Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-10-2019
Ran by Tomek (administrator) on DESKTOP-7C2BA83 (TOSHIBA SATELLITE C55-A-1NU) (19-10-2019 21:18:31)
Running from C:\Users\Tomek\Desktop
Loaded Profiles: Tomek (Available Profiles: Tomek)
Platform: Windows 10 Pro Version 1809 17763.805 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\Tomek\AppData\Roaming\BitTorrent\BitTorrent.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\Tomek\AppData\Roaming\BitTorrent\updates\7.10.5_45312\bittorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\Tomek\AppData\Roaming\BitTorrent\updates\7.10.5_45312\bittorrentie.exe
(Google Inc -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Update\1.3.35.301\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Update\1.3.35.301\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19092.399.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.18011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Tempo Semiconductor Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Power Software Limited -> Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.85.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.85.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.85.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(VideoLAN -> VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
(VideoLAN -> VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [456160 2019-04-18] (Power Software Limited -> Power Software Ltd)
HKU\S-1-5-21-2729017315-2841386499-1946669171-1001\...\Run: [Google Update] => C:\Users\Tomek\AppData\Local\Google\Update\1.3.35.301\GoogleUpdateCore.exe [1107752 2019-10-09] (Google Inc -> Google LLC)
HKU\S-1-5-21-2729017315-2841386499-1946669171-1001\...\Run: [BitTorrent] => C:\Users\Tomek\AppData\Roaming\BitTorrent\BitTorrent.exe [2003184 2019-08-25] (BitTorrent Inc -> BitTorrent Inc.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0BD05E85-BBED-423E-A9B9-7320A3D1EF68} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2224A8DF-7B14-41FC-874C-A26C5B083DD5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {338934F1-7A79-4209-95FB-879EBDC9283A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {45DF7A6E-9396-4870-8169-A3CEA805995D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A21B2E2-4B79-41F0-9842-445ECE5DE13B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2729017315-2841386499-1946669171-1001UA => C:\Users\Tomek\AppData\Local\Google\Update\GoogleUpdate.exe [154920 2019-07-11] (Google Inc -> Google LLC)
Task: {56BA74A3-4818-481F-9330-A506ACC9FBC6} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9106584C-B416-4AB1-AA6D-496C9DA5C46E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9E4A3BB6-957B-466E-AC5F-653B66F5C9D8} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {AF835FC9-1AE6-42BE-A763-61DF095319EE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B4784307-F911-4D4F-BF00-A65CFA092BB9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BC733580-4548-406F-8AC6-E86127C70E58} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {BFF1FB2D-481B-4FC3-A737-FCF9A3C8550F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C795D857-812F-45AC-8177-6799E251AF95} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2729017315-2841386499-1946669171-1001Core => C:\Users\Tomek\AppData\Local\Google\Update\GoogleUpdate.exe [154920 2019-07-11] (Google Inc -> Google LLC)
Task: {CF4EE794-456F-454A-AD3F-DFB29C6EEC43} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E206AE8D-62E2-4AB5-9212-879DD5807788} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F1CD50EF-1AE5-4B16-975B-A38C21C7D34D} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{47fec82b-a5ba-40e6-afcc-cc4ca2f19404}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{f3904064-3b4f-40ce-85a2-b587ac4dd7c3}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2729017315-2841386499-1946669171-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Tomek\AppData\Local\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-09] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-2729017315-2841386499-1946669171-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Tomek\AppData\Local\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-09] (Google Inc -> Google LLC)
Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxps://www.facebook.com/?ref=logo","hxxp://us. ... fpc-comodo"
CHR Profile: C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default [2019-10-19]
CHR Extension: (Prezentace) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-11]
CHR Extension: (Rozšíření pro webové stránky - WP Screenshot) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\akgpcdalpfphjmfifkmfbpdmgdmeeaeo [2019-07-22]
CHR Extension: (Dokumenty) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-11]
CHR Extension: (Disk Google) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-11]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2019-10-08]
CHR Extension: (YouTube) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-11]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-08-27]
CHR Extension: (Adobe Acrobat) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-09-30]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2019-07-11]
