Dobrý den,
mám trochu neudržovaný ntb, tak prosím o kontrolu zda tam něco není. Ntb jeví známky pomalého chodu, ale to je možná i stářím.
Děkuji.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Tereza at 2020-10-02 09:36:44
Microsoft Windows 10 Home
System drive C: has 186 GB (43%) free of 434 GB
Total RAM: 3979 MB (33% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:36:57, on 02.10.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe
C:\Program Files (x86)\Lenovo\Lenovo Transition\TransitionServer.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files\trend micro\Tereza.exe
R1 - HKCU\Software\Microsoft\Internet Explorer,(Default) = 173e250d417e11e782f754ee75398c47
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.ourluckysites.com/?type=hp&t ... XXW763LL91
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://go.microsoft.com/fwlink/p/?Link ... id=UE01DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.63\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
O4 - HKLM\..\Run: [TeamsMachineInstaller] %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
O4 - HKCU\..\Run: [Spotify] C:\Users\Tereza\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Tereza\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: AVG Secure VPN.lnk = C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{748dd2bd-d8c1-4e14-ae81-8db328008947}: NameServer = 77.234.40.79
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Unknown owner - C:\WINDOWS\System32\drivers\AdminService.exe (file missing)
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
O23 - Service: AVG Firewall Service (AVG Firewall) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\afwServ.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: AvgWscReporter - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
O23 - Service: AVG TuneUp (CleanupPSvc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\TuneUp\TuneupSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_1d9762 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: McAfee WebAdvisor - McAfee, LLC - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: AVG Secure VPN (SecureVpn) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer - TeamViewer Germany GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater40.3.8 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: WC Assistant (WCAssistantService) - Unknown owner - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
O23 - Service: ymc - Lenovo - C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 15336 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-2c7f3d8a-f909-4db5-b1ed-25192523a9bd -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-53d52a9c-9527-4c84-8ac3-4c982d4351c8 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-35be95d7-0378-4cfc-8c72-81e297b0228e -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-1c77b838-0fac-4c8d-bfbc-8707776e5957 -LifetimeId:286dcce5-ed2c-44c2-9e02-5b3e09d097d4 -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
dashost.exe {5256d018-f308-40d5-9c869ebd9157ae58}
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
"C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe"
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Browser
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
"C:\Program Files (x86)\AVG\Antivirus\afwServ.exe"
C:\WINDOWS\System32\drivers\AdminService.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files\AVG\TuneUp\TuneupSvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe"
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s Netman
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe" /pipename="0A90FE75-3EA0-B2FE-7193-4590FFDD840B" /binpath="C:\Program Files (x86)\AVG\Antivirus"
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s WwanSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
igfxHK.exe
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
igfxTray.exe
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
"C:\WINDOWS\system32\igfxEM.exe" -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"ctfmon.exe"
/QuitInfo:0000000000000298;0000000000000290;
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Windows\RTFTrack.exe"
"C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe" AutoRun
"C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe"
"C:\Program Files (x86)\Lenovo\Lenovo Transition\TransitionServer.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe"
/fmw.trayonly
AVGUI.exe /nogui
"C:\Program Files\AVG\TuneUp\TuneupUI.exe" /nogui
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe"
"C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe"
"C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe" /nogui
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe" --no-rate-limit --no-upload-gzip --type=crash-handler "--crashes-directory=C:\Users\Tereza\AppData\Local\Temp\skype-preview Crashes" "--database=C:\Users\Tereza\AppData\Local\Temp\skype-preview Crashes" "--metrics-dir=C:\Users\Tereza\AppData\Local\Temp\skype-preview Crashes" --url=appcenter://generic?aid=a8902fe7-ef45-455c-8513-5e56d48e36fd&iid=647f827f-b253-44b5-86bf-d3a7053f61a6&uid=e1b1eb50-992a-4b95-b79b-c03e0fa83dac --initial-client-data=0x728,0x72c,0x730,0x724,0x734,0x5652c98,0x5652ca8,0x5652cb4
