LENOVO(JAPAN)LTD. -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
(LENOVO(JAPAN)LTD. -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(LENOVO(JAPAN)LTD. -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(LENOVO(JAPAN)LTD. -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(LENOVO(JAPAN)LTD. -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.350_none_5f2790f858f0e2a7\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1908.7-0\MpCmdRun.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1908.7-0\MpCmdRun.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1908.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1908.7-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Sunplus Innovation Technology Inc. -> ) [File not signed] C:\Program Files (x86)\Integrated Camera\Monitor.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [601080 2013-09-05] (LENOVO(JAPAN)LTD. -> Lenovo Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2015-09-02] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2013-07-12] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM-x32\...\Run: [Integrated Camera_Monitor] => C:\Program Files (x86)\Integrated Camera\monitor.exe [1720184 2013-08-19] (Sunplus Innovation Technology Inc. -> ) [File not signed]
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [750320 2014-06-12] (Lenovo -> Lenovo)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\Run: [AvastBrowserAutoLaunch_50FFC75F26DF6ED853244AB5243DBC92] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857288 2019-08-21] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3065164672-2474091376-2333748435-1004\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-25] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\76.0.1632.100\Installer\chrmstp.exe [2019-09-07] (AVAST Software s.r.o. -> AVAST Software)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {051B1D25-D1B2-4E5C-B242-41BD0D0D92B2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {059A50FA-7F5A-45BA-AC7A-4845E9424240} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MpCmdRun.exe [467880 2019-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0E4632C3-4A38-4AF9-ABB0-562C8344E222} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo)
Task: {23B0B759-A4D7-4278-BC83-D73328384B44} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-14] (Adobe Inc. -> Adobe)
Task: {23D68B3E-21E6-45A4-8112-0819327117F6} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {2B77A8AE-779E-4732-A0A1-0D95C61DC34F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {2E8963DD-A9A9-4FC6-8D96-2A17529D4D75} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-06-02] (LENOVO -> Lenovo)
Task: {31639D36-A029-49A2-AEAC-B2FC0A039F8D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-05-24] (Lenovo -> )
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {359F4BAD-A779-4497-AEE5-B3CCB18CE490} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-05-24] (Lenovo -> )
Task: {3AA007D5-EF6A-45DB-9B7B-D4147BE45A03} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4950EEED-825B-4281-B509-5F8E2F010EE9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {49DABB7D-EDCE-47A7-8713-FB08013229D1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857288 2019-08-21] (AVAST Software s.r.o. -> AVAST Software)
Task: {516D241B-1A23-48F4-840B-11A723B41E13} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-14] (Adobe Inc. -> Adobe)
Task: {53114A14-8C54-48DF-B080-57B4A97751CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-22] (Google Inc -> Google LLC)
Task: {56AD6B69-48E5-4B1A-8C84-1D8ACA50A825} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {581ACE1E-F940-45C4-9F92-CB9822111C97} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe [58552 2019-02-12] (Lenovo -> )
Task: {58FF4867-8F73-4DE7-9F21-EF60A2189FB4} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {5A685CFA-11F1-4693-9141-B1CD81CA640E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {5B6F66DF-2C23-44FE-BB38-AE38B02500EA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [134272480 2019-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5CB4990C-7E38-4BCE-A5C9-5668860EBE51} - System32\Tasks\PMTask => C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
Task: {6448DFD0-EC24-4008-9809-2342BB99DE00} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {65287D02-1993-46DD-9585-4FA0CF67771A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MpCmdRun.exe [467880 2019-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {70994B8F-91C0-4070-B1CF-43F3B6295025} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-09-14] (Adobe Inc. -> Adobe)
Task: {75ED1711-BF33-41F2-AEFF-4FCF4D9AF0CD} - System32\Tasks\AVFramework-TaskStartUserServer32-1S => C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe [601080 2013-09-05] (LENOVO(JAPAN)LTD. -> Lenovo Corporation)
Task: {787FF47A-71BB-459C-A378-B51EE67C6461} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {878FB588-CC42-4455-B1F3-1EDE6AA8C9AB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {89EFBF05-9E0A-4BE7-BDC6-9AC428C16C7B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {9516A2D7-8D49-4D89-8C14-98C68F4D4088} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {9620AC9F-8B21-4D17-8020-1D5CDAD18F20} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe [263504 2016-06-02] (LENOVO -> )
Task: {9D8D1E75-825C-4420-B49D-650FDF2B9A73} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A20BD5DE-766B-4A55-90C5-783FE250F8AE} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {ADD4CDB5-A335-4F36-A44C-C4A959634B2D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {BD07A7FF-6C37-4524-A75F-312D525569D4} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {C6AD2AE3-CD70-4863-A1A9-BEC9039AD19F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-22] (Google Inc -> Google LLC)
Task: {CAD2082F-8815-4263-B57B-3321BAC83040} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {CAE334FF-B5B6-4E72-A828-5515C4F2E42E} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2015-09-02] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D5B6ED59-85B8-43ED-BD82-D29D747A6B30} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {D8183722-F3DF-420F-AE2D-C83B3AA3E4FC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3942792 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {DB684EC3-3EE4-4265-B98A-1C5EAE681959} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {E02B7932-4502-42F0-9038-3EA07FCA79DB} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [112312 2019-02-12] (Lenovo -> Lenovo)
Task: {E08987A4-E514-414C-8B75-709D8BE2925C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MpCmdRun.exe [467880 2019-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E45FCAD1-8ED5-4637-A4D0-9A28B555F3E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MpCmdRun.exe [467880 2019-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E5D29846-126F-4D1C-AE27-A91611873CAB} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857288 2019-08-21] (AVAST Software s.r.o. -> AVAST Software)
Task: {E71401F6-939C-45A6-8351-8B5E186F5E66} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {EB170355-3AAC-4936-92C6-71A5A892A523} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [78808 2015-12-14] (LENOVO -> )
Task: {EB7FA518-8D44-4FCE-B44E-539E4E5C2C15} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {EEBBDB0C-0B9F-4704-99B1-F7CCAAD28863} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {F3B94846-7CA4-451D-8609-130B16543495} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{ae7fbfcd-2401-4cd2-8d92-a813d23f9736}: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{afc96962-e335-40e7-9268-d208e976ade6}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-3065164672-2474091376-2333748435-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1004\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> DefaultScope {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =

FireFox:
========
FF DefaultProfile: jjoaezw7.default
FF ProfilePath: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\480zqu3s.default-release [2019-09-27]
FF Homepage: Mozilla\Firefox\Profiles\480zqu3s.default-release -> www.seznam.cz
FF Extension: (Avast Online Security) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\480zqu3s.default-release\Extensions\wrc@avast.com.xpi [2019-09-05] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json]
FF Extension: (No Name) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\480zqu3s.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-22]
FF ProfilePath: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default [2019-09-05]
FF Homepage: Mozilla\Firefox\Profiles\jjoaezw7.default -> hxxps://www.seznam.cz/?clid=22668
FF NewTab: Mozilla\Firefox\Profiles\jjoaezw7.default -> about:newtab
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\sko-extension@firma.seznam.cz.xpi [2017-11-28]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\sp@avast.com.xpi [2019-06-05]
FF Extension: (Avast Online Security) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\wrc@avast.com.xpi [2018-06-21]
FF Extension: (No Name) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-04]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2017-10-31]
FF SearchPlugin: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\searchplugins\seznam-avast.xml [2017-11-11]
FF HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Ondřej\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-14] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-14] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-08-22] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-08-22] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3065164672-2474091376-2333748435-1001: @acestream.net/acestreamplugin,version=3.1.0 -> C:\Users\Ondřej\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default [2019-09-05]
CHR Extension: (Prezentace) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-22]
CHR Extension: (Dokumenty) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-22]
CHR Extension: (Disk Google) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-08-22]
CHR Extension: (YouTube) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-22]
CHR Extension: (Tabulky) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-08-22]
CHR Extension: (Ace Script) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-08-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-08-22]
CHR Extension: (Gmail) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-22]
CHR Extension: (Chrome Media Router) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-22]
CHR HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5975136 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [405072 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\76.0.1632.100\elevation_service.exe [976608 2019-08-21] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R3 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [573432 2013-09-05] (LENOVO(JAPAN)LTD. -> Lenovo Corporation)
R2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [140016 2014-06-12] (Lenovo -> Lenovo)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2013-07-26] (Intel Corporation - Business Client Platform Division -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2045944 2013-08-02] (LENOVO(JAPAN)LTD. -> Lenovo Group Limited)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO -> LENOVO INCORPORATED.)
R3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [694776 2013-09-05] (LENOVO(JAPAN)LTD. -> Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-11] (Lenovo(Japan)Ltd. -> Lenovo Group Limited)
S2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [465912 2013-06-22] (LENOVO(JAPAN)LTD. -> )
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-06-02] (LENOVO -> Lenovo)
R2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [59384 2013-07-17] (LENOVO(JAPAN)LTD. -> Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [138232 2013-07-17] (LENOVO(JAPAN)LTD. -> Lenovo Group Limited)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [247968 2015-09-02] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\NisSrv.exe [3630832 2019-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MsMpEng.exe [103168 2019-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [209552 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [263008 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [205848 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [61472 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [282768 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169408 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112312 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87944 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1030784 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [478096 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [387176 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 Fastboot; C:\WINDOWS\System32\DRIVERS\fastboot.sys [65928 2014-06-12] (Lenovo -> Windows (R) Win 7 DDK provider)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3343872 2019-03-19] (Microsoft Windows -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek Semiconductor Corp -> Realtek )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44192 2015-09-02] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-09-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [346336 2019-09-21] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-09-21] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-27 20:00 - 2019-09-27 20:00 - 001615872 _____ (Farbar) C:\Users\Ondřej\Downloads\FRST64(1).exe
2019-09-21 08:59 - 2019-09-21 12:16 - 2172162102 _____ C:\Users\Ondřej\Downloads\Spider-Man Daleko od domova 2019 WEBRip en,CZ DABING cz.tit..mkv
2019-09-21 07:33 - 2019-09-04 03:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-09-21 07:33 - 2019-09-04 03:56 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-20 21:48 - 2019-09-20 21:47 - 000045665 _____ C:\Users\Ondřej\Downloads\John Wick Chapter 3 Parabellum.srt
2019-09-20 21:47 - 2019-09-20 21:47 - 000019141 _____ C:\Users\Ondřej\Downloads\John-Wick-Chapter-3-Parabellum(0000315628).zip
2019-09-20 17:09 - 2019-09-20 19:44 - 1721366090 _____ C:\Users\Ondřej\Downloads\John.Wick.3.2019.1080p.BluRay.DD5.1.x264-CZtit.mkv
2019-09-20 09:54 - 2019-09-20 09:55 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-09-18 19:42 - 2019-09-18 19:42 - 000002418 _____ C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-09-18 19:25 - 2019-09-18 19:25 - 005500928 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 004306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecerts.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fvecerts.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 025445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 019811328 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 018019328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 007014912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 006236160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 005916672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 003817472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2019-09-18 19:24 - 2019-09-18 19:24 - 002494232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 002314440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001510744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001488216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001244728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001105480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001098928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000516752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000362056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2019-09-18 19:23 - 2019-09-18 19:24 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 022626304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 008011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 007196160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 006516864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 005762032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 004857856 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 004538368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 002798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2019-09-18 19:23 - 2019-09-18 19:23 - 002586816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 002258640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001691136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001616568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001413624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001394488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-09-18 19:23 - 2019-09-18 19:23 - 001263104 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001122816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001073168 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000781912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcIsoCtnr.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000593112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000568336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000510984 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000454736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000442304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000431448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000316216 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000167136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000145720 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInput1_4.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000042512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInput1_4.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000021544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2019-09-18 19:23 - 2019-09-18 19:23 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL
2019-09-18 19:23 - 2019-09-18 19:23 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 006081744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 005848840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 005091840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 003916048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 003750912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 003738376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002771520 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002743808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002703360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002576384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002562048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002095104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001957000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001913088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001845616 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001815040 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001664168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001531656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001305608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001154952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001054656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000776704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000727752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000667272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000628400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000515448 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000511488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000488056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000401832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000375512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000267496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000072816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInputUap.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 009927992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 006408704 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 003372448 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 002762296 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 001633648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 001482256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 001261256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000913168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000889960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000822416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000561680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000401208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000334936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000147184 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000106296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000020944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 007261648 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 006162432 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 004009472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 003724800 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 003551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 001754232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-09-18 19:20 - 2019-09-18 19:20 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 001509728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001439232 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001371648 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-09-18 19:20 - 2019-09-18 19:20 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001065984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000810808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000680976 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000596008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000464696 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000411128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000237880 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2019-09-18 19:19 - 2019-09-18 19:20 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 007839120 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 007582752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003701248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003590672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 003353088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002723840 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 002551096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002466512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002032640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001158656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001149200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 001068560 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000944664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000909736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000808960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000676632 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000441360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000338800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000182288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000146416 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe
2019-09-18 19:18 - 2019-09-18 19:19 - 017787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 006226352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 004551352 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 002120272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 002119168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001744400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001413912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001259424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 001094144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000977408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000804880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000731960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000722288 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000589600 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000551736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000478264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wosc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApproveChildRequest.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000225080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ManageCI.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000149504 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000088568 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidspi.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000055304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2019-09-03 19:29 - 2019-09-03 19:28 - 000363912 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-09-03 19:29 - 2019-09-03 19:28 - 000236024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-09-03 19:29 - 2019-09-03 19:28 - 000169408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-27 20:08 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-27 20:08 - 2018-11-07 06:48 - 000039027 _____ C:\Users\Ondřej\Downloads\FRST.txt
2019-09-27 20:05 - 2016-09-10 20:43 - 000000000 ____D C:\FRST
2019-09-27 19:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-09-27 19:48 - 2018-04-05 05:24 - 000000000 ____D C:\Users\Ondřej\AppData\Local\AVAST Software
2019-09-27 19:47 - 2016-11-18 08:18 - 000000000 ____D C:\Users\Ondřej\AppData\LocalLow\Mozilla
2019-09-27 19:43 - 2015-09-02 18:46 - 000000000 __SHD C:\Users\Ondřej\IntelGraphicsProfiles
2019-09-25 22:35 - 2019-08-22 18:02 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-09-25 22:35 - 2019-08-22 18:02 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-09-25 22:35 - 2019-08-11 22:23 - 000003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-25 22:35 - 2019-08-11 22:23 - 000003694 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-09-25 22:35 - 2019-08-11 22:23 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-09-25 22:35 - 2019-08-11 22:23 - 000003362 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-09-25 22:35 - 2019-08-11 22:23 - 000002880 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3065164672-2474091376-2333748435-1001
2019-09-25 22:35 - 2019-08-11 22:23 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3065164672-2474091376-2333748435-1004
2019-09-25 22:35 - 2019-08-11 22:23 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3065164672-2474091376-2333748435-1001
2019-09-25 22:35 - 2019-08-11 22:23 - 000002390 _____ C:\WINDOWS\System32\Tasks\AVFramework-TaskStartUserServer32-1S
2019-09-25 22:35 - 2019-08-11 22:23 - 000002320 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3065164672-2474091376-2333748435-500
2019-09-25 22:35 - 2019-08-11 22:23 - 000002254 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2019-09-25 22:35 - 2019-08-11 22:23 - 000002096 _____ C:\WINDOWS\System32\Tasks\PMTask
2019-09-25 22:35 - 2019-08-11 22:23 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-09-25 22:31 - 2019-08-11 21:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-09-25 22:05 - 2019-08-22 18:03 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-25 22:05 - 2019-08-22 18:03 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-09-22 20:24 - 2018-07-27 12:57 - 000000000 ____D C:\Users\Ondřej\AppData\Local\CrashDumps
2019-09-21 20:32 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-21 14:51 - 2016-09-12 18:34 - 000000000 ____D C:\Users\Ondřej\AppData\Roaming\vlc
2019-09-21 07:52 - 2018-02-23 22:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-09-21 07:45 - 2015-01-27 22:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-21 07:44 - 2019-08-04 17:00 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-21 07:39 - 2019-08-11 22:09 - 001693636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-21 07:39 - 2019-03-19 13:55 - 000718018 _____ C:\WINDOWS\system32\perfh005.dat
2019-09-21 07:39 - 2019-03-19 13:55 - 000145062 _____ C:\WINDOWS\system32\perfc005.dat
2019-09-21 07:39 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2019-09-21 07:39 - 2015-09-02 20:08 - 000000000 ___RD C:\Users\Ondřej\3D Objects
2019-09-21 07:39 - 2015-01-28 08:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-09-21 07:32 - 2019-08-11 22:23 - 000003990 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-09-21 07:31 - 2019-08-11 22:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-21 07:31 - 2019-08-11 21:44 - 000258096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-09-21 00:05 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-09-21 00:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\TextInput
2019-09-21 00:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-09-18 19:53 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-09-18 19:43 - 2015-01-27 17:40 - 000000000 __RDO C:\Users\Ondřej\SkyDrive
2019-09-18 19:38 - 2019-03-19 13:58 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-09-18 19:38 - 2019-03-19 13:58 - 000018903 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-09-14 18:19 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-09-14 18:19 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-09-14 18:19 - 2015-01-27 22:26 - 000000000 ____D C:\Users\Ondřej\AppData\Local\Adobe
2019-09-14 18:11 - 2019-08-13 19:43 - 006035000 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2019-09-07 13:24 - 2019-08-11 22:23 - 000003856 _____ C:\WINDOWS\System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2019-09-07 13:24 - 2019-08-11 22:23 - 000003272 _____ C:\WINDOWS\System32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2019-09-07 13:24 - 2018-04-05 05:25 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-09-07 13:24 - 2018-04-05 05:25 - 000002474 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2019-09-03 19:46 - 2017-12-02 00:26 - 000478096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-09-03 19:29 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-09-03 19:28 - 2019-02-13 21:19 - 000282768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-09-03 19:28 - 2019-01-14 18:02 - 000263008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-09-03 19:28 - 2019-01-05 13:06 - 000205848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-09-03 19:28 - 2019-01-05 13:06 - 000061472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-09-03 19:28 - 2019-01-05 13:06 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-09-03 19:28 - 2018-10-14 15:38 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 001030784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000387176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000209552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000112312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000087944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys

==================== Files in the root of some directories ================

2015-01-27 17:35 - 2015-01-30 12:41 - 000001532 _____ () C:\Users\Ondřej\AppData\Roaming\AbsoluteReminder.xml
2015-01-27 17:34 - 2015-01-27 17:35 - 000000193 _____ () C:\Users\Ondřej\AppData\Local\RegisteredPackageInformation.xml

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

Log z Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-09-2019
Ran by Ondřej (27-09-2019 20:12:28)
Running from C:\Users\Ondřej\Downloads
Windows 10 Home Version 1903 18362.356 (X64) (2019-08-11 20:24:47)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3065164672-2474091376-2333748435-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3065164672-2474091376-2333748435-503 - Limited - Disabled)
Guest (S-1-5-21-3065164672-2474091376-2333748435-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3065164672-2474091376-2333748435-1003 - Limited - Enabled)
Mamka (S-1-5-21-3065164672-2474091376-2333748435-1004 - Limited - Enabled) => C:\Users\Mamka
Ondřej (S-1-5-21-3065164672-2474091376-2333748435-1001 - Administrator - Enabled) => C:\Users\Ondřej
WDAGUtilityAccount (S-1-5-21-3065164672-2474091376-2333748435-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Absolute Reminder (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 2.3.0.1 - Absolute Software)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Alcor Micro USB Card Reader (HKLM-x32\...\{AE63FFAC-B71A-4B73-BF9C-DB00C78BD9BD}) (Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.17.3042.73586 - Alcor Micro Corp.)
AuthenTec Fingerprint Driver (HKLM\...\{89585C33-E934-463E-91E1-B0CF090FEC53}) (Version: 1.6.2.352 - AuthenTec) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.7.2388 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 76.0.1632.100 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DeepSound 2.0 (HKLM-x32\...\{805FED7C-06CB-4E90-BE39-490044BD80BB}) (Version: 2.0.0 - Jpinsoft)
Dependency Package Update (HKLM\...\{0788641D-D31A-478D-BB34-C41564AE9F93}) (Version: 1.6.38.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.32.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM-x32\...\{1D2682EA-75DD-44B6-BF2D-CD3C49EAD012}) (Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{3117B53D-A409-4D99-A0DE-11A1A40696FA}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4430150F-61B3-4142-BE04-EAC68C8DDA18}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4AF6C9BC-D8DB-4286-94D9-474CE54ADAA2}) (Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{503B47A9-E34A-4841-ADD7-417191D5DB5E}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{546FF45D-2467-4950-AAFB-0A06ACBB6B2C}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5B2190E9-199D-450A-94B3-4D6826C770C2}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5BEFE1E1-F597-4B79-913B-15FFDB25B744}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{63DE35C9-B080-4D03-B110-99E14FD35BCE}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{65316098-0220-4D5C-B37A-6136083A0897}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{E966DBE4-5075-465E-BA81-BC9A3A3204B3}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Integrated Camera (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.5.14 - SunplusIT)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{608E1B9B-A2E8-4A1F-8BAB-874EB0DD25E3}) (Version: 1.0.0.36888 - Intel Corporation) Hidden
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.03 - )
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.38.00 - Lenovo Group Limited)
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.85.03 - Lenovo)
Lenovo Patch Utility (HKLM-x32\...\{E8F27ADF-B1ED-41AF-A7EF-D5E71778480C}) (Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{053ACA98-6B07-4DD0-9DB3-F51E3EB1780C}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.15 - Lenovo)
Lenovo QuickControl (HKLM-x32\...\{4855C42F-5197-4AAD-A50D-5066D2CC4647}) (Version: 1.10 - Lenovo Group Limited)
Lenovo Settings - Camera Audio (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 4.1.5.100 - Lenovo Corporation)
Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 1.3.0.7 - Lenovo Group Limited)
Lenovo Solution Center (HKLM\...\{C1FC707B-AE6B-4DC4-89A5-6628A01F8103}) (Version: 3.3.003.00 - Lenovo)
Lenovo Solutions for Small Business (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 2.2.39.7991 - Intel(R) Corporation)
Lenovo Solutions for Small Business Customizations (HKLM-x32\...\{AFD7B869-3B70-40C7-8983-769256BA3BD2}) (Version: 2.2.0001.00 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0084 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0012.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0008 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3065164672-2474091376-2333748435-1004\...\OneDriveSetup.exe) (Version: 19.086.0502.0006 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 69.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 69.0.1 (x64 cs)) (Version: 69.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.1 - Mozilla)
RapidBoot HDD Accelerator (HKLM-x32\...\Fastboot) (Version: 2.1.1.0 - Lenovo)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Windows Driver Package - Lenovo 1.67.03.13 (08/27/2013 1.67.03.13) (HKLM\...\06FCBD562EA7843DCF8171AC0E58EC3257006F0D) (Version: 08/27/2013 1.67.03.13 - Lenovo)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Packages:
=========
AccuWeather - Weather for Life -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_10.0.348.1000_x64__8zz2pj9h1h1d8 [2018-04-07] (AccuWeather) [MS Ad]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.2.0_x64__tf1gferkr813w [2019-08-13] (Autodesk Inc.)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1600.3.0_x86__kgqvnymyfvs32 [2019-09-20] (king.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.3519.0_x64__rz1tebttyb220 [2019-09-21] (Dolby Laboratories)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.20.8626.0_x86__q4d96b2w5wcc2 [2019-08-14] (Evernote)
Hightail for Lenovo -> C:\Program Files\WindowsApps\YouSendIt.HighTailForLenovo_1.3.0.1278_neutral__069rkrpjefrbc [2015-01-29] (Hightail)
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2015-06-21] (AMZN Mobile LLC)
Lenovo QuickCast -> C:\Program Files\WindowsApps\E046963F.LenovoQuickCast_2.5.11.0_x86__k1h2ywk1493x8 [2015-01-29] (Lenovo, INC.)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2017-12-19] (LENOVO INCORPORATED.)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2015-01-29] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_4.27.32.0_x86__k1h2ywk1493x8 [2019-03-26] (LENOVO INC.)
McAfee® Central for Lenovo -> C:\Program Files\WindowsApps\McAfeeInc.06.McAfeeSecurityAdvisorforLenovo_5.0.173.1_x64__bq6yxensn79aw [2018-04-03] (McAfee_Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe [2019-08-30] (Microsoft Studios) [MS Ad]
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-08-06] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2015-01-29] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2014-06-12 17:24 - 2013-09-05 22:36 - 002085888 _____ () [File not signed] C:\Program Files\Lenovo\Communications Utility\cv210.dll
2014-06-12 17:24 - 2013-09-05 22:36 - 002201088 _____ () [File not signed] C:\Program Files\Lenovo\Communications Utility\cxcore210.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-01-04 13:59 - 000000825 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\ProgramData\Lenovo\ReadyApps;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Skype\Phone\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ondřej\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\metal-gear-solid-the-phantom-pain-sunset.jpg
HKU\S-1-5-21-3065164672-2474091376-2333748435-1004\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{571524AF-1195-4051-B3C6-C3867E35B7C7}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{22A4E0D8-EB3D-44EA-9305-8AFEF5EEEA8E}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [TCP Query User{DF1C0797-A5F4-4959-9AAC-1C69BF0C9F13}C:\program files (x86)\avast software\browser\application\avastbrowser.exe] => (Block) C:\program files (x86)\avast software\browser\application\avastbrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{3FD4CEC2-1E80-4BC9-9D49-D52C9B8F4ECB}C:\program files (x86)\avast software\browser\application\avastbrowser.exe] => (Block) C:\program files (x86)\avast software\browser\application\avastbrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{60818710-17AC-4225-923C-04951E4987E6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BF8107DE-DF7F-4285-B6A2-E954AED67253}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4117DCE7-A03F-4694-A8F6-890D3F458F7C}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{090804E2-EAF3-4A34-8A9C-938CD3AB7AA5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

15-09-2019 19:52:07 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/27/2019 08:02:35 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 26328; požadovaná velikost: 39296.

Error: (09/27/2019 07:46:09 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).

Error: (09/26/2019 05:59:36 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9160,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (09/26/2019 05:36:12 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (119040,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (09/26/2019 05:28:22 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (121740,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (09/25/2019 10:10:14 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (116536,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (09/25/2019 10:01:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SkypeApp.exe verze 8.51.0.72 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1cea0

Čas spuštění: 01d573d7b4ca6d1c

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe

ID hlášení: 94c53a13-894b-4e4f-a661-925132cfb74d

Úplný název balíčku s chybou: Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Quiesce

Error: (09/25/2019 09:08:38 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).


System errors:
=============
Error: (09/26/2019 05:23:11 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby QuickControlService bylo dosaženo časového limitu (30000 ms).

Error: (09/25/2019 09:22:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024001e): Aktualizace bezpečnostních informací pro produkt Windows Defender Antivirus - KB2267602 (verze 1.303.147.0).

Error: (09/25/2019 09:03:07 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby QuickControlService bylo dosaženo časového limitu (30000 ms).

Error: (09/21/2019 07:46:12 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024001e): Aktualizace bezpečnostních informací pro produkt Windows Defender Antivirus - KB2267602 (verze 1.301.1864.0).

Error: (09/21/2019 07:39:43 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Location Task Manager byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/21/2019 07:39:11 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/21/2019 07:39:11 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (09/21/2019 12:05:16 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby FontCache3.0.0.0 bylo dosaženo časového limitu (30000 ms).


Windows Defender:
===================================
Date: 2019-09-22 16:27:19.324
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1F0AFC59-00A5-415D-B5B0-C1EF71E13ABE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-15 21:20:11.028
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {9D29DD47-A09B-43D7-8974-A1A8E6262D6E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-15 20:19:13.919
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3701F3D3-C35C-4330-A2F9-36188ED5E43E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-15 19:00:12.183
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {2602F51B-F7F8-4AD0-873E-03502B5AB6A1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-15 17:09:58.681
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {0C545AC4-955E-4966-9AC3-887570532E7B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-09-25 21:22:06.302
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.301.2094.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16300.1
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.