CHR Extension: (Full Page Screen Capture) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2019-10-12]
CHR Extension: (Tabulky) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-11]
CHR Extension: (Video Downloader PLUS) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2019-09-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-11]
CHR Extension: (FormApps Extension) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2019-07-11]
CHR Extension: (Save to Facebook) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2019-07-11]
CHR Extension: (Morpheon Dark) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2019-07-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-11]
CHR Extension: (Chrome Media Router) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-26]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370848 2019-07-11] (Intel Corporation -> Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5378320 2019-10-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [350224 2019-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Tempo Semiconductor Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-05-04] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 athr; C:\WINDOWS\System32\drivers\athw8x.sys [4251160 2019-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [610336 2019-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros)
R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [121344 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Co., Ltd.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvtdi.inf_amd64_7ee1a72287b9c9be\nvlddmkm.sys [17544792 2018-03-25] (NVIDIA Corporation -> NVIDIA Corporation)
R0 nvpciflt; C:\WINDOWS\System32\DriverStore\FileRepository\nvtdi.inf_amd64_7ee1a72287b9c9be\nvpciflt.sys [48480 2018-03-25] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [51392 2019-07-11] (Synaptics Incorporated -> Synaptics Incorporated)
R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [561680 2019-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Tempo Semiconductor Inc.)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [45720 2019-07-11] (TOSHIBA CORPORATION -> Toshiba Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46688 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [350136 2019-10-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-02] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-19 21:18 - 2019-10-19 21:19 - 000022042 _____ C:\Users\Tomek\Desktop\FRST.txt
2019-10-19 21:17 - 2019-10-19 21:18 - 000000000 ____D C:\FRST
2019-10-19 21:17 - 2019-10-19 21:17 - 001616384 _____ (Farbar) C:\Users\Tomek\Desktop\FRST64.exe
2019-10-18 17:14 - 2019-10-19 08:38 - 000000409 _____ C:\Users\Tomek\Desktop\BIOS Launcher.lnk
2019-10-18 17:14 - 2019-10-18 17:14 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\WinBatch
2019-10-18 17:14 - 2019-10-18 17:14 - 000000000 ____D C:\scjev140
2019-10-18 17:12 - 2019-10-18 17:13 - 021343208 _____ C:\Users\Tomek\Downloads\scjev140.exe
2019-10-18 17:11 - 2019-10-18 17:11 - 000000000 ____D C:\Users\Tomek\Intel
2019-10-18 17:11 - 2019-10-18 17:11 - 000000000 ____D C:\Users\Tomek\Downloads\intel_mei_933.12.0.1301(http://www.station-drivers.com)
2019-10-18 17:07 - 2019-10-18 17:08 - 089494481 _____ C:\Users\Tomek\Downloads\intel_mei_933.12.0.1301(http://www.station-drivers.com).zip
2019-10-18 17:05 - 2019-03-28 11:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2019-10-18 17:05 - 2019-03-28 11:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2019-10-18 17:05 - 2019-03-28 11:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2019-10-18 17:05 - 2019-03-28 11:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2019-10-18 17:05 - 2019-03-28 08:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2019-10-18 17:05 - 2019-03-28 08:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2019-10-18 17:05 - 2019-03-28 08:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2019-10-18 17:05 - 2019-03-28 08:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2019-10-18 17:05 - 2019-03-28 08:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2019-10-18 17:05 - 2019-03-28 08:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
2019-10-18 17:00 - 2019-10-19 09:59 - 000000000 ____D C:\Users\Tomek\Downloads\Leaving Neverland
2019-10-18 16:59 - 2019-10-18 16:59 - 000032094 _____ C:\Users\Tomek\Downloads\[CzT]Leaving_Neverland_2019_EN_WebRip_1080pLQ_.torrent
2019-10-16 19:55 - 2019-10-16 19:55 - 000000000 ____D C:\Users\Tomek\AppData\Local\D3DSCache
2019-10-16 16:26 - 2019-10-18 18:48 - 000000000 ____D C:\Users\Tomek\AppData\LocalLow\BitTorrent
2019-10-14 17:04 - 2019-10-14 17:04 - 000011150 _____ C:\Users\Tomek\Downloads\South.Park.S23E03.720p.HDTV.x264-AVS-ettv-.zip
2019-10-14 17:04 - 2019-10-14 17:04 - 000000000 ____D C:\Users\Tomek\Downloads\South.Park.S23E03.720p.HDTV.x264-AVS-ettv-
2019-10-14 14:52 - 2019-10-14 17:04 - 000025713 _____ C:\Users\Tomek\Downloads\South.Park.S23E03.720p.HDTV.x264-AVS[ettv].srt
2019-10-13 15:33 - 2019-10-13 15:46 - 000000000 ____D C:\Users\Tomek\AppData\LocalLow\Mozilla
2019-10-09 19:20 - 2019-10-09 19:20 - 000028211 _____ C:\Users\Tomek\Downloads\South-Park-S23E01(0000317731).srt
2019-10-09 19:12 - 2019-10-09 19:18 - 365746537 _____ C:\Users\Tomek\Downloads\South.Park.S23E02.720p.HDTV.x264-AVS.mkv