"C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe" --type=gpu-process --field-trial-handle=1996,9792836845435391830,10879396095757987138,131072 --enable-features=WebComponentsV0Enabled,WinUseBrowserSpellChecker,WinUseHybridSpellChecker --disable-features=PictureInPicture,SpareRendererForSitePerProcess --electron-shared-settings=eyJjci5jb21wYW55IjoiRWxlY3Ryb24iLCJjci5kdW1wcyI6IiIsImNyLmVuYWJsZWQiOmZhbHNlLCJjci5wcm9kdWN0IjoiRWxlY3Ryb24iLCJjci5zZXNzaW9uIjoiIiwiY3IudXJsIjoiIiwiY3IudmVyc2lvbiI6IiJ9 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --mojo-platform-channel-handle=2352 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe" --type=utility --field-trial-handle=1996,9792836845435391830,10879396095757987138,131072 --enable-features=WebComponentsV0Enabled,WinUseBrowserSpellChecker,WinUseHybridSpellChecker --disable-features=PictureInPicture,SpareRendererForSitePerProcess --lang=cs --service-sandbox-type=network --electron-shared-settings=eyJjci5jb21wYW55IjoiRWxlY3Ryb24iLCJjci5kdW1wcyI6IiIsImNyLmVuYWJsZWQiOmZhbHNlLCJjci5wcm9kdWN0IjoiRWxlY3Ryb24iLCJjci5zZXNzaW9uIjoiIiwiY3IudXJsIjoiIiwiY3IudmVyc2lvbiI6IiJ9 --mojo-platform-channel-handle=2588 /prefetch:8
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe" --type=renderer --autoplay-policy=no-user-gesture-required --disable-background-timer-throttling --ms-disable-indexeddb-transaction-timeout --field-trial-handle=1996,9792836845435391830,10879396095757987138,131072 --enable-features=WebComponentsV0Enabled,WinUseBrowserSpellChecker,WinUseHybridSpellChecker --disable-features=PictureInPicture,SpareRendererForSitePerProcess --lang=cs --app-user-model-id=Microsoft.Skype.SkypeDesktop --app-path="C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\resources\app.asar" --webview-tag --no-sandbox --no-zygote --native-window-open --preload="C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\resources\app.asar\preload.js" --background-color=#fff --node-integration-in-subframes --enable-spellcheck --enable-websql --electron-shared-settings=eyJjci5jb21wYW55IjoiRWxlY3Ryb24iLCJjci5kdW1wcyI6IiIsImNyLmVuYWJsZWQiOmZhbHNlLCJjci5wcm9kdWN0IjoiRWxlY3Ryb24iLCJjci5zZXNzaW9uIjoiIiwiY3IudXJsIjoiIiwiY3IudmVyc2lvbiI6IiJ9 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2976 /prefetch:1 --skype-process-type=Main --skype-window-id=__MAIN_ROOT_VIEW_ID__
"C:\Program Files (x86)\PowerISO\PWRISOVM.EXE" -startup
"C:\Program Files\AVG\TuneUp\TuneupUI.exe" --type=gpu-process --field-trial-handle=2548,6443958846977709449,13755561669313057211,131072 --no-sandbox --log-file="C:\Users\Tereza\AppData\Roaming\AVG\TuneUp\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAMAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --service-request-channel-token=6388274767971854653 --mojo-platform-channel-handle=2492 /prefetch:2
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe" --type=gpu-process --field-trial-handle=7292,653628179774864383,1596766177320446669,131072 --enable-features=CastMediaRouteProvider --disable-features=CookiesWithoutSameSiteMustBeSecure,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Tereza\AppData\Roaming\AVG\Antivirus\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.7.3140)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=MAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --log-file="C:\Users\Tereza\AppData\Roaming\AVG\Antivirus\log\cef_log.txt" --mojo-platform-channel-handle=7680 /prefetch:2
"C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=7292,653628179774864383,1596766177320446669,131072 --enable-features=CastMediaRouteProvider --disable-features=CookiesWithoutSameSiteMustBeSecure,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=network --no-sandbox --force-wave-audio --log-file="C:\Users\Tereza\AppData\Roaming\AVG\Antivirus\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.7.3140)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Tereza\AppData\Roaming\AVG\Antivirus\log\cef_log.txt" --mojo-platform-channel-handle=7284 /prefetch:8
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_12009.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20090.1002.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20032.16211.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\WINDOWS\system32\rundll32.exe" -localserver 22d8c27b-47a1-48d1-ad08-7da7abd79617
taskhostw.exe
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe" -ServerName:microsoft.windowslive.mail.AppXvpbcm2ctr1y0sg80nt9m7z51p2cqvsxm.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe"
"C:\Program Files\McAfee\WebAdvisor\UIHost.exe"
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20091.84.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x7a8
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XblAuthManager
"C:\WINDOWS\System32\Taskmgr.exe" /3
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1624,17320559987196932762,4339729950611649788,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1648 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1624,17320559987196932762,4339729950611649788,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1976 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1624,17320559987196932762,4339729950611649788,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3476 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1624,17320559987196932762,4339729950611649788,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4540 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1624,17320559987196932762,4339729950611649788,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5320 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1624,17320559987196932762,4339729950611649788,131072 --lang=cs --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=5612 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1624,17320559987196932762,4339729950611649788,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5808 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe20_ Global\UsGthrCtrlFltPipeMssGthrPipe20 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 760 764 772 8192 768