Date: 2019-09-21 07:46:12.417
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.299.2098.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.

CodeIntegrity:
===================================

Date: 2019-09-27 20:16:02.713
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.1908.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-09-27 20:16:02.649
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.1908.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-09-27 20:16:02.594
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.1908.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-09-27 19:56:27.839
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-27 19:56:27.759
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-27 19:43:32.955
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-26 17:22:47.780
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-25 21:42:40.327
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO H1ET85WW(1.23) 04/15/2014
Motherboard: LENOVO 20208
Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 95%
Total physical RAM: 3966.22 MB
Available physical RAM: 177.19 MB
Total Virtual: 7806.22 MB
Available Virtual: 2301.59 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:452.13 GB) (Free:362.23 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{5b6d5478-6bbc-4cf6-934c-4a6e5cb78e7b}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.64 GB) NTFS
\\?\Volume{75469268-c334-4825-99b4-6d854b735b1b}\ (Lenovo_Recovery) (Fixed) (Total:12.28 GB) (Free:5.24 GB) NTFS
\\?\Volume{ccbbfa2c-9107-4758-bf4b-7859046f0175}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: ACBD0B8F)

Partition: GPT.

==================== End of Addition.txt ============================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[OndraVas]

Log z Adw:

# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build: 09-05-2019
# Database: 2019-09-27.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-28-2019
# Duration: 00:00:52
# OS: Windows 10 Home
# Cleaned: 34
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.DellDataProtection Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{89585C33-E934-463E-91E1-B0CF090FEC53}
Deleted Preinstalled.HPCleanFLC File C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office.lnk
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Sunplus SPUVCb
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Sunplus SPUVCb
Deleted Preinstalled.LenovoEasyCamera Registry HKU\.DEFAULT\Software\Sunplus SPUVCb
Deleted Preinstalled.LenovoEasyCamera Registry HKU\S-1-5-18\Software\Sunplus SPUVCb
Deleted Preinstalled.LenovoHotkeyManager Folder C:\Program Files\LENOVO\HOTKEY
Deleted Preinstalled.LenovoHotkeyManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LenovoOptMouseUpdate
Deleted Preinstalled.LenovoHotkeyManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\OnScreenDisplay
Deleted Preinstalled.LenovoIMController Folder C:\Program Files (x86)\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Program Files\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\Mamka\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\Ondřej\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1
Deleted Preinstalled.LenovoIMController Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0788641D-D31A-478D-BB34-C41564AE9F93}
Deleted Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{3117B53D-A409-4D99-A0DE-11A1A40696FA}
Deleted Preinstalled.LenovoPowerManager Folder C:\Windows\SysWOW64\LENOVO\POWERMGR
Deleted Preinstalled.LenovoPowerManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5CB4990C-7E38-4BCE-A5C9-5668860EBE51}
Deleted Preinstalled.LenovoPowerManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5CB4990C-7E38-4BCE-A5C9-5668860EBE51}
Deleted Preinstalled.LenovoPowerManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PMTask
Deleted Preinstalled.LenovoPowerManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}
Deleted Preinstalled.LenovoPowerManager Task C:\Windows\System32\Tasks\PMTASK
Deleted Preinstalled.LenovoSolutionCenter Folder C:\Program Files\LENOVO\LENOVO SOLUTION CENTER
Deleted Preinstalled.LenovoSolutionCenter Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\LENOVO SOLUTION CENTER
Deleted Preinstalled.LenovoSolutionCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4386A5EF-BD23-49F4-9DAD-CD76B4F6A8BF}
Deleted Preinstalled.LenovoSolutionCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C1FC707B-AE6B-4DC4-89A5-6628A01F8103}
Deleted Preinstalled.LenovoThinkVantageCommunicationsUtility Folder C:\Program Files\LENOVO\COMMUNICATIONS UTILITY
Deleted Preinstalled.LenovoThinkVantageCommunicationsUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LENOVO.TPKNRRES
Deleted Preinstalled.LenovoThinkVantageCommunicationsUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|LENOVO.TPKNRRES
Deleted Preinstalled.LenovoThinkVantageCommunicationsUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1
Deleted Preinstalled.LenovoUpdate Folder C:\Program Files (x86)\LENOVO\SYSTEM UPDATE
Deleted Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{03C6CC92-68F2-4961-9A73-CAECA350BD08}
Deleted Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\TVSU_is1


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1238 octets] - [19/09/2018 18:14:38]
AdwCleaner[S01].txt - [1311 octets] - [07/11/2018 05:39:42]
AdwCleaner[C01].txt - [1497 octets] - [07/11/2018 05:40:22]
AdwCleaner[S02].txt - [1433 octets] - [07/11/2018 18:06:37]
AdwCleaner[C02].txt - [1619 octets] - [07/11/2018 18:07:09]
AdwCleaner[S03].txt - [5124 octets] - [12/04/2019 13:25:17]
AdwCleaner[C03].txt - [4748 octets] - [12/04/2019 13:26:19]
AdwCleaner[S04].txt - [3011 octets] - [29/04/2019 17:02:02]
AdwCleaner[C04].txt - [2977 octets] - [29/04/2019 17:02:55]
AdwCleaner[S05].txt - [1799 octets] - [12/05/2019 15:21:19]
AdwCleaner_Debug.log - [27871 octets] - [28/09/2019 21:24:05]
AdwCleaner[S06].txt - [5979 octets] - [28/09/2019 21:27:21]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C06].txt ##########

[Rudy]

Dejte nové logy FRST+Addition.

[OndraVas]

Log z FRST :

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-10-2017 01 (ATTENTION: ====> FRSTversion is 706 days old and could be outdated)
Ran by Ondřej (administrator) on ONDRA-PC (29-09-2019 12:43:09)
Running from C:\Users\Ondřej\Desktop
Loaded Profiles: Ondřej (Available Profiles: Ondřej & Mamka)
Platform: Windows 10 Home Version 1903 18362.356 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

Failed to access process -> Registry
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\SgrmBroker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthSystray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
() C:\Program Files (x86)\Integrated Camera\Monitor.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\System32\CompPkgSrv.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.350_none_5f2790f858f0e2a7\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
() C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\YourPhone.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\WINDOWS\system32\SecurityHealthSystray.exe [84992 2019-03-19] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-09-03] (AVAST Software)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2015-09-02] (Synaptics Incorporated)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2013-07-12] (Alcor Micro Corp.)
HKLM-x32\...\Run: [Integrated Camera_Monitor] => C:\Program Files (x86)\Integrated Camera\monitor.exe [1720184 2013-08-19] ()
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [750320 2014-06-12] (Lenovo)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation)
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\Run: [AvastBrowserAutoLaunch_50FFC75F26DF6ED853244AB5243DBC92] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857288 2019-08-21] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{ae7fbfcd-2401-4cd2-8d92-a813d23f9736}: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{afc96962-e335-40e7-9268-d208e976ade6}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> DefaultScope {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =

Edge:
======
Edge Extension: (BookReader) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets [2019-03-19]
Edge Extension: (PinJSAPI) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [2019-03-19]