2019-10-09 19:12 - 2019-10-09 19:17 - 345940039 _____ C:\Users\Tomek\Downloads\South.Park.S23E01.720p.HDTV.x264-AVS.mkv
2019-10-09 18:18 - 2019-10-09 18:18 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-09 18:18 - 2019-10-09 18:18 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-09 18:18 - 2019-10-09 18:18 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-09 18:18 - 2019-10-09 18:18 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-09 18:18 - 2019-10-09 18:18 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-09 18:18 - 2019-10-09 18:18 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-09 18:17 - 2019-10-09 18:18 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 026806784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 024616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 023455744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 019284992 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 017485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 015220224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 012960768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 012259840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 009680400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 008903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 004873728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 004628992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 004057088 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 003614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 002699768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 002699264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 002437344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 002429768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-09 18:17 - 2019-10-09 18:17 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-09 18:17 - 2019-10-09 18:17 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-09 18:17 - 2019-10-09 18:17 - 002110472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 002015400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001701880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-09 18:17 - 2019-10-09 18:17 - 001677816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001666232 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001590072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-09 18:17 - 2019-10-09 18:17 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 001247560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001201136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001056056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 001048888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000895560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000860160 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-09 18:17 - 2019-10-09 18:17 - 000851272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2019-10-09 18:17 - 2019-10-09 18:17 - 000843264 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000805296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000764216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000681720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Devices.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000662024 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000605496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000522104 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000508728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000453432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-09 18:17 - 2019-10-09 18:17 - 000449368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000421176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-09 18:17 - 2019-10-09 18:17 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000385336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000376568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000294512 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000282424 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000224568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-09 18:17 - 2019-10-09 18:17 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-10-09 18:17 - 2019-10-09 18:17 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000201736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-09 18:17 - 2019-10-09 18:17 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-10-09 18:17 - 2019-10-09 18:17 - 000163232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000147944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnscmmc.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000104464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-09 18:17 - 2019-10-09 18:17 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2019-10-09 18:17 - 2019-10-09 18:17 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhuxgraphics.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NAPCRYPT.DLL