C:\WINDOWS\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1624,17320559987196932762,4339729950611649788,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5628 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Users\Tereza\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d0b31319f66a18.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.63\BHO\ie_to_edge_bho_64.dll [2020-09-23 514960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-20 190272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-05-15 2476032]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-10-02 1401944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.63\BHO\ie_to_edge_bho.dll [2020-09-23 399248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-09-20 151872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-05-15 2263040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-10-02 1099008]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-16 84992]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-02-24 13667032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-02-25 1381744]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-02-25 1381744]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-02-25 1381744]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2016-09-03 5175568]
"AutoStartTransition"=C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe [2015-02-12 294672]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2015-02-12 16094704]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2015-02-12 10841584]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [2018-06-14 239192]
"AVGUI.exe"=C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [2020-09-07 156808]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2020-06-04 3325520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-06-03 3944136]
"TuneupUI.exe"=C:\Program Files\AVG\TuneUp\TuneupUI.exe [2020-09-09 2614840]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify"=C:\Users\Tereza\AppData\Roaming\Spotify\Spotify.exe [2020-09-24 23412456]
"com.squirrel.Teams.Teams"=C:\Users\Tereza\AppData\Local\Microsoft\Teams\Update.exe [2020-10-01 2452112]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2020-09-22 30870200]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [2018-06-14 239192]
"vProt"=C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2018-05-15 2195968]
"TeamsMachineInstaller"=C:\Program Files\Teams Installer\Teams.exe --checkInstall --source=PROPLUS []
"PWRISOVM.EXE"=C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [2020-02-09 413888]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVG Secure VPN.lnk - C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{48F04F78-DE45-11E6-8A81-64006A5CFC23}"=C:\Users\Tereza\AppData\Roaming\Cligutainqerotain\Devaiedduberch.dll [2017-01-31 148992]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"Shell"=
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"DisableCAD"=1
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
"EnableShellExecuteHooks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-10-02 09:36:44 ----D---- C:\rsit
2020-10-02 09:36:44 ----D---- C:\Program Files\trend micro
2020-10-02 09:07:47 ----D---- C:\Program Files\CCleaner
2020-10-01 16:25:26 ----D---- C:\Program Files (x86)\World of Warcraft Cataclysm 4.3.4
2020-09-30 23:49:10 ----A---- C:\WINDOWS\system32\sedplugins.dll
2020-09-30 23:49:10 ----A---- C:\WINDOWS\system32\QualityUpdateAssistant.dll
2020-09-30 23:49:09 ----D---- C:\WINDOWS\system32\Logs
2020-09-30 23:49:09 ----D---- C:\Program Files\Microsoft Update Health Tools
2020-09-27 12:17:28 ----SHD---- C:\Config.Msi
2020-09-22 20:22:27 ----D---- C:\World of Warcraft - 3.3.5a (12340) - enUS (No Install)_CZhra_CZquesty
2020-09-20 22:26:37 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2020-09-20 22:26:37 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2020-09-20 22:26:37 ----A---- C:\WINDOWS\system32\fveapibase.dll
2020-09-20 22:26:37 ----A---- C:\WINDOWS\system32\fveapi.dll
2020-09-20 22:26:36 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2020-09-20 22:26:36 ----A---- C:\WINDOWS\system32\WFSR.dll
2020-09-20 22:26:36 ----A---- C:\WINDOWS\system32\WFS.exe
2020-09-20 22:26:36 ----A---- C:\WINDOWS\system32\FXSUTILITY.dll
2020-09-20 22:26:36 ----A---- C:\WINDOWS\system32\FXSCOVER.exe
2020-09-20 22:26:36 ----A---- C:\WINDOWS\system32\FXSCOMPOSERES.dll
2020-09-20 22:26:36 ----A---- C:\WINDOWS\system32\FXSCOMPOSE.dll
2020-09-20 22:26:35 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-09-20 22:26:35 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-20 22:26:33 ----A---- C:\WINDOWS\system32\cdp.dll