FireFox:
========
FF DefaultProfile: jjoaezw7.default
FF ProfilePath: Profiles/480zqu3s.default-release [not found] <==== ATTENTION
FF ProfilePath: Profiles/jjoaezw7.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\480zqu3s.default-release [2019-09-29]
FF Homepage: Mozilla\Firefox\Profiles\480zqu3s.default-release -> www.seznam.cz
FF Extension: (Avast Online Security) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\480zqu3s.default-release\Extensions\wrc@avast.com.xpi [2019-09-05]
FF Extension: (No Name) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\480zqu3s.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-22]
FF ProfilePath: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default [2019-09-05]
FF NewTab: Mozilla\Firefox\Profiles\jjoaezw7.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\jjoaezw7.default -> Seznam
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\jjoaezw7.default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\jjoaezw7.default -> Seznam
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\jjoaezw7.default -> Seznam
FF Homepage: Mozilla\Firefox\Profiles\jjoaezw7.default -> hxxps://www.seznam.cz/?clid=22668
FF Keyword.URL: Mozilla\Firefox\Profiles\jjoaezw7.default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\sko-extension@firma.seznam.cz.xpi [2017-11-28]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\sp@avast.com.xpi [2019-06-05]
FF Extension: (Avast Online Security) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\wrc@avast.com.xpi [2018-06-21]
FF Extension: (No Name) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-04]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2017-10-31]
FF SearchPlugin: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\searchplugins\seznam-avast.xml [2017-11-11]
FF Extension: (Firefox Monitor) - C:\Program Files\Mozilla Firefox\browser\features\fxmonitor@mozilla.org.xpi [2019-09-05] [not signed]
FF Extension: (WebCompat Reporter) - C:\Program Files\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2019-09-05] [not signed]
FF HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Ondřej\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-08-22] (Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-08-22] (Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3065164672-2474091376-2333748435-1001: @acestream.net/acestreamplugin,version=3.1.0 -> C:\Users\Ondřej\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default [2019-09-05]
CHR Extension: (Prezentace) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-22]
CHR Extension: (Dokumenty) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-22]
CHR Extension: (Disk Google) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-08-22]
CHR Extension: (YouTube) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-22]
CHR Extension: (Tabulky) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-08-22]
CHR Extension: (Ace Script) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-08-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-08-22]
CHR Extension: (Gmail) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-22]
CHR Extension: (Chrome Media Router) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-22]
CHR HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AarSvc; C:\WINDOWS\System32\AarSvc.dll [184320 2019-09-18] (Microsoft Corporation)
S3 AarSvc_61adac; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 AarSvc_61adac; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-14] (Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5975136 2019-09-03] (AVAST Software)
S3 autotimesvc; C:\WINDOWS\System32\autotimesvc.dll [116224 2019-03-19] (Microsoft Corporation)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [405072 2019-09-03] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\76.0.1632.100\elevation_service.exe [976608 2019-08-21] (AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-09-03] (AVAST Software)
S3 BcastDVRUserService; C:\WINDOWS\System32\BcastDVRUserService.dll [1392640 2019-03-19] (Microsoft Corporation)
S3 BcastDVRUserService_61adac; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 BcastDVRUserService_61adac; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 BluetoothUserService; C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll [532992 2019-08-11] (Microsoft Corporation)
S3 BluetoothUserService_61adac; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 BluetoothUserService_61adac; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
R2 BrokerInfrastructure; C:\WINDOWS\System32\psmsrv.dll [236544 2019-08-14] (Microsoft Corporation)
S3 BTAGService; C:\WINDOWS\System32\BTAGService.dll [1062912 2019-08-11] (Microsoft Corporation)
S3 BthAvctpSvc; C:\WINDOWS\System32\BthAvctpSvc.dll [382976 2019-03-19] (Microsoft Corporation)
S3 CaptureService; C:\WINDOWS\System32\CaptureService.dll [128000 2019-03-19] (Microsoft Corporation)
S3 CaptureService_61adac; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 CaptureService_61adac; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 cbdhsvc; C:\WINDOWS\System32\cbdhsvc.dll [1122816 2019-09-18] (Microsoft Corporation)
R3 cbdhsvc_61adac; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Corporation)
R3 cbdhsvc_61adac; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Corporation)
S3 ConsentUxUserSvc; C:\WINDOWS\System32\ConsentUxClient.dll [177152 2019-03-19] (Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [380120 2019-03-19] (Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc_61adac; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [380120 2019-03-19] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\WINDOWS\System32\deviceaccess.dll [231912 2019-03-19] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\WINDOWS\SysWOW64\deviceaccess.dll [185944 2019-03-19] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc_61adac; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 DeviceAssociationBrokerSvc_61adac; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 DevicePickerUserSvc; C:\WINDOWS\System32\Windows.Devices.Picker.dll [465920 2019-03-19] (Microsoft Corporation)
S3 DevicePickerUserSvc; C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll [338432 2019-03-19] (Microsoft Corporation)
R2 DispBrokerDesktopSvc; C:\WINDOWS\System32\DispBroker.Desktop.dll [404992 2019-08-11] (Microsoft Corporation)
R3 DisplayEnhancementService; C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [1171968 2019-08-11] (Microsoft Corporation)
R2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [140016 2014-06-12] (Lenovo)
S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\elevation_service.exe [1106416 2019-09-18] (Google LLC)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2013-07-26] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2045944 2013-08-02] (Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-11] (Lenovo Group Limited)
S2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [465912 2013-06-22] ()
S3 LxpSvc; C:\WINDOWS\System32\LanguageOverlayServer.dll [317952 2019-03-19] (Microsoft Corporation)
S3 perceptionsimulation; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [103424 2019-03-19] (Microsoft Corporation)
R2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [59384 2013-07-17] (Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [138232 2013-07-17] (Lenovo Group Limited)
R2 SgrmBroker; C:\WINDOWS\system32\SgrmBroker.exe [263904 2019-03-19] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2019-03-19] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [247968 2015-09-02] (Synaptics Incorporated)
S3 TroubleshootingSvc; C:\WINDOWS\system32\MitigationClient.dll [394752 2019-03-19] (Microsoft Corporation)
S4 tzautoupdate; C:\WINDOWS\SysWOW64\tzautoupdate.dll [72704 2019-08-11] (Microsoft Corporation)
R2 UsoSvc; C:\WINDOWS\system32\usosvc.dll [518144 2019-09-18] (Microsoft Corporation)
S3 VacSvc; C:\WINDOWS\System32\vac.dll [422192 2019-03-19] (Microsoft Corporation)
S3 WaaSMedicSvc; C:\WINDOWS\System32\WaaSMedicSvc.dll [349184 2019-03-19] (Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\NisSrv.exe [3630832 2019-09-21] (Microsoft Corporation) <==== ATTENTION
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MsMpEng.exe [103168 2019-09-21] (Microsoft Corporation) <==== ATTENTION
S3 wisvc; C:\WINDOWS\SysWOW64\flightsettings.dll [729088 2019-09-18] (Microsoft Corporation)
S3 WManSvc; C:\WINDOWS\system32\Windows.Management.Service.dll [863744 2019-09-18] (Microsoft Corporation)
S3 WpcMonSvc; C:\WINDOWS\System32\WpcDesktopMonSvc.dll [2119168 2019-09-18] (Microsoft Corporation)
S3 AVControlCenter; "C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe" [X]
S2 Lenovo System Agent Service; "C:\Program Files\Lenovo\iMController\SystemAgentService.exe" [X]
S3 LENOVO.CAMMUTE; "C:\Program Files\Lenovo\Communications Utility\cammute.exe" [X]
S4 LENOVO.MICMUTE; "C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe" [X]
S3 LENOVO.TPKNRSVC; "C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe" [X]
S3 LENOVO.TVTVCAM; "C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe" [X]
S3 LSC.Services.SystemService; "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe" [X]
S3 SUService; "C:\Program Files (x86)\Lenovo\System Update\SUService.exe" [X]
S2 TPHKLOAD; "C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Acx01000; C:\WINDOWS\System32\drivers\Acx01000.sys [337920 2019-03-19] (Microsoft Corporation)
R1 afunix; C:\WINDOWS\system32\drivers\afunix.sys [40960 2019-03-19] (Microsoft Corporation)
R1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [29696 2019-03-19] (Microsoft Corporation)
S3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [18432 2019-03-19] (Advanced Micro Devices, Inc)
S3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [37888 2019-03-19] (Advanced Micro Devices, Inc)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-09-03] (AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [209552 2019-09-03] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [263008 2019-09-03] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [205848 2019-09-03] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [61472 2019-09-03] (AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-05] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [282768 2019-09-03] (AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-09-03] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169408 2019-09-03] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112312 2019-09-03] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87944 2019-09-03] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1030784 2019-09-03] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [478096 2019-09-03] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-09-03] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [387176 2019-09-03] (AVAST Software)
R1 BasicDisplay; C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_307898c750ba9e44\BasicDisplay.sys [68096 2019-09-18] (Microsoft Corporation)
R1 BasicRender; C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_ba2a8de08ea0d469\BasicRender.sys [37888 2019-09-18] (Microsoft Corporation)
S3 bindflt; C:\WINDOWS\system32\drivers\bindflt.sys [117048 2019-09-18] (Microsoft Corporation)
S3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [36864 2019-08-14] (Microsoft Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 Fastboot; C:\WINDOWS\System32\DRIVERS\fastboot.sys [65928 2014-06-12] (Windows (R) Win 7 DDK provider)
S3 genericusbfn; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [20992 2019-09-18] (Microsoft Corporation)
S3 hidspi; C:\WINDOWS\System32\drivers\hidspi.sys [63488 2019-09-18] (Microsoft Corporation)
S4 hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [32568 2019-03-19] (Microsoft Corporation)
S3 iaLPSS2i_GPIO2_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2019-03-19] (Intel Corporation)
S3 iaLPSS2i_GPIO2_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2019-03-19] (Intel Corporation)
S3 iaLPSS2i_I2C_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [180736 2019-03-19] (Intel Corporation)
S3 iaLPSS2i_I2C_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2019-03-19] (Intel Corporation)
S0 iaStorAVC; C:\WINDOWS\System32\drivers\iaStorAVC.sys [885048 2019-03-19] (Intel Corporation)
S3 intelpmax; C:\WINDOWS\System32\drivers\intelpmax.sys [28672 2019-03-19] (Microsoft Corporation)
S0 ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [148520 2019-03-19] (Avago Technologies)
S3 MbbCx; C:\WINDOWS\System32\drivers\MbbCx.sys [358912 2019-08-11] (Microsoft Corporation)
S0 megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [94736 2019-03-19] (Avago Technologies)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [64512 2019-03-19] (Microsoft Corporation)
S3 NDKPing; C:\WINDOWS\System32\drivers\NDKPing.sys [63488 2019-03-19] (Microsoft Corporation)
R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3343872 2019-03-19] (Intel Corporation)
S3 nvdimm; C:\WINDOWS\System32\drivers\nvdimm.sys [158520 2019-03-19] (Microsoft Corporation)
S3 PktMon; C:\WINDOWS\System32\drivers\PktMon.sys [96056 2019-03-19] (Microsoft Corporation)
S3 portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [25600 2019-03-19] (Microsoft Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek )
R0 SgrmAgent; C:\WINDOWS\System32\drivers\SgrmAgent.sys [89096 2019-03-19] (Microsoft Corporation)
S0 SmartSAMD; C:\WINDOWS\System32\drivers\SmartSAMD.sys [220176 2019-03-19] (Microsemi Corportation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44192 2015-09-02] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 UcmUcsiAcpiClient; C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys [34816 2019-03-19] (Microsoft Corporation)
S3 UcmUcsiCx0101; C:\WINDOWS\System32\Drivers\UcmUcsiCx.sys [111104 2019-03-19] (Microsoft Corporation)
S3 UEFI; C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_4fcaf0fc6eaf7533\UEFI.sys [32568 2019-09-18] (Microsoft Corporation)
S3 UfxChipidea; C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_624eef84faf426d6\UfxChipidea.sys [108584 2019-09-18] (Microsoft Corporation)
R3 umbus; C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys [57856 2019-09-18] (Microsoft Corporation)
S3 UrsChipidea; C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_86da23c455846f41\urschipidea.sys [30224 2019-09-18] (Microsoft Corporation)
S3 UrsSynopsys; C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_7302ce5d1420ed71\urssynopsys.sys [28472 2019-09-18] (Microsoft Corporation)
S3 usbaudio2; C:\WINDOWS\System32\drivers\usbaudio2.sys [257536 2019-08-11] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-09-21] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [346336 2019-09-21] (Microsoft Corporation)
S3 WdmCompanionFilter; C:\WINDOWS\System32\drivers\WdmCompanionFilter.sys [21816 2019-03-19] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-09-21] (Microsoft Corporation)
R3 WinQuic; C:\WINDOWS\System32\drivers\winquic.sys [205112 2019-08-11] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: TroubleshootingSvc -> C:\Windows\system32\MitigationClient.dll (Microsoft Corporation)
NETSVC: LxpSvc -> C:\Windows\System32\LanguageOverlayServer.dll (Microsoft Corporation)
NETSVC: WManSvc -> C:\Windows\system32\Windows.Management.Service.dll (Microsoft Corporation)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-29 12:43 - 2019-09-29 12:44 - 000031652 _____ C:\Users\Ondřej\Desktop\FRST.txt
2019-09-28 21:25 - 2019-09-28 21:25 - 007636680 _____ (Malwarebytes) C:\Users\Ondřej\Desktop\adwcleaner_7.4.1.exe
2019-09-28 21:23 - 2019-09-28 21:23 - 007636680 _____ (Malwarebytes) C:\Users\Ondřej\Downloads\adwcleaner_7.4.1.exe
2019-09-27 20:00 - 2019-09-27 20:00 - 001615872 _____ (Farbar) C:\Users\Ondřej\Downloads\FRST64(1).exe
2019-09-21 08:59 - 2019-09-21 12:16 - 2172162102 _____ C:\Users\Ondřej\Downloads\Spider-Man Daleko od domova 2019 WEBRip en,CZ DABING cz.tit..mkv
2019-09-21 07:33 - 2019-09-04 03:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-09-21 07:33 - 2019-09-04 03:56 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-20 21:48 - 2019-09-20 21:47 - 000045665 _____ C:\Users\Ondřej\Downloads\John Wick Chapter 3 Parabellum.srt
2019-09-20 21:47 - 2019-09-20 21:47 - 000019141 _____ C:\Users\Ondřej\Downloads\John-Wick-Chapter-3-Parabellum(0000315628).zip
2019-09-20 17:09 - 2019-09-20 19:44 - 1721366090 _____ C:\Users\Ondřej\Downloads\John.Wick.3.2019.1080p.BluRay.DD5.1.x264-CZtit.mkv
2019-09-20 09:54 - 2019-09-28 21:32 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-09-18 19:42 - 2019-09-28 18:38 - 000002418 _____ C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-09-18 19:25 - 2019-09-18 19:25 - 005500928 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 004306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecerts.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fvecerts.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 025445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 019811328 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 018019328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 007014912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 006236160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 005916672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 003817472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2019-09-18 19:24 - 2019-09-18 19:24 - 002494232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 002314440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001510744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001488216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001244728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001105480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001098928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000516752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000362056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2019-09-18 19:23 - 2019-09-18 19:24 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 022626304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 008011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 007196160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 006516864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 005762032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 004857856 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 004538368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 002798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2019-09-18 19:23 - 2019-09-18 19:23 - 002586816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 002258640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001691136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001616568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001413624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001394488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-09-18 19:23 - 2019-09-18 19:23 - 001263104 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001122816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001073168 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000781912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcIsoCtnr.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000593112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000568336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000510984 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000454736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000442304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000431448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000316216 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000167136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000145720 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInput1_4.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000042512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInput1_4.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000021544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2019-09-18 19:23 - 2019-09-18 19:23 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL
2019-09-18 19:23 - 2019-09-18 19:23 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 006081744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 005848840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 005091840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 003916048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 003750912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 003738376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002771520 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002743808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002703360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002576384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002562048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002095104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001957000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001913088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001845616 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001815040 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001664168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001531656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001305608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001154952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001054656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000776704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000727752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000667272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000628400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000515448 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000511488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000488056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000401832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000375512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000267496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000072816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInputUap.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 009927992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 006408704 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 003372448 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 002762296 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 001633648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 001482256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 001261256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000913168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000889960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000822416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000561680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000401208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000334936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000147184 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000106296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000020944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 007261648 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 006162432 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 004009472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 003724800 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 003551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 001754232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-09-18 19:20 - 2019-09-18 19:20 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 001509728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001439232 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001371648 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-09-18 19:20 - 2019-09-18 19:20 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001065984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000810808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000680976 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000596008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000464696 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000411128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000237880 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2019-09-18 19:19 - 2019-09-18 19:20 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 007839120 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 007582752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003701248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003590672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 003353088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002723840 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 002551096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002466512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002032640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001158656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001149200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 001068560 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000944664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000909736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000808960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000676632 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000441360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000338800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000182288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000146416 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe
2019-09-18 19:18 - 2019-09-18 19:19 - 017787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 006226352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 004551352 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 002120272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 002119168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001744400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001413912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001259424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 001094144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000977408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000804880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000731960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000722288 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000589600 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000551736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000478264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wosc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApproveChildRequest.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000225080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ManageCI.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000149504 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000088568 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidspi.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000055304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2019-09-03 19:29 - 2019-09-03 19:28 - 000363912 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-09-03 19:29 - 2019-09-03 19:28 - 000236024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-09-03 19:29 - 2019-09-03 19:28 - 000169408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-29 12:43 - 2016-09-10 20:43 - 000000000 ____D C:\FRST
2019-09-29 12:42 - 2019-08-11 22:23 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-09-29 12:42 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-29 12:39 - 2018-04-05 05:24 - 000000000 ____D C:\Users\Ondřej\AppData\Local\AVAST Software
2019-09-29 12:36 - 2016-11-18 08:18 - 000000000 ____D C:\Users\Ondřej\AppData\LocalLow\Mozilla
2019-09-29 12:36 - 2015-09-02 18:46 - 000000000 __SHD C:\Users\Ondřej\IntelGraphicsProfiles
2019-09-28 21:49 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-09-28 21:40 - 2019-08-11 22:09 - 001693636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-28 21:40 - 2019-03-19 13:55 - 000718018 _____ C:\WINDOWS\system32\perfh005.dat
2019-09-28 21:40 - 2019-03-19 13:55 - 000145062 _____ C:\WINDOWS\system32\perfc005.dat
2019-09-28 21:40 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2019-09-28 21:33 - 2019-08-11 22:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-28 21:32 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-09-28 21:32 - 2015-01-27 22:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-28 21:30 - 2019-01-12 17:00 - 000000000 ____D C:\Users\Mamka\AppData\Local\Lenovo
2019-09-28 21:30 - 2018-12-04 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2019-09-28 21:30 - 2015-01-27 17:36 - 000000000 ____D C:\Users\Ondřej\AppData\Local\Lenovo
2019-09-28 21:30 - 2014-06-12 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2019-09-28 21:20 - 2019-08-11 21:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-09-28 18:39 - 2019-08-11 22:23 - 000003368 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3065164672-2474091376-2333748435-1001
2019-09-28 18:38 - 2015-01-27 17:40 - 000000000 __RDO C:\Users\Ondřej\SkyDrive
2019-09-27 23:57 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-27 23:45 - 2017-12-02 01:20 - 000000000 ____D C:\Users\Ondřej\AppData\Local\Packages
2019-09-27 20:18 - 2018-11-07 06:52 - 000033215 _____ C:\Users\Ondřej\Downloads\Addition.txt
2019-09-27 20:18 - 2018-11-07 06:48 - 000109418 _____ C:\Users\Ondřej\Downloads\FRST.txt
2019-09-25 22:35 - 2019-08-22 18:02 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-09-25 22:35 - 2019-08-22 18:02 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-09-25 22:35 - 2019-08-11 22:23 - 000003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-25 22:35 - 2019-08-11 22:23 - 000003694 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-09-25 22:35 - 2019-08-11 22:23 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-09-25 22:35 - 2019-08-11 22:23 - 000003362 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-09-25 22:35 - 2019-08-11 22:23 - 000002880 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3065164672-2474091376-2333748435-1001
2019-09-25 22:35 - 2019-08-11 22:23 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3065164672-2474091376-2333748435-1004
2019-09-25 22:35 - 2019-08-11 22:23 - 000002390 _____ C:\WINDOWS\System32\Tasks\AVFramework-TaskStartUserServer32-1S
2019-09-25 22:35 - 2019-08-11 22:23 - 000002320 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3065164672-2474091376-2333748435-500
2019-09-25 22:35 - 2019-08-11 22:23 - 000002254 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2019-09-25 22:35 - 2019-08-11 22:23 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-09-25 22:05 - 2019-08-22 18:03 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-25 22:05 - 2019-08-22 18:03 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-09-22 20:24 - 2018-07-27 12:57 - 000000000 ____D C:\Users\Ondřej\AppData\Local\CrashDumps
2019-09-21 14:51 - 2016-09-12 18:34 - 000000000 ____D C:\Users\Ondřej\AppData\Roaming\vlc
2019-09-21 07:52 - 2018-02-23 22:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-09-21 07:44 - 2019-08-04 17:00 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-21 07:39 - 2015-09-02 20:08 - 000000000 ___RD C:\Users\Ondřej\3D Objects
2019-09-21 07:39 - 2015-01-28 08:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-09-21 07:31 - 2019-08-11 21:44 - 000258096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-09-21 00:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\TextInput
2019-09-21 00:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-09-18 19:53 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-09-18 19:38 - 2019-03-19 13:58 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-09-18 19:38 - 2019-03-19 13:58 - 000018903 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-09-14 18:19 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-09-14 18:19 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-09-14 18:19 - 2015-01-27 22:26 - 000000000 ____D C:\Users\Ondřej\AppData\Local\Adobe
2019-09-14 18:11 - 2019-08-13 19:43 - 006035000 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2019-09-07 13:24 - 2019-08-11 22:23 - 000003856 _____ C:\WINDOWS\System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2019-09-07 13:24 - 2019-08-11 22:23 - 000003272 _____ C:\WINDOWS\System32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2019-09-07 13:24 - 2018-04-05 05:25 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-09-07 13:24 - 2018-04-05 05:25 - 000002474 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2019-09-03 19:46 - 2017-12-02 00:26 - 000478096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-09-03 19:29 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-09-03 19:28 - 2019-02-13 21:19 - 000282768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-09-03 19:28 - 2019-01-14 18:02 - 000263008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-09-03 19:28 - 2019-01-05 13:06 - 000205848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-09-03 19:28 - 2019-01-05 13:06 - 000061472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-09-03 19:28 - 2019-01-05 13:06 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-09-03 19:28 - 2018-10-14 15:38 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 001030784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000387176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000209552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000112312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000087944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys

==================== Files in the root of some directories =======

2015-01-27 17:35 - 2015-01-30 12:41 - 000001532 _____ () C:\Users\Ondřej\AppData\Roaming\AbsoluteReminder.xml
2015-01-27 17:34 - 2015-01-27 17:35 - 000000193 _____ () C:\Users\Ondřej\AppData\Local\RegisteredPackageInformation.xml
2017-12-02 01:18 - 2017-12-02 01:18 - 000000000 _____ () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
C:\WINDOWS\system32\codeintegrity\Bootcat.cache IS MISSING <==== ATTENTION

==================== End of FRST.txt ============================

Log z Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-10-2017 01
Ran by Ondřej (29-09-2019 12:46:50)
Running from C:\Users\Ondřej\Desktop
Windows 10 Home Version 1903 18362.356 (X64) (2019-08-11 20:24:47)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3065164672-2474091376-2333748435-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3065164672-2474091376-2333748435-503 - Limited - Disabled)
Guest (S-1-5-21-3065164672-2474091376-2333748435-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3065164672-2474091376-2333748435-1003 - Limited - Enabled)
Mamka (S-1-5-21-3065164672-2474091376-2333748435-1004 - Limited - Enabled) => C:\Users\Mamka
Ondřej (S-1-5-21-3065164672-2474091376-2333748435-1001 - Administrator - Enabled) => C:\Users\Ondřej
WDAGUtilityAccount (S-1-5-21-3065164672-2474091376-2333748435-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Absolute Reminder (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 2.3.0.1 - Absolute Software)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Alcor Micro USB Card Reader (HKLM-x32\...\{AE63FFAC-B71A-4B73-BF9C-DB00C78BD9BD}) (Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.17.3042.73586 - Alcor Micro Corp.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.7.2388 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 76.0.1632.100 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DeepSound 2.0 (HKLM-x32\...\{805FED7C-06CB-4E90-BE39-490044BD80BB}) (Version: 2.0.0 - Jpinsoft)
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.32.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM-x32\...\{1D2682EA-75DD-44B6-BF2D-CD3C49EAD012}) (Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4430150F-61B3-4142-BE04-EAC68C8DDA18}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4AF6C9BC-D8DB-4286-94D9-474CE54ADAA2}) (Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{503B47A9-E34A-4841-ADD7-417191D5DB5E}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{546FF45D-2467-4950-AAFB-0A06ACBB6B2C}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5B2190E9-199D-450A-94B3-4D6826C770C2}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5BEFE1E1-F597-4B79-913B-15FFDB25B744}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{63DE35C9-B080-4D03-B110-99E14FD35BCE}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{65316098-0220-4D5C-B37A-6136083A0897}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{E966DBE4-5075-465E-BA81-BC9A3A3204B3}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{608E1B9B-A2E8-4A1F-8BAB-874EB0DD25E3}) (Version: 1.0.0.36888 - Intel Corporation) Hidden
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.03 - )
Lenovo Patch Utility (HKLM-x32\...\{E8F27ADF-B1ED-41AF-A7EF-D5E71778480C}) (Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{053ACA98-6B07-4DD0-9DB3-F51E3EB1780C}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.15 - Lenovo)
Lenovo QuickControl (HKLM-x32\...\{4855C42F-5197-4AAD-A50D-5066D2CC4647}) (Version: 1.10 - Lenovo Group Limited)
Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 1.3.0.7 - Lenovo Group Limited)
Lenovo Solutions for Small Business (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 2.2.39.7991 - Intel(R) Corporation)
Lenovo Solutions for Small Business Customizations (HKLM-x32\...\{AFD7B869-3B70-40C7-8983-769256BA3BD2}) (Version: 2.2.0001.00 - Lenovo Group Limited)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0012.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0009 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 69.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 69.0.1 (x64 cs)) (Version: 69.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.1 - Mozilla)
RapidBoot HDD Accelerator (HKLM-x32\...\Fastboot) (Version: 2.1.1.0 - Lenovo)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Windows Driver Package - Lenovo 1.67.03.13 (08/27/2013 1.67.03.13) (HKLM\...\06FCBD562EA7843DCF8171AC0E58EC3257006F0D) (Version: 08/27/2013 1.67.03.13 - Lenovo)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\19.152.0801.0009\amd64\FileCoAuthLib64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {051B1D25-D1B2-4E5C-B242-41BD0D0D92B2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {083F3813-82BC-4622-A1B0-070C619B7D11} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner => C:\WINDOWS\system32\mitigationscanner.exe [2019-03-19] (Microsoft Corporation)
Task: {0E4632C3-4A38-4AF9-ABB0-562C8344E222} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {105D676A-D551-4274-81E7-97AC52E4FD87} - System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress => C:\WINDOWS\system32\speech_onecore\common\SpeechRuntime.exe [2019-03-19] (Microsoft Corporation)
Task: {23B0B759-A4D7-4278-BC83-D73328384B44} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-09-14] (Adobe)
Task: {2B77A8AE-779E-4732-A0A1-0D95C61DC34F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-09-18] (AVAST Software)
Task: {2E8963DD-A9A9-4FC6-8D96-2A17529D4D75} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
Task: {31639D36-A029-49A2-AEAC-B2FC0A039F8D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {359F4BAD-A779-4497-AEE5-B3CCB18CE490} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {3AA007D5-EF6A-45DB-9B7B-D4147BE45A03} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {3D8E83D8-967E-44AC-8896-42CDEC763404} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser
Task: {416FBFEF-09C2-4D51-9358-72205B2F5ED3} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives
Task: {48F207D2-23BE-4F26-A115-B05B486F6CA6} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates
Task: {4950EEED-825B-4281-B509-5F8E2F010EE9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {49DABB7D-EDCE-47A7-8713-FB08013229D1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2019-08-21] (AVAST Software)
Task: {516D241B-1A23-48F4-840B-11A723B41E13} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [2019-09-14] (Adobe)
Task: {53114A14-8C54-48DF-B080-57B4A97751CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-08-22] (Google LLC)
Task: {55412461-F053-4583-A6BF-19F36DAAD46D} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates
Task: {56AD6B69-48E5-4B1A-8C84-1D8ACA50A825} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {581ACE1E-F940-45C4-9F92-CB9822111C97} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe
Task: {58FF4867-8F73-4DE7-9F21-EF60A2189FB4} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05] (AVAST Software) <==== ATTENTION
Task: {5A685CFA-11F1-4693-9141-B1CD81CA640E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {5B6F66DF-2C23-44FE-BB38-AE38B02500EA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2019-08-14] (Microsoft Corporation)
Task: {613A083C-17CD-47F4-AC35-96FC308E59CF} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync
Task: {6448DFD0-EC24-4008-9809-2342BB99DE00} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {68560DFD-FC67-4EF8-BAA4-7F72211F3FD5} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\WINDOWS\system32\dxgiadaptercache.exe [2019-09-18] (Microsoft Corporation)
Task: {6FFA775B-E7BB-4DE0-A8F8-EA6FA07E6B25} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources
Task: {70994B8F-91C0-4070-B1CF-43F3B6295025} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [2019-09-14] (Adobe)
Task: {73CB9900-BD4D-4C69-9F68-6746AE3BB44B} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry
Task: {75ED1711-BF33-41F2-AEFF-4FCF4D9AF0CD} - System32\Tasks\AVFramework-TaskStartUserServer32-1S => C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
Task: {787FF47A-71BB-459C-A378-B51EE67C6461} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {7C8034B4-286F-4E86-AD41-4140C28A9604} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation
Task: {878FB588-CC42-4455-B1F3-1EDE6AA8C9AB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {89EFBF05-9E0A-4BE7-BDC6-9AC428C16C7B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {8CE419DE-4815-423C-8287-51CEF62C7937} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync
Task: {90C28B5C-2A50-48E1-9579-EEE75F1B1F2E} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTasks => %windir%\system32\rundll32.exe %windir%\system32\Windows.StateRepositoryClient.dll,StateRepositoryDoMaintenanceTasks
Task: {9516A2D7-8D49-4D89-8C14-98C68F4D4088} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {9620AC9F-8B21-4D17-8020-1D5CDAD18F20} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe
Task: {9D8D1E75-825C-4420-B49D-650FDF2B9A73} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {9F1CF379-D309-446D-8F0E-28B9610FD39E} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {A20BD5DE-766B-4A55-90C5-783FE250F8AE} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {ADD4CDB5-A335-4F36-A44C-C4A959634B2D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {B2C466B5-28AC-44D3-9E7C-7876939E3C00} - System32\Tasks\Microsoft\Windows\DirectX\DirectXDatabaseUpdater => C:\WINDOWS\system32\directxdatabaseupdater.exe [2019-09-18] (Microsoft Corporation)
Task: {B44644BE-5810-4402-BD67-3ABB6B6B2575} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {B8F0DEC7-8392-4F57-9990-74FCB934033F} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2019-03-19] ()
Task: {BD07A7FF-6C37-4524-A75F-312D525569D4} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {C6AD2AE3-CD70-4863-A1A9-BEC9039AD19F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-08-22] (Google LLC)
Task: {CAD2082F-8815-4263-B57B-3321BAC83040} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {CAE334FF-B5B6-4E72-A828-5515C4F2E42E} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-09-02] (Synaptics Incorporated)
Task: {D5B6ED59-85B8-43ED-BD82-D29D747A6B30} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2019-07-24] (Adobe Systems)
Task: {D8183722-F3DF-420F-AE2D-C83B3AA3E4FC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2019-09-03] (AVAST Software)
Task: {DF8ABE54-47C9-4567-8DD0-36F92A2CC529} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates
Task: {E02B7932-4502-42F0-9038-3EA07FCA79DB} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
Task: {E5D29846-126F-4D1C-AE27-A91611873CAB} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2019-08-21] (AVAST Software)
Task: {E71401F6-939C-45A6-8351-8B5E186F5E66} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05] (AVAST Software) <==== ATTENTION
Task: {EB170355-3AAC-4936-92C6-71A5A892A523} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe
Task: {EB7FA518-8D44-4FCE-B44E-539E4E5C2C15} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {EEBBDB0C-0B9F-4704-99B1-F7CCAAD28863} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {F3B94846-7CA4-451D-8609-130B16543495} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {F6CBA6CA-D2D5-4E71-973F-0AB1DE4DF011} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-03-19 06:43 - 2019-03-19 06:43 - 000054960 _____ () C:\WINDOWS\System32\UMPDC.dll
2019-08-11 22:16 - 2019-08-11 22:16 - 000037888 _____ () C:\Windows\System32\usocoreps.dll
2019-01-05 13:05 - 2019-01-05 13:05 - 093695912 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2019-08-11 22:15 - 2019-08-11 22:15 - 001841152 _____ () C:\WINDOWS\system32\TextInputMethodFormatter.dll
2019-03-19 06:59 - 2019-03-19 13:57 - 000094720 _____ () C:\Windows\System32\VirtualMonitorManager.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000494592 _____ () C:\Windows\ShellExperiences\TileControl.dll
2019-08-11 22:16 - 2019-08-11 22:16 - 002880000 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000944144 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
2019-04-18 05:53 - 2019-04-18 05:54 - 002834944 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.1902.633.0_x64__8wekyb3d8bbwe\People.BackgroundTasks.dll
2019-04-18 05:53 - 2019-04-18 05:54 - 000120320 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.1902.633.0_x64__8wekyb3d8bbwe\PeopleUtilRT.dll
2019-08-16 22:04 - 2019-08-16 22:04 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-23 22:06 - 2018-10-24 05:20 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2019-08-16 22:04 - 2019-08-16 22:04 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 001796608 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2013-08-19 04:48 - 2013-08-19 04:48 - 001720184 _____ () C:\Program Files (x86)\Integrated Camera\Monitor.exe
2019-09-20 12:56 - 2019-09-20 12:57 - 000069120 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11909.1002.3.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll
2019-09-21 17:11 - 2019-09-21 17:11 - 011500032 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\YourPhone.exe
2019-09-21 17:11 - 2019-09-21 17:11 - 002512896 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\YourPhone.AppCore.dll
2019-09-21 17:11 - 2019-09-21 17:11 - 000410624 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\AppConfig.dll
2018-10-31 22:50 - 2018-10-31 22:52 - 001004032 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2019-09-21 17:11 - 2019-09-21 17:11 - 001475584 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\YourPhone.AppCore.WinRT.dll
2019-09-21 17:11 - 2019-09-21 17:11 - 003158016 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\YourPhone.DataStore.dll
2019-09-21 17:11 - 2019-09-21 17:11 - 004790784 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\PhoneCommunicationAppService.dll
2014-06-12 17:20 - 2014-06-12 17:20 - 000033520 ____N () C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBServiceps.dll
2014-06-12 17:21 - 2013-09-16 06:19 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CBDHSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WinQuic => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-01-04 13:59 - 000000825 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ondřej\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\metal-gear-solid-the-phantom-pain-sunset.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-deviceenroller-TCP-Out] => (Allow) %SystemRoot%\system32\deviceenroller.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe
FirewallRules: [{571524AF-1195-4051-B3C6-C3867E35B7C7}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{22A4E0D8-EB3D-44EA-9305-8AFEF5EEEA8E}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [TCP Query User{DF1C0797-A5F4-4959-9AAC-1C69BF0C9F13}C:\program files (x86)\avast software\browser\application\avastbrowser.exe] => (Block) C:\program files (x86)\avast software\browser\application\avastbrowser.exe
FirewallRules: [UDP Query User{3FD4CEC2-1E80-4BC9-9D49-D52C9B8F4ECB}C:\program files (x86)\avast software\browser\application\avastbrowser.exe] => (Block) C:\program files (x86)\avast software\browser\application\avastbrowser.exe
FirewallRules: [{60818710-17AC-4225-923C-04951E4987E6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{BF8107DE-DF7F-4285-B6A2-E954AED67253}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{4117DCE7-A03F-4694-A8F6-890D3F458F7C}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [{090804E2-EAF3-4A34-8A9C-938CD3AB7AA5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