2019-10-09 18:17 - 2019-10-09 18:17 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-09 18:17 - 2019-10-09 18:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-10-09 18:17 - 2019-10-09 18:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-10-09 18:17 - 2019-10-09 18:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-10-09 18:17 - 2019-10-09 18:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-10-09 18:17 - 2019-10-09 18:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-10-09 18:17 - 2019-10-09 18:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-10-09 18:17 - 2019-10-09 18:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-10-09 18:17 - 2019-10-09 18:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-10-09 17:49 - 2019-10-09 17:49 - 000003738 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-2729017315-2841386499-1946669171-1001UA
2019-10-09 17:49 - 2019-10-09 17:49 - 000003470 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-2729017315-2841386499-1946669171-1001Core
2019-10-08 21:00 - 2019-10-09 19:14 - 000025118 _____ C:\Users\Tomek\Downloads\South.Park.S23E02.Band.in.China.1080p.HULU.WEB-DL.AAC2.0.H.264-monkee.srt
2019-10-08 20:55 - 2019-10-09 19:14 - 000025115 _____ C:\Users\Tomek\Downloads\South.Park.S23E02.Band.in.China.1080p.AMZN.WEB-DL.DDP2.0.H.264-NTb.srt
2019-10-08 20:52 - 2019-10-09 19:14 - 000025094 _____ C:\Users\Tomek\Downloads\South.Park.S23E02.HDTV.x264-SVA.srt
2019-10-08 18:34 - 2019-10-08 18:36 - 000000000 ____D C:\Users\Tomek\Downloads\American Horror Story S08
2019-10-08 17:53 - 2019-10-09 19:14 - 000025017 _____ C:\Users\Tomek\Downloads\South.Park.S23E02.iNTERNAL.720p.WEB.h264-BAMBOOZLE.srt
2019-10-04 15:50 - 2019-10-16 17:44 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2019-10-04 15:50 - 2019-10-04 15:50 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2019-10-04 15:28 - 2019-10-04 15:28 - 022135584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 006928384 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 006444544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 006316792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 006058032 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 005767168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 005605560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 005573016 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 005309080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 005299712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 004352472 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 003820976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 003634688 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 003428864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 003000832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 002924344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 002779784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 002415928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 002349056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 002279304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 002200376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 002118656 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 002096640 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-04 15:28 - 2019-10-04 15:28 - 002018304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-04 15:28 - 2019-10-04 15:28 - 001966392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 001924976 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplaySwitch.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001864704 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001764864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001750528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001720120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001701176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001522488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001484896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001399608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001390888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 001319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001308672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 001272120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001170432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shellstyle.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shellstyle.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-10-04 15:28 - 2019-10-04 15:28 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 001006392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000938296 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-10-04 15:28 - 2019-10-04 15:28 - 000863544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000817464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000791864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000780408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000770096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000767800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000661096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000613176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000605368 