2020-09-20 22:26:33 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2020-09-20 22:26:21 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-09-20 22:26:20 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2020-09-20 22:26:12 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2020-09-20 22:26:12 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2020-09-20 22:26:12 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2020-09-20 22:26:12 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2020-09-20 22:26:11 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2020-09-20 22:26:11 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2020-09-20 22:26:11 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-09-20 22:26:11 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2020-09-20 22:26:11 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2020-09-20 22:26:10 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2020-09-20 22:26:10 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-09-20 22:26:10 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2020-09-20 22:26:10 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2020-09-20 22:26:09 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-09-20 22:26:09 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-20 22:26:06 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-09-20 22:26:04 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2020-09-20 22:26:04 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2020-09-20 22:26:04 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-09-20 22:26:03 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-20 22:26:03 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2020-09-20 22:26:03 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-20 22:26:03 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2020-09-20 22:26:03 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-20 22:26:03 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2020-09-20 22:26:02 ----A---- C:\WINDOWS\system32\mfds.dll
2020-09-20 22:26:02 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-09-20 22:26:02 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-20 22:26:01 ----A---- C:\WINDOWS\system32\mfsvr.dll
2020-09-20 22:26:01 ----A---- C:\WINDOWS\system32\mf.dll
2020-09-20 22:25:59 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2020-09-20 22:25:59 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2020-09-20 22:25:58 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-20 22:25:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-09-20 22:25:55 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2020-09-20 22:25:55 ----A---- C:\WINDOWS\SYSWOW64\NAPCRYPT.DLL
2020-09-20 22:25:55 ----A---- C:\WINDOWS\SYSWOW64\mstext40.dll
2020-09-20 22:25:55 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-09-20 22:25:55 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-09-20 22:25:55 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2020-09-20 22:25:54 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-09-20 22:25:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-09-20 22:25:54 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-09-20 22:25:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-09-20 22:25:53 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-09-20 22:25:53 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-09-20 22:25:53 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-09-20 22:25:52 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-09-20 22:25:38 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2020-09-20 22:25:37 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-09-20 22:25:35 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-09-20 22:25:34 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2020-09-20 22:25:34 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2020-09-20 22:25:34 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2020-09-20 22:25:34 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2020-09-20 22:25:34 ----A---- C:\WINDOWS\SYSWOW64\tar.exe
2020-09-20 22:25:34 ----A---- C:\WINDOWS\SYSWOW64\fdWSD.dll
2020-09-20 22:25:34 ----A---- C:\WINDOWS\SYSWOW64\fdSSDP.dll
2020-09-20 22:25:34 ----A---- C:\WINDOWS\SYSWOW64\dnscmmc.dll
2020-09-20 22:25:30 ----A---- C:\WINDOWS\system32\wslapi.dll
2020-09-20 22:25:29 ----A---- C:\WINDOWS\system32\SIHClient.exe
2020-09-20 22:25:29 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2020-09-20 22:25:29 ----A---- C:\WINDOWS\system32\P2P.dll
2020-09-20 22:25:29 ----A---- C:\WINDOWS\system32\FileHistory.exe
2020-09-20 22:25:29 ----A---- C:\WINDOWS\system32\fhuxgraphics.dll
2020-09-20 22:25:29 ----A---- C:\WINDOWS\system32\CPFilters.dll
2020-09-20 22:25:28 ----A---- C:\WINDOWS\system32\nltest.exe
2020-09-20 22:25:28 ----A---- C:\WINDOWS\system32\nettrace.dll
2020-09-20 22:25:28 ----A---- C:\WINDOWS\system32\drivers\ndiscap.sys
2020-09-20 22:25:27 ----A---- C:\WINDOWS\system32\DAFMCP.dll
2020-09-20 22:25:26 ----A---- C:\WINDOWS\system32\nshwfp.dll
2020-09-20 22:25:26 ----A---- C:\WINDOWS\system32\NAPCRYPT.DLL
2020-09-20 22:25:26 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-09-20 22:25:26 ----A---- C:\WINDOWS\system32\msi.dll
2020-09-20 22:25:25 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-09-20 22:25:23 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-09-20 22:25:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-09-20 22:25:23 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-09-20 22:25:23 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-09-20 22:25:23 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-09-20 22:25:22 ----A---- C:\WINDOWS\system32\ieproxy.dll
2020-09-20 22:25:22 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-09-20 22:25:19 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-09-20 22:25:18 ----A---- C:\WINDOWS\system32\dnscmmc.dll
2020-09-20 22:25:17 ----A---- C:\WINDOWS