15-09-2019 19:52:07 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/28/2019 09:54:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4392,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (09/28/2019 09:40:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: loctaskmgr.exe, verze: 1.2.4.8, časové razítko: 0x51c4cf87
Název chybujícího modulu: NetSetupShim.dll, verze: 10.0.18362.1, časové razítko: 0x45361cad
Kód výjimky: 0xc0000005
Posun chyby: 0x0002a4cb
ID chybujícího procesu: 0x1fa0
Čas spuštění chybující aplikace: 0x01d5763448158b1b
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
Cesta k chybujícímu modulu: C:\Windows\System32\NetSetupShim.dll
ID zprávy: 12553b4b-95df-4e6f-aa0d-4d471f0d5133
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/28/2019 09:40:41 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: loctaskmgr.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.AccessViolationException
na LaNative.FPS_Set.GetFPSState(Int32*, System.String)
na LocationAwareness.LocationAwarenessLib.Task.AdapterFps.GetStatus()
na LocationAwareness.LocationAwarenessLib.Task.SecuritySettingTask.GetFileAndPrinterSharing(System.String, LocationAwareness.LocationAwarenessLib.Task.FpsSettings ByRef)
na LocationAwareness.LocationAwarenessLib.ProfileSettings.GetProfileSettings(LocationAwareness.LocationAwarenessLib.COM.CommandBuilder, System.String)
na LocationTaskManager.AgentObject.GetCurrentSettings(System.String)
na LocationTaskManager.AgentObject.InitAgent()
na LocationTaskManager.AgentObjectManager.InitAgent(UInt32)
na LocationTaskManager.LocationTaskManager.InitAgent(UInt32, System.String)
na LocationTaskManager.LocationTaskManager.InitAgent()
na LocationTaskManager.LocationTaskManager.InitService()
na System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Threading.ThreadHelper.ThreadStart()

Error: (09/28/2019 09:30:50 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (09/28/2019 09:27:51 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (79340,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (09/28/2019 08:05:10 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 27768; požadovaná velikost: 36168.

Error: (09/28/2019 07:46:58 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).

Error: (09/28/2019 07:29:34 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (104484,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (09/28/2019 06:59:45 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (117784,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (09/28/2019 06:45:21 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (112864,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (09/29/2019 12:36:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/29/2019 12:36:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (09/29/2019 12:35:56 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby QuickControlService bylo dosaženo časového limitu (30000 ms).

Error: (09/29/2019 12:35:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/29/2019 12:35:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (09/28/2019 09:41:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Location Task Manager byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/28/2019 09:40:59 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Správce stažených map přestala během spouštění reagovat.

Error: (09/28/2019 09:38:19 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service přestala během spouštění reagovat.

Error: (09/28/2019 09:35:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/28/2019 09:35:06 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).


CodeIntegrity:
===================================
Date: 2019-09-28 21:37:57.679
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-09-28 21:37:57.651
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-09-28 21:36:52.506
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.1908.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-09-28 21:36:52.478
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.1908.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-09-28 21:36:52.442
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.1908.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-09-28 21:36:51.744
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-09-28 21:36:51.692
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-09-28 21:36:37.788
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-28 21:18:28.641
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-28 21:18:26.293
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 82%
Total physical RAM: 3966.22 MB
Available physical RAM: 711.3 MB
Total Virtual: 7678.22 MB
Available Virtual: 3900.01 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:452.13 GB) (Free:358.58 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: ACBD0B8F)

Partition: GPT.

==================== End of Addition.txt ============================

[Rudy]

Máte starou verzi FRST. Stáhněte nový a udělejte logy znovu.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-10-2017 01 (ATTENTION: ====> FRSTversion is 706 days old and could be outdated)
Ran by Ondřej (administrator) on ONDRA-PC (29-09-2019 12:43:09)

[OndraVas]

Tak druhý pokus a teď líp.

FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-09-2019
Ran by Ondřej (administrator) on ONDRA-PC (LENOVO 20208) (29-09-2019 19:59:32)
Running from C:\Users\Ondřej\Downloads
Loaded Profiles: Ondřej (Available Profiles: Ondřej & Mamka)
Platform: Windows 10 Home Version 1903 18362.356 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AlcorMicro, Corp. -> Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(LENOVO -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Sunplus Innovation Technology Inc. -> ) [File not signed] C:\Program Files (x86)\Integrated Camera\Monitor.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2015-09-02] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2013-07-12] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM-x32\...\Run: [Integrated Camera_Monitor] => C:\Program Files (x86)\Integrated Camera\monitor.exe [1720184 2013-08-19] (Sunplus Innovation Technology Inc. -> ) [File not signed]
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [750320 2014-06-12] (Lenovo -> Lenovo)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\Run: [AvastBrowserAutoLaunch_50FFC75F26DF6ED853244AB5243DBC92] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857288 2019-08-21] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-25] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\76.0.1632.100\Installer\chrmstp.exe [2019-09-07] (AVAST Software s.r.o. -> AVAST Software)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {051B1D25-D1B2-4E5C-B242-41BD0D0D92B2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0E4632C3-4A38-4AF9-ABB0-562C8344E222} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo)
Task: {23B0B759-A4D7-4278-BC83-D73328384B44} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-14] (Adobe Inc. -> Adobe)
Task: {23D68B3E-21E6-45A4-8112-0819327117F6} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {2B77A8AE-779E-4732-A0A1-0D95C61DC34F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {2E8963DD-A9A9-4FC6-8D96-2A17529D4D75} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
Task: {31639D36-A029-49A2-AEAC-B2FC0A039F8D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {359F4BAD-A779-4497-AEE5-B3CCB18CE490} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {3AA007D5-EF6A-45DB-9B7B-D4147BE45A03} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4950EEED-825B-4281-B509-5F8E2F010EE9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {49DABB7D-EDCE-47A7-8713-FB08013229D1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857288 2019-08-21] (AVAST Software s.r.o. -> AVAST Software)
Task: {516D241B-1A23-48F4-840B-11A723B41E13} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-14] (Adobe Inc. -> Adobe)
Task: {53114A14-8C54-48DF-B080-57B4A97751CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-22] (Google Inc -> Google LLC)
Task: {56AD6B69-48E5-4B1A-8C84-1D8ACA50A825} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {581ACE1E-F940-45C4-9F92-CB9822111C97} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe
Task: {58FF4867-8F73-4DE7-9F21-EF60A2189FB4} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {5A685CFA-11F1-4693-9141-B1CD81CA640E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {6448DFD0-EC24-4008-9809-2342BB99DE00} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {70994B8F-91C0-4070-B1CF-43F3B6295025} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-09-14] (Adobe Inc. -> Adobe)
Task: {75ED1711-BF33-41F2-AEFF-4FCF4D9AF0CD} - System32\Tasks\AVFramework-TaskStartUserServer32-1S => C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
Task: {787FF47A-71BB-459C-A378-B51EE67C6461} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {878FB588-CC42-4455-B1F3-1EDE6AA8C9AB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {89EFBF05-9E0A-4BE7-BDC6-9AC428C16C7B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {9516A2D7-8D49-4D89-8C14-98C68F4D4088} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {9620AC9F-8B21-4D17-8020-1D5CDAD18F20} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe
Task: {9D8D1E75-825C-4420-B49D-650FDF2B9A73} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A20BD5DE-766B-4A55-90C5-783FE250F8AE} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {ADD4CDB5-A335-4F36-A44C-C4A959634B2D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {BD07A7FF-6C37-4524-A75F-312D525569D4} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {C6AD2AE3-CD70-4863-A1A9-BEC9039AD19F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-22] (Google Inc -> Google LLC)
Task: {CAD2082F-8815-4263-B57B-3321BAC83040} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {CAE334FF-B5B6-4E72-A828-5515C4F2E42E} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2015-09-02] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D5B6ED59-85B8-43ED-BD82-D29D747A6B30} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {D8183722-F3DF-420F-AE2D-C83B3AA3E4FC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3942792 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {DB684EC3-3EE4-4265-B98A-1C5EAE681959} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {E02B7932-4502-42F0-9038-3EA07FCA79DB} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
Task: {E5D29846-126F-4D1C-AE27-A91611873CAB} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857288 2019-08-21] (AVAST Software s.r.o. -> AVAST Software)
Task: {E71401F6-939C-45A6-8351-8B5E186F5E66} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {EB170355-3AAC-4936-92C6-71A5A892A523} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe
Task: {EB7FA518-8D44-4FCE-B44E-539E4E5C2C15} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {EEBBDB0C-0B9F-4704-99B1-F7CCAAD28863} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {F3B94846-7CA4-451D-8609-130B16543495} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{ae7fbfcd-2401-4cd2-8d92-a813d23f9736}: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{afc96962-e335-40e7-9268-d208e976ade6}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> DefaultScope {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =

FireFox:
========
FF DefaultProfile: jjoaezw7.default
FF ProfilePath: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\480zqu3s.default-release [2019-09-29]
FF Homepage: Mozilla\Firefox\Profiles\480zqu3s.default-release -> www.seznam.cz
FF Extension: (Avast Online Security) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\480zqu3s.default-release\Extensions\wrc@avast.com.xpi [2019-09-05] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json]
FF Extension: (No Name) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\480zqu3s.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-22]
FF ProfilePath: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default [2019-09-05]
FF Homepage: Mozilla\Firefox\Profiles\jjoaezw7.default -> hxxps://www.seznam.cz/?clid=22668
FF NewTab: Mozilla\Firefox\Profiles\jjoaezw7.default -> about:newtab
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\sko-extension@firma.seznam.cz.xpi [2017-11-28]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\sp@avast.com.xpi [2019-06-05]
FF Extension: (Avast Online Security) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\wrc@avast.com.xpi [2018-06-21]
FF Extension: (No Name) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-04]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2017-10-31]
FF SearchPlugin: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\searchplugins\seznam-avast.xml [2017-11-11]
FF HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Ondřej\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-14] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-14] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-08-22] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-08-22] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3065164672-2474091376-2333748435-1001: @acestream.net/acestreamplugin,version=3.1.0 -> C:\Users\Ondřej\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default [2019-09-05]
CHR Extension: (Prezentace) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-22]
CHR Extension: (Dokumenty) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-22]
CHR Extension: (Disk Google) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-08-22]
CHR Extension: (YouTube) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-22]
CHR Extension: (Tabulky) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-08-22]
CHR Extension: (Ace Script) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-08-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-08-22]
CHR Extension: (Gmail) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-22]
CHR Extension: (Chrome Media Router) - C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-22]
CHR HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5975136 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [405072 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\76.0.1632.100\elevation_service.exe [976608 2019-08-21] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [140016 2014-06-12] (Lenovo -> Lenovo)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2013-07-26] (Intel Corporation - Business Client Platform Division -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2045944 2013-08-02] (LENOVO(JAPAN)LTD. -> Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-11] (Lenovo(Japan)Ltd. -> Lenovo Group Limited)
S2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [465912 2013-06-22] (LENOVO(JAPAN)LTD. -> )
R2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [59384 2013-07-17] (LENOVO(JAPAN)LTD. -> Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [138232 2013-07-17] (LENOVO(JAPAN)LTD. -> Lenovo Group Limited)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [247968 2015-09-02] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\NisSrv.exe [3630832 2019-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MsMpEng.exe [103168 2019-09-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 AVControlCenter; "C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe" [X]
S2 Lenovo System Agent Service; "C:\Program Files\Lenovo\iMController\SystemAgentService.exe" [X]
S3 LENOVO.CAMMUTE; "C:\Program Files\Lenovo\Communications Utility\cammute.exe" [X]
S4 LENOVO.MICMUTE; "C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe" [X]
S3 LENOVO.TPKNRSVC; "C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe" [X]
S3 LENOVO.TVTVCAM; "C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe" [X]
S3 LSC.Services.SystemService; "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe" [X]
S3 SUService; "C:\Program Files (x86)\Lenovo\System Update\SUService.exe" [X]
S2 TPHKLOAD; "C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [209552 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [263008 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [205848 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [61472 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [282768 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169408 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112312 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87944 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1030784 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [478096 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [387176 2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 Fastboot; C:\WINDOWS\System32\DRIVERS\fastboot.sys [65928 2014-06-12] (Lenovo -> Windows (R) Win 7 DDK provider)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3343872 2019-03-19] (Microsoft Windows -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek Semiconductor Corp -> Realtek )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44192 2015-09-02] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-09-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [346336 2019-09-21] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-09-21] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-29 19:58 - 2019-09-29 19:58 - 001615360 _____ (Farbar) C:\Users\Ondřej\Downloads\FRST64(2).exe
2019-09-29 12:46 - 2019-09-29 12:48 - 000042284 _____ C:\Users\Ondřej\Desktop\Addition.txt
2019-09-29 12:43 - 2019-09-29 12:48 - 000103950 _____ C:\Users\Ondřej\Desktop\FRST.txt
2019-09-28 21:25 - 2019-09-28 21:25 - 007636680 _____ (Malwarebytes) C:\Users\Ondřej\Desktop\adwcleaner_7.4.1.exe
2019-09-28 21:23 - 2019-09-28 21:23 - 007636680 _____ (Malwarebytes) C:\Users\Ondřej\Downloads\adwcleaner_7.4.1.exe
2019-09-27 20:00 - 2019-09-27 20:00 - 001615872 _____ (Farbar) C:\Users\Ondřej\Downloads\FRST64(1).exe
2019-09-21 08:59 - 2019-09-21 12:16 - 2172162102 _____ C:\Users\Ondřej\Downloads\Spider-Man Daleko od domova 2019 WEBRip en,CZ DABING cz.tit..mkv
2019-09-21 07:33 - 2019-09-04 03:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-09-21 07:33 - 2019-09-04 03:56 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-20 21:48 - 2019-09-20 21:47 - 000045665 _____ C:\Users\Ondřej\Downloads\John Wick Chapter 3 Parabellum.srt
2019-09-20 21:47 - 2019-09-20 21:47 - 000019141 _____ C:\Users\Ondřej\Downloads\John-Wick-Chapter-3-Parabellum(0000315628).zip
2019-09-20 17:09 - 2019-09-20 19:44 - 1721366090 _____ C:\Users\Ondřej\Downloads\John.Wick.3.2019.1080p.BluRay.DD5.1.x264-CZtit.mkv
2019-09-20 09:54 - 2019-09-28 21:32 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-09-18 19:42 - 2019-09-28 18:38 - 000002418 _____ C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-09-18 19:25 - 2019-09-18 19:25 - 005500928 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 004306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecerts.dll
2019-09-18 19:25 - 2019-09-18 19:25 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fvecerts.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 025445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 019811328 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 018019328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 007014912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 006236160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 005916672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 003817472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2019-09-18 19:24 - 2019-09-18 19:24 - 002494232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 002314440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001510744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001488216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001244728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001105480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 001098928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000516752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000362056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2019-09-18 19:24 - 2019-09-18 19:24 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2019-09-18 19:23 - 2019-09-18 19:24 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 022626304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 008011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 007196160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 006516864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 005762032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 004857856 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 004538368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 002798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2019-09-18 19:23 - 2019-09-18 19:23 - 002586816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 002258640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001691136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001616568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001413624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001394488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-09-18 19:23 - 2019-09-18 19:23 - 001263104 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001122816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 001073168 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000781912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcIsoCtnr.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000593112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000568336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000510984 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000454736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000442304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000431448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000316216 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000167136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000145720 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-09-18 19:23 - 2019-09-18 19:23 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInput1_4.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000042512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInput1_4.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000021544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2019-09-18 19:23 - 2019-09-18 19:23 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2019-09-18 19:23 - 2019-09-18 19:23 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL
2019-09-18 19:23 - 2019-09-18 19:23 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2019-09-18 19:23 - 2019-09-18 19:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 006081744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 005848840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 005091840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 003916048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 003750912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 003738376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002771520 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002743808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002703360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002576384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002562048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 002095104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001957000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001913088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001845616 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001815040 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001664168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001531656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001305608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001154952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 001054656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000776704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000727752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000667272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000628400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000515448 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000511488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000488056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000401832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000375512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000267496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000072816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInputUap.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2019-09-18 19:22 - 2019-09-18 19:22 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2019-09-18 19:22 - 2019-09-18 19:22 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 009927992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 006408704 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 003372448 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 002762296 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 001633648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 001482256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 001261256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000913168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000889960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000822416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000561680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000401208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000334936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000147184 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000106296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-09-18 19:21 - 2019-09-18 19:21 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2019-09-18 19:21 - 2019-09-18 19:21 - 000020944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2019-09-18 19:21 - 2019-09-18 19:21 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 007261648 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 006162432 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 004009472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 003724800 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 003551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 001754232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-09-18 19:20 - 2019-09-18 19:20 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 001509728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001439232 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001371648 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-09-18 19:20 - 2019-09-18 19:20 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 001065984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000810808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000680976 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000596008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000464696 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000411128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000237880 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-09-18 19:20 - 2019-09-18 19:20 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-09-18 19:20 - 2019-09-18 19:20 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-09-18 19:20 - 2019-09-18 19:20 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2019-09-18 19:19 - 2019-09-18 19:20 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 007902912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 007839120 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 007582752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003701248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003590672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 003353088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002723840 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 002551096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002466512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 002032640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001158656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001149200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 001068560 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000944664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000909736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000808960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000676632 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000441360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000338800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000182288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-09-18 19:19 - 2019-09-18 19:19 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000146416 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2019-09-18 19:19 - 2019-09-18 19:19 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2019-09-18 19:19 - 2019-09-18 19:19 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe
2019-09-18 19:18 - 2019-09-18 19:19 - 017787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 006226352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 004551352 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 002120272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 002119168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001744400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001413912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001259424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 001094144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000977408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000804880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000731960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000722288 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000589600 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000551736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000478264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wosc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApproveChildRequest.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000225080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ManageCI.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000149504 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000088568 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-09-18 19:18 - 2019-09-18 19:18 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidspi.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000055304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2019-09-18 19:18 - 2019-09-18 19:18 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2019-09-18 19:18 - 2019-09-18 19:18 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2019-09-03 19:29 - 2019-09-03 19:28 - 000363912 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-09-03 19:29 - 2019-09-03 19:28 - 000236024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-09-03 19:29 - 2019-09-03 19:28 - 000169408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-29 20:02 - 2018-11-07 06:48 - 000032017 _____ C:\Users\Ondřej\Downloads\FRST.txt
2019-09-29 20:00 - 2016-09-10 20:43 - 000000000 ____D C:\FRST
2019-09-29 19:57 - 2019-08-11 22:23 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2019-09-29 19:55 - 2019-08-11 21:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-09-29 14:38 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-29 12:39 - 2018-04-05 05:24 - 000000000 ____D C:\Users\Ondřej\AppData\Local\AVAST Software
2019-09-29 12:36 - 2016-11-18 08:18 - 000000000 ____D C:\Users\Ondřej\AppData\LocalLow\Mozilla
2019-09-29 12:36 - 2015-09-02 18:46 - 000000000 __SHD C:\Users\Ondřej\IntelGraphicsProfiles
2019-09-28 21:49 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-09-28 21:40 - 2019-08-11 22:09 - 001693636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-28 21:40 - 2019-03-19 13:55 - 000718018 _____ C:\WINDOWS\system32\perfh005.dat
2019-09-28 21:40 - 2019-03-19 13:55 - 000145062 _____ C:\WINDOWS\system32\perfc005.dat
2019-09-28 21:40 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2019-09-28 21:33 - 2019-08-11 22:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-28 21:32 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-09-28 21:32 - 2015-01-27 22:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-28 21:30 - 2019-01-12 17:00 - 000000000 ____D C:\Users\Mamka\AppData\Local\Lenovo
2019-09-28 21:30 - 2018-12-04 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2019-09-28 21:30 - 2015-01-27 17:36 - 000000000 ____D C:\Users\Ondřej\AppData\Local\Lenovo
2019-09-28 21:30 - 2014-06-12 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2019-09-28 18:39 - 2019-08-11 22:23 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3065164672-2474091376-2333748435-1001
2019-09-28 18:38 - 2015-01-27 17:40 - 000000000 __RDO C:\Users\Ondřej\SkyDrive
2019-09-27 23:57 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-27 23:45 - 2017-12-02 01:20 - 000000000 ____D C:\Users\Ondřej\AppData\Local\Packages
2019-09-27 20:18 - 2018-11-07 06:52 - 000033215 _____ C:\Users\Ondřej\Downloads\Addition.txt
2019-09-25 22:35 - 2019-08-22 18:02 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-09-25 22:35 - 2019-08-22 18:02 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-09-25 22:35 - 2019-08-11 22:23 - 000003818 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-25 22:35 - 2019-08-11 22:23 - 000003694 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2019-09-25 22:35 - 2019-08-11 22:23 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-09-25 22:35 - 2019-08-11 22:23 - 000003362 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2019-09-25 22:35 - 2019-08-11 22:23 - 000002880 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3065164672-2474091376-2333748435-1001
2019-09-25 22:35 - 2019-08-11 22:23 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3065164672-2474091376-2333748435-1004
2019-09-25 22:35 - 2019-08-11 22:23 - 000002390 _____ C:\WINDOWS\system32\Tasks\AVFramework-TaskStartUserServer32-1S
2019-09-25 22:35 - 2019-08-11 22:23 - 000002320 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3065164672-2474091376-2333748435-500
2019-09-25 22:35 - 2019-08-11 22:23 - 000002254 _____ C:\WINDOWS\system32\Tasks\Synaptics TouchPad Enhancements
2019-09-25 22:35 - 2019-08-11 22:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2019-09-25 22:05 - 2019-08-22 18:03 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-25 22:05 - 2019-08-22 18:03 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-09-22 20:24 - 2018-07-27 12:57 - 000000000 ____D C:\Users\Ondřej\AppData\Local\CrashDumps
2019-09-21 14:51 - 2016-09-12 18:34 - 000000000 ____D C:\Users\Ondřej\AppData\Roaming\vlc
2019-09-21 07:52 - 2018-02-23 22:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-09-21 07:44 - 2019-08-04 17:00 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-21 07:39 - 2015-09-02 20:08 - 000000000 ___RD C:\Users\Ondřej\3D Objects
2019-09-21 07:39 - 2015-01-28 08:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-09-21 07:31 - 2019-08-11 21:44 - 000258096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-09-21 00:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\TextInput
2019-09-21 00:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2019-09-21 00:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-09-18 19:53 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-09-18 19:38 - 2019-03-19 13:58 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-09-18 19:38 - 2019-03-19 13:58 - 000018903 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-09-14 18:19 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-09-14 18:19 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-09-14 18:19 - 2015-01-27 22:26 - 000000000 ____D C:\Users\Ondřej\AppData\Local\Adobe
2019-09-14 18:11 - 2019-08-13 19:43 - 006035000 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2019-09-07 13:24 - 2019-08-11 22:23 - 000003856 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2019-09-07 13:24 - 2019-08-11 22:23 - 000003272 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2019-09-07 13:24 - 2018-04-05 05:25 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-09-07 13:24 - 2018-04-05 05:25 - 000002474 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2019-09-03 19:46 - 2017-12-02 00:26 - 000478096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-09-03 19:29 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-09-03 19:28 - 2019-02-13 21:19 - 000282768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-09-03 19:28 - 2019-01-14 18:02 - 000263008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-09-03 19:28 - 2019-01-05 13:06 - 000205848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-09-03 19:28 - 2019-01-05 13:06 - 000061472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-09-03 19:28 - 2019-01-05 13:06 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-09-03 19:28 - 2018-10-14 15:38 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 001030784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000387176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000209552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000112312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-09-03 19:28 - 2017-12-02 00:26 - 000087944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys

==================== Files in the root of some directories ================

2015-01-27 17:35 - 2015-01-30 12:41 - 000001532 _____ () C:\Users\Ondřej\AppData\Roaming\AbsoluteReminder.xml
2015-01-27 17:34 - 2015-01-27 17:35 - 000000193 _____ () C:\Users\Ondřej\AppData\Local\RegisteredPackageInformation.xml