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000598328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000589824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000588600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000515448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2019-10-04 15:28 - 2019-10-04 15:28 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000452992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000439096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000434952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000384272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2019-10-04 15:28 - 2019-10-04 15:28 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000290616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000278416 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000241976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000193704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000156512 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.OneCore.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000155968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000135816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000079032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000065608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnppolicy.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSTheme.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000044912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordOnWakeSettingFlyout.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-04 15:28 - 2019-10-04 15:28 - 000038184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PasswordOnWakeSettingFlyout.exe
2019-10-04 15:28 - 2019-10-04 15:28 - 000030720 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll
2019-10-04 15:28 - 2019-10-04 15:28 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll
2019-10-04 15:27 - 2019-10-04 15:27 - 007698432 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-04 15:27 - 2019-10-04 15:27 - 003198976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-04 15:27 - 2019-10-04 15:27 - 002839040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-04 15:27 - 2019-10-04 15:27 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 001294272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-04 15:27 - 2019-10-04 15:27 - 001052984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-04 15:27 - 2019-10-04 15:27 - 000775216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-10-04 15:27 - 2019-10-04 15:27 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-04 15:27 - 2019-10-04 15:27 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-04 15:27 - 2019-10-04 15:27 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.OneCore.dll
2019-10-04 15:27 - 2019-10-04 15:27 - 000138552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000057656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000052536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSTheme.exe
2019-10-04 15:27 - 2019-10-04 15:27 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2019-10-04 15:27 - 2019-10-04 15:27 - 000018744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msisadrv.sys
2019-09-30 16:19 - 2019-09-30 16:20 - 000251961 _____ C:\Users\Tomek\Desktop\výměna.pdf
2019-09-30 15:19 - 2019-09-30 15:19 - 000000000 _____ C:\Users\Tomek\Desktop\Nový textový dokument.txt
2019-09-23 17:40 - 2019-09-23 17:41 - 000000000 ____D C:\Users\Tomek\Downloads\American Horror Story S07
2019-09-23 17:06 - 2019-09-23 17:07 - 000000000 ____D C:\Users\Tomek\Downloads\AHS-Roanoke1080p
2019-09-23 17:06 - 2019-09-23 17:06 - 000083419 _____ C:\Users\Tomek\Downloads\[CzT]American_Horror_Story_Roanoke_6_serie_CZ_WebRip_1080p_.torrent
2019-09-23 17:06 - 2019-09-23 17:06 - 000068701 _____ C:\Users\Tomek\Downloads\[CzT]American_Horror_Story_7_serie_TVRip_720p_.torrent
2019-09-23 17:06 - 2019-09-23 17:06 - 000048855 _____ C:\Users\Tomek\Downloads\[CzT]American_Horror_Story_8_serie_WebRip_720p_.torrent
2019-09-23 17:04 - 2019-09-23 17:40 - 794709716 _____ C:\Users\Tomek\Downloads\Helter Skelter - Hlava nehlava (2004).avi
2019-09-23 17:04 - 2019-09-23 17:04 - 000015835 _____ C:\Users\Tomek\Downloads\[CzT]Hlava_nehlava_Helter_Skelter_2004_TVRip_.torrent
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-19 21:18 - 2019-08-06 15:56 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\BitTorrent
2019-10-19 19:36 - 2019-08-04 16:13 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-10-19 19:08 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-19 18:24 - 2019-09-06 13:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-19 18:03 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-19 15:54 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-10-19 15:17 - 2019-07-11 19:37 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\vlc
2019-10-19 12:25 - 2019-07-11 20:20 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-18 18:54 - 2019-09-06 14:07 - 001606102 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-18 18:54 - 2018-09-15 19:39 - 000683600 _____ C:\WINDOWS\system32\perfh005.dat
2019-10-18 18:54 - 2018-09-15 19:39 - 000137282 _____ C:\WINDOWS\system32\perfc005.dat
2019-10-18 18:54 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-10-18 18:48 - 2019-09-06 14:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-18 18:48 - 2019-07-11 18:45 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-10-18 18:48 - 2019-07-11 18:45 - 000000000 __SHD C:\Users\Tomek\IntelGraphicsProfiles
2019-10-18 18:47 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-18 18:38 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-18 18:38 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-18 17:11 - 2019-09-06 13:58 - 000000000 ____D C:\Users\Tomek
2019-10-16 16:31 - 2019-09-06 14:02 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-10-16 16:30 - 2019-07-16 20:08 - 000000000 ____D C:\Users\Tomek\AppData\Local\Adobe
2019-10-15 15:55 - 2019-07-11 18:32 - 000002502 _____ C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-15 15:55 - 2019-07-11 18:32 - 000002465 _____ C:\Users\Tomek\Desktop\Google Chrome.lnk
2019-10-09 20:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-10-09 20:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-09 20:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-10-09 20:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-09 20:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-10-09 20:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-09 20:27 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-09 18:20 - 2019-07-11 18:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-10-09 18:19 - 2019-07-11 18:56 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-10-05 09:49 - 2019-08-24 10:55 - 000000000 ____D C:\Users\Tomek\AppData\Local\PlaceholderTileLogoFolder
2019-10-05 09:49 - 2019-07-11 18:03 - 000000000 ____D C:\Users\Tomek\AppData\Local\Packages
2019-10-04 21:55 - 2019-09-06 13:57 - 016621480 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-04 21:55 - 2019-07-12 14:58 - 000000000 ___RD C:\Users\Tomek\3D Objects
2019-10-04 21:55 - 2019-07-11 18:03 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-04 21:54 - 2018-09-15 19:40 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-10-04 21:54 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-10-04 15:29 - 2018-09-15 19:40 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-10-04 15:29 - 2018-09-15 19:40 - 000018002 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-10-02 18:46 - 2019-07-12 16:59 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
==================== Files in the root of some directories ================
2019-07-21 16:57 - 2019-07-21 16:57 - 000000000 _____ () C:\Users\Tomek\AppData\Local\oobelibMkey.log
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-10-2019
Ran by Tomek (19-10-2019 21:19:47)
Running from C:\Users\Tomek\Desktop
Windows 10 Pro Version 1809 17763.805 (X64) (2019-09-06 12:03:11)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2729017315-2841386499-1946669171-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2729017315-2841386499-1946669171-503 - Limited - Disabled)
Guest (S-1-5-21-2729017315-2841386499-1946669171-501 - Limited - Disabled)
Tomek (S-1-5-21-2729017315-2841386499-1946669171-1001 - Administrator - Enabled) => C:\Users\Tomek
WDAGUtilityAccount (S-1-5-21-2729017315-2841386499-1946669171-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20048 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0) (Version: 20.0.0 - Adobe Systems Incorporated)
Aktualizace NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden
BitTorrent (HKU\S-1-5-21-2729017315-2841386499-1946669171-1001\...\BitTorrent) (Version: 7.10.5.45312 - BitTorrent Inc.)
Canon MP160 (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP160) (Version: - )
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.35 - NVIDIA Corporation) Hidden
Google Chrome (HKU\S-1-5-21-2729017315-2841386499-1946669171-1001\...\Google Chrome) (Version: 77.0.3865.120 - Google LLC)
Microsoft OneDrive (HKU\S-1-5-21-2729017315-2841386499-1946669171-1001\...\OneDriveSetup.exe) (Version: 19.103.0527.0003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
MultiCommander (x64) (HKLM\...\MultiCommander x64) (Version: 9.0.0.2532 - Mathias Svensson)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.4 - Power Software Ltd)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.4.3.38 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{2E8B8BDD-03DF-4C1C-8C99-E6A4BCBF43CE}) (Version: 2.51.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Packages:
=========
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_41.1788.50991.0_x86__8xx8rvfyw5nnt [2019-09-20] (Instagram)
Messenger -> C:\Program Files\WindowsApps\Facebook.317180B0BB486_196.2292.59195.0_x86__8xx8rvfyw5nnt [2019-10-05] (Facebook Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-06] (Microsoft Studios) [MS Ad]
Microsoft Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad]
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2729017315-2841386499-1946669171-1001_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5}\InprocServer32 -> C:\Users\Tomek\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2729017315-2841386499-1946669171-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Tomek\AppData\Local\Google\Chrome\Application\77.0.3865.120\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-2729017315-2841386499-1946669171-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Tomek\AppData\Local\Google\Update\1.3.35.301\psuser_64.dll (Google Inc -> Google LLC)
CustomCLSID: HKU\S-1-5-21-2729017315-2841386499-1946669171-1001_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F}\InprocServer32 -> C:\Users\Tomek\AppData\Local\Google\Update\1.3.35.301\psuser_64.dll (Google Inc -> Google LLC)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2019-04-18] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2019-04-18] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2019-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2019-04-18] (Power Software Limited -> Power Software Ltd)
==================== Codecs (Whitelisted) ==================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder\WarThunder.lnk -> C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC) -> --app=hxxp://go.playmmogames.com/aff_c?offer_id=698&aff_id=1034&source=1&aff_sub2=JKQIEiiKreWJUpHoQJq0LEzqoekN0qXQWJKV8ESD9fA0lrnoROqzipJgAAABacTSEie&click_id=215aa12ada8f4dec7040e0bb5f236e7514b717ea --app-window-size=1440,900
ShortcutWithArgument: C:\Users\Tomek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Users\Tomek\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC) -> --app=hxxp://go.playmmogames.com/aff_c?offer_id=698&aff_id=1034&source=1&aff_sub2=JKQIEiiKreWJUpHoQJq0LEzqoekN0qXQWJKV8ESD9fA0lrnoROqzipJgAAABacTSEie&click_id=215aa12ada8f4dec7040e0bb5f236e7514b717ea --app-window-size=1440,900
==================== Loaded Modules (Whitelisted) ==============
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-07-10 13:04 - 2015-07-10 13:02 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2729017315-2841386499-1946669171-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{613D2B6D-A606-42ED-B78A-3245D618D4DD}] => (Allow) C:\Users\Tomek\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{0DCB27B0-C36F-422E-89C4-7B22E3F42B02}] => (Allow) C:\Users\Tomek\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [TCP Query User{3002F6F0-7EFD-4DC6-AF99-C429E970D1D8}C:\users\tomek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\tomek\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{79301E7E-4208-4905-A843-9B2AADB0D85D}C:\users\tomek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\tomek\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{7ADF92FC-272D-4C99-8F9F-F9B50A21B2C1}C:\users\tomek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\tomek\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{AAE139B3-B5FF-4997-832D-69701ABBE936}C:\users\tomek\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\tomek\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F37617C8-E742-460E-A481-4CDAF4BE96AD}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2019\Photoshop.exe No File
FirewallRules: [{D06B7EFA-99A6-40F2-A8B8-82A5217359EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{746C451A-E9FE-49E5-96A9-BE66FEC696B7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A67F25BA-AB3F-47DF-AC57-FCB108C50283}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{021B0518-3DC2-470B-90FF-05128CD7872A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{986F7293-93E7-4652-A4E8-D2677186CDA6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4EA8B9ED-D3B6-4539-97B3-0FE733BA0CA0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{832ACDA7-09CA-40CF-985A-AD405E97E00F}] => (Allow) C:\Users\Tomek\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{9B8D1349-C71E-4852-90D0-2377842E62FB}] => (Allow) C:\Users\Tomek\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
==================== Restore Points =========================
04-10-2019 15:23:43 Windows Update
09-10-2019 18:12:24 Windows Update
18-10-2019 17:05:20 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (10/10/2019 06:45:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WinUAPEntry.exe, verze: 0.0.0.0, časové razítko: 0x5b48186f
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.17763.802, časové razítko: 0x936e7d37
Kód výjimky: 0xc0000025
Posun chyby: 0x00121932
ID chybujícího procesu: 0x11bc
Čas spuštění chybující aplikace: 0x01d57f89d5d5a24c
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Facebook.InstagramBeta_41.1788.50991.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 61e909fb-f1cd-4863-8ba5-0dd410267ca5
Úplný název chybujícího balíčku: Facebook.InstagramBeta_41.1788.50991.0_x86__8xx8rvfyw5nnt
ID aplikace související s chybujícím balíčkem: App
Error: (10/01/2019 04:42:52 PM) (Source: ESENT) (EventID: 553) (User: )
Description: SettingSyncHost (7140,P,98) {3E0F64B7-221B-4AC3-B653-90960F8035A2}: Failed looking up restore-map entry for database C:\Users\Tomek\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb with unexpected error -1032.
Error: (10/01/2019 04:42:52 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (7140,P,98) {3E0F64B7-221B-4AC3-B653-90960F8035A2}: Pokus o otevření souboru C:\Users\Tomek\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).
Error: (10/01/2019 04:42:42 PM) (Source: ESENT) (EventID: 553) (User: )
Description: SettingSyncHost (7140,P,98) {9B7BDAFD-9C42-4B98-99CB-374335162DEA}: Failed looking up restore-map entry for database C:\Users\Tomek\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb with unexpected error -1032.
Error: (10/01/2019 04:42:42 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (7140,P,98) {9B7BDAFD-9C42-4B98-99CB-374335162DEA}: Pokus o otevření souboru C:\Users\Tomek\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).
Error: (10/01/2019 04:42:32 PM) (Source: ESENT) (EventID: 553) (User: )
Description: SettingSyncHost (7140,P,98) {DE98CE9A-0B1A-4156-817E-391DBC5BAE19}: Failed looking up restore-map entry for database C:\Users\Tomek\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb with unexpected error -1032.
Error: (10/01/2019 04:42:32 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (7140,P,98) {DE98CE9A-0B1A-4156-817E-391DBC5BAE19}: Pokus o otevření souboru C:\Users\Tomek\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).
Error: (10/01/2019 04:42:22 PM) (Source: ESENT) (EventID: 553) (User: )
Description: SettingSyncHost (7140,P,98) {EBF5E0D4-27B1-433D-A4BC-7E718C047171}: Failed looking up restore-map entry for database C:\Users\Tomek\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb with unexpected error -1032.
System errors:
=============
Error: (10/19/2019 01:10:30 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7C2BA83)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-7C2BA83\Tomek (SID: S-1-5-21-2729017315-2841386499-1946669171-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/19/2019 09:46:04 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7C2BA83)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-7C2BA83\Tomek (SID: S-1-5-21-2729017315-2841386499-1946669171-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/18/2019 06:50:13 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.SecurityAppBroker
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/18/2019 06:50:13 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/18/2019 06:50:13 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/18/2019 06:48:33 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7C2BA83)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-7C2BA83\Tomek (SID: S-1-5-21-2729017315-2841386499-1946669171-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/18/2019 06:48:01 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: SCSI000000
Error: (10/18/2019 06:47:41 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7C2BA83)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2019-10-18 18:33:16.923
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {19C07C2F-9444-4CD3-B985-6D7852DDCE59}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-10-17 17:14:51.632
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {B26B09A4-4AFA-49E8-8BCC-DFBDF2B4305B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-10-13 13:06:02.095
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {59D3558D-962B-4427-A58F-B89C6845888E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-10-11 21:27:52.557
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3DCD9603-E3C0-46FF-9AC9-485A50F20519}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-10-10 18:32:53.953
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {511CD4F3-ADBB-49F5-8085-7C92D2641F57}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-10-18 14:07:59.810
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.303.1924.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240438
Popis chyby
ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. Date: 2019-10-17 17:12:48.666
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.303.1818.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x8024402c
Popis chyby
ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. ==================== Memory info ===========================
BIOS: TOSHIBA 1.40 08/19/2014
Motherboard: TOSHIBA PT10S
Processor: Intel(R) Core(TM) i5-4200M CPU @ 2.50GHz
Percentage of memory in use: 55%
Total physical RAM: 8103.97 MB
Available physical RAM: 3584.45 MB
Total Virtual: 9383.97 MB
Available Virtual: 3763.71 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:464.36 GB) (Free:276.69 GB) NTFS
Drive f: (ADATA) (Fixed) (Total:698.63 GB) (Free:95.14 GB) NTFS
Drive h: (PŘIBYL) (Removable) (Total:57.58 GB) (Free:57.33 GB) FAT32
Drive i: (Nový svazek) (Fixed) (Total:223.57 GB) (Free:66.3 GB) NTFS
\\?\Volume{3039529b-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{3039529b-0000-0000-0000-703674000000}\ () (Fixed) (Total:0.91 GB) (Free:0.34 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 3039529B)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=931 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 63447A77)
Partition 1: (Not Active) - (Size=223.6 GB) - (Type=07 NTFS)
========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 6B614D0E)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)
========================================================
Disk: 4 (MBR Code: Windows XP) (Size: 57.6 GB) (Disk ID: A7157B6A)
Partition 1: (Not Active) - (Size=57.6 GB) - (Type=0C)
==================== End of Addition.txt ============================
Přispějete na provoz fóra?