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-09-2019
Ran by Ondřej (29-09-2019 20:03:31)
Running from C:\Users\Ondřej\Downloads
Windows 10 Home Version 1903 18362.356 (X64) (2019-08-11 20:24:47)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3065164672-2474091376-2333748435-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3065164672-2474091376-2333748435-503 - Limited - Disabled)
Guest (S-1-5-21-3065164672-2474091376-2333748435-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3065164672-2474091376-2333748435-1003 - Limited - Enabled)
Mamka (S-1-5-21-3065164672-2474091376-2333748435-1004 - Limited - Enabled) => C:\Users\Mamka
Ondřej (S-1-5-21-3065164672-2474091376-2333748435-1001 - Administrator - Enabled) => C:\Users\Ondřej
WDAGUtilityAccount (S-1-5-21-3065164672-2474091376-2333748435-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Absolute Reminder (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 2.3.0.1 - Absolute Software)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Alcor Micro USB Card Reader (HKLM-x32\...\{AE63FFAC-B71A-4B73-BF9C-DB00C78BD9BD}) (Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.17.3042.73586 - Alcor Micro Corp.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.7.2388 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 76.0.1632.100 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DeepSound 2.0 (HKLM-x32\...\{805FED7C-06CB-4E90-BE39-490044BD80BB}) (Version: 2.0.0 - Jpinsoft)
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.32.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM-x32\...\{1D2682EA-75DD-44B6-BF2D-CD3C49EAD012}) (Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4430150F-61B3-4142-BE04-EAC68C8DDA18}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4AF6C9BC-D8DB-4286-94D9-474CE54ADAA2}) (Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{503B47A9-E34A-4841-ADD7-417191D5DB5E}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{546FF45D-2467-4950-AAFB-0A06ACBB6B2C}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5B2190E9-199D-450A-94B3-4D6826C770C2}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5BEFE1E1-F597-4B79-913B-15FFDB25B744}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{63DE35C9-B080-4D03-B110-99E14FD35BCE}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{65316098-0220-4D5C-B37A-6136083A0897}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{E966DBE4-5075-465E-BA81-BC9A3A3204B3}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{608E1B9B-A2E8-4A1F-8BAB-874EB0DD25E3}) (Version: 1.0.0.36888 - Intel Corporation) Hidden
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.03 - )
Lenovo Patch Utility (HKLM-x32\...\{E8F27ADF-B1ED-41AF-A7EF-D5E71778480C}) (Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{053ACA98-6B07-4DD0-9DB3-F51E3EB1780C}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.15 - Lenovo)
Lenovo QuickControl (HKLM-x32\...\{4855C42F-5197-4AAD-A50D-5066D2CC4647}) (Version: 1.10 - Lenovo Group Limited)
Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 1.3.0.7 - Lenovo Group Limited)
Lenovo Solutions for Small Business (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 2.2.39.7991 - Intel(R) Corporation)
Lenovo Solutions for Small Business Customizations (HKLM-x32\...\{AFD7B869-3B70-40C7-8983-769256BA3BD2}) (Version: 2.2.0001.00 - Lenovo Group Limited)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0012.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0009 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 69.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 69.0.1 (x64 cs)) (Version: 69.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.1 - Mozilla)
RapidBoot HDD Accelerator (HKLM-x32\...\Fastboot) (Version: 2.1.1.0 - Lenovo)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Windows Driver Package - Lenovo 1.67.03.13 (08/27/2013 1.67.03.13) (HKLM\...\06FCBD562EA7843DCF8171AC0E58EC3257006F0D) (Version: 08/27/2013 1.67.03.13 - Lenovo)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Packages:
=========
AccuWeather - Weather for Life -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_10.0.348.1000_x64__8zz2pj9h1h1d8 [2018-04-07] (AccuWeather) [MS Ad]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.2.0_x64__tf1gferkr813w [2019-08-13] (Autodesk Inc.)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1600.3.0_x86__kgqvnymyfvs32 [2019-09-20] (king.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.3519.0_x64__rz1tebttyb220 [2019-09-21] (Dolby Laboratories)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.20.8626.0_x86__q4d96b2w5wcc2 [2019-08-14] (Evernote)
Hightail for Lenovo -> C:\Program Files\WindowsApps\YouSendIt.HighTailForLenovo_1.3.0.1278_neutral__069rkrpjefrbc [2015-01-29] (Hightail)
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2015-06-21] (AMZN Mobile LLC)
Lenovo QuickCast -> C:\Program Files\WindowsApps\E046963F.LenovoQuickCast_2.5.11.0_x86__k1h2ywk1493x8 [2015-01-29] (Lenovo, INC.)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2017-12-19] (LENOVO INCORPORATED.)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2015-01-29] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_4.27.32.0_x86__k1h2ywk1493x8 [2019-03-26] (LENOVO INC.)
McAfee® Central for Lenovo -> C:\Program Files\WindowsApps\McAfeeInc.06.McAfeeSecurityAdvisorforLenovo_5.0.173.1_x64__bq6yxensn79aw [2018-04-03] (McAfee_Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe [2019-08-30] (Microsoft Studios) [MS Ad]
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-27] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2015-01-29] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-09-21 20:32 - 2019-09-21 20:32 - 036279808 _____ () [File not signed] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.3519.0_x64__rz1tebttyb220\DolbyAccess.dll
2019-01-12 17:51 - 2019-01-12 17:52 - 000948736 _____ () [File not signed] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.3519.0_x64__rz1tebttyb220\e_sqlite3.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-01-04 13:59 - 000000825 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\ProgramData\Lenovo\ReadyApps;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Skype\Phone\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ondřej\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\metal-gear-solid-the-phantom-pain-sunset.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{571524AF-1195-4051-B3C6-C3867E35B7C7}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File
FirewallRules: [{22A4E0D8-EB3D-44EA-9305-8AFEF5EEEA8E}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File
FirewallRules: [TCP Query User{DF1C0797-A5F4-4959-9AAC-1C69BF0C9F13}C:\program files (x86)\avast software\browser\application\avastbrowser.exe] => (Block) C:\program files (x86)\avast software\browser\application\avastbrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{3FD4CEC2-1E80-4BC9-9D49-D52C9B8F4ECB}C:\program files (x86)\avast software\browser\application\avastbrowser.exe] => (Block) C:\program files (x86)\avast software\browser\application\avastbrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{60818710-17AC-4225-923C-04951E4987E6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BF8107DE-DF7F-4285-B6A2-E954AED67253}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4117DCE7-A03F-4694-A8F6-890D3F458F7C}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{090804E2-EAF3-4A34-8A9C-938CD3AB7AA5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

15-09-2019 19:52:07 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/28/2019 09:54:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4392,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (09/28/2019 09:40:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: loctaskmgr.exe, verze: 1.2.4.8, časové razítko: 0x51c4cf87
Název chybujícího modulu: NetSetupShim.dll, verze: 10.0.18362.1, časové razítko: 0x45361cad
Kód výjimky: 0xc0000005
Posun chyby: 0x0002a4cb
ID chybujícího procesu: 0x1fa0
Čas spuštění chybující aplikace: 0x01d5763448158b1b
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
Cesta k chybujícímu modulu: C:\Windows\System32\NetSetupShim.dll
ID zprávy: 12553b4b-95df-4e6f-aa0d-4d471f0d5133
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/28/2019 09:40:41 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: loctaskmgr.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.AccessViolationException
na LaNative.FPS_Set.GetFPSState(Int32*, System.String)
na LocationAwareness.LocationAwarenessLib.Task.AdapterFps.GetStatus()
na LocationAwareness.LocationAwarenessLib.Task.SecuritySettingTask.GetFileAndPrinterSharing(System.String, LocationAwareness.LocationAwarenessLib.Task.FpsSettings ByRef)
na LocationAwareness.LocationAwarenessLib.ProfileSettings.GetProfileSettings(LocationAwareness.LocationAwarenessLib.COM.CommandBuilder, System.String)
na LocationTaskManager.AgentObject.GetCurrentSettings(System.String)
na LocationTaskManager.AgentObject.InitAgent()
na LocationTaskManager.AgentObjectManager.InitAgent(UInt32)
na LocationTaskManager.LocationTaskManager.InitAgent(UInt32, System.String)
na LocationTaskManager.LocationTaskManager.InitAgent()
na LocationTaskManager.LocationTaskManager.InitService()
na System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Threading.ThreadHelper.ThreadStart()

Error: (09/28/2019 09:30:50 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (09/28/2019 09:27:51 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (79340,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (09/28/2019 08:05:10 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 27768; požadovaná velikost: 36168.

Error: (09/28/2019 07:46:58 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).

Error: (09/28/2019 07:29:34 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (104484,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (09/29/2019 12:36:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/29/2019 12:36:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (09/29/2019 12:35:56 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby QuickControlService bylo dosaženo časového limitu (30000 ms).

Error: (09/29/2019 12:35:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/29/2019 12:35:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (09/28/2019 09:41:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Location Task Manager byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/28/2019 09:40:59 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Správce stažených map přestala během spouštění reagovat.

Error: (09/28/2019 09:38:19 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service přestala během spouštění reagovat.


Windows Defender:
===================================
Date: 2019-09-22 16:27:19.324
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1F0AFC59-00A5-415D-B5B0-C1EF71E13ABE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-15 21:20:11.028
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {9D29DD47-A09B-43D7-8974-A1A8E6262D6E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-15 20:19:13.919
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3701F3D3-C35C-4330-A2F9-36188ED5E43E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-15 19:00:12.183
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {2602F51B-F7F8-4AD0-873E-03502B5AB6A1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-15 17:09:58.681
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {0C545AC4-955E-4966-9AC3-887570532E7B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-09-25 21:22:06.302
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.301.2094.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16300.1
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.

Date: 2019-09-21 07:46:12.417
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.299.2098.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.

CodeIntegrity:
===================================

Date: 2019-09-29 19:56:08.226
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-29 19:56:08.204
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-29 19:56:08.118
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-29 19:56:08.099
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-29 19:56:07.586
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-29 13:16:06.628
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-29 13:16:06.610
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-09-29 13:16:05.417
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO H1ET85WW(1.23) 04/15/2014
Motherboard: LENOVO 20208
Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 73%
Total physical RAM: 3966.22 MB
Available physical RAM: 1062.59 MB
Total Virtual: 7678.22 MB
Available Virtual: 4185.64 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:452.13 GB) (Free:356.38 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{5b6d5478-6bbc-4cf6-934c-4a6e5cb78e7b}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.64 GB) NTFS
\\?\Volume{75469268-c334-4825-99b4-6d854b735b1b}\ (Lenovo_Recovery) (Fixed) (Total:12.28 GB) (Free:5.24 GB) NTFS
\\?\Volume{ccbbfa2c-9107-4758-bf4b-7859046f0175}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: ACBD0B8F)

Partition: GPT.

==================== End of Addition.txt ============================

[Rudy]

Teď je to v pořádku. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {051B1D25-D1B2-4E5C-B242-41BD0D0D92B2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3AA007D5-EF6A-45DB-9B7B-D4147BE45A03} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4950EEED-825B-4281-B509-5F8E2F010EE9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {53114A14-8C54-48DF-B080-57B4A97751CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-22] (Google Inc -> Google LLC)
Task: {5A685CFA-11F1-4693-9141-B1CD81CA640E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {6448DFD0-EC24-4008-9809-2342BB99DE00} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {787FF47A-71BB-459C-A378-B51EE67C6461} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {878FB588-CC42-4455-B1F3-1EDE6AA8C9AB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {9D8D1E75-825C-4420-B49D-650FDF2B9A73} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {C6AD2AE3-CD70-4863-A1A9-BEC9039AD19F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-22] (Google Inc -> Google LLC)
Task: {CAD2082F-8815-4263-B57B-3321BAC83040} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {EB7FA518-8D44-4FCE-B44E-539E4E5C2C15} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {F3B94846-7CA4-451D-8609-130B16543495} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> DefaultScope {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{571524AF-1195-4051-B3C6-C3867E35B7C7}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File
FirewallRules: [{22A4E0D8-EB3D-44EA-9305-8AFEF5EEEA8E}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[OndraVas]

Log z FRST:

Fix result of Farbar Recovery Scan Tool (x64) Version: 30-09-2019
Ran by Ondřej (01-10-2019 21:29:00) Run:2
Running from C:\Users\Ondřej\Downloads
Loaded Profiles: Ondřej & Mamka (Available Profiles: Ondřej & Mamka)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {051B1D25-D1B2-4E5C-B242-41BD0D0D92B2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3AA007D5-EF6A-45DB-9B7B-D4147BE45A03} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4950EEED-825B-4281-B509-5F8E2F010EE9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {53114A14-8C54-48DF-B080-57B4A97751CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-22] (Google Inc -> Google LLC)
Task: {5A685CFA-11F1-4693-9141-B1CD81CA640E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {6448DFD0-EC24-4008-9809-2342BB99DE00} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {787FF47A-71BB-459C-A378-B51EE67C6461} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {878FB588-CC42-4455-B1F3-1EDE6AA8C9AB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {9D8D1E75-825C-4420-B49D-650FDF2B9A73} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {C6AD2AE3-CD70-4863-A1A9-BEC9039AD19F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-22] (Google Inc -> Google LLC)
Task: {CAD2082F-8815-4263-B57B-3321BAC83040} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {EB7FA518-8D44-4FCE-B44E-539E4E5C2C15} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {F3B94846-7CA4-451D-8609-130B16543495} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> DefaultScope {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{571524AF-1195-4051-B3C6-C3867E35B7C7}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File
FirewallRules: [{22A4E0D8-EB3D-44EA-9305-8AFEF5EEEA8E}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{051B1D25-D1B2-4E5C-B242-41BD0D0D92B2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{051B1D25-D1B2-4E5C-B242-41BD0D0D92B2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3AA007D5-EF6A-45DB-9B7B-D4147BE45A03}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3AA007D5-EF6A-45DB-9B7B-D4147BE45A03}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4950EEED-825B-4281-B509-5F8E2F010EE9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4950EEED-825B-4281-B509-5F8E2F010EE9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{53114A14-8C54-48DF-B080-57B4A97751CF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53114A14-8C54-48DF-B080-57B4A97751CF}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5A685CFA-11F1-4693-9141-B1CD81CA640E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A685CFA-11F1-4693-9141-B1CD81CA640E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6448DFD0-EC24-4008-9809-2342BB99DE00}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6448DFD0-EC24-4008-9809-2342BB99DE00}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{787FF47A-71BB-459C-A378-B51EE67C6461}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{787FF47A-71BB-459C-A378-B51EE67C6461}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{878FB588-CC42-4455-B1F3-1EDE6AA8C9AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{878FB588-CC42-4455-B1F3-1EDE6AA8C9AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9D8D1E75-825C-4420-B49D-650FDF2B9A73}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D8D1E75-825C-4420-B49D-650FDF2B9A73}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C6AD2AE3-CD70-4863-A1A9-BEC9039AD19F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6AD2AE3-CD70-4863-A1A9-BEC9039AD19F}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CAD2082F-8815-4263-B57B-3321BAC83040}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CAD2082F-8815-4263-B57B-3321BAC83040}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EB7FA518-8D44-4FCE-B44E-539E4E5C2C15}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EB7FA518-8D44-4FCE-B44E-539E4E5C2C15}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3B94846-7CA4-451D-8609-130B16543495}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3B94846-7CA4-451D-8609-130B16543495}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{571524AF-1195-4051-B3C6-C3867E35B7C7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{22A4E0D8-EB3D-44EA-9305-8AFEF5EEEA8E}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 41462404 B
Java, Flash, Steam htmlcache => 1154 B
Windows/system/drivers => 90111583 B
Edge => 816605 B
Chrome => 16354966 B
Firefox => 1136115666 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 21458 B
LocalService => 0 B
NetworkService => 5205884 B
NetworkService => 0 B
Ondřej => 80348035 B
Mamka => 36839 B

RecycleBin => 0 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:29:56 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[OndraVas]

Je to tak o polovinu rychlejší.

[Rudy]

Pokud se vám to zdá málo, zkuste defragmentovat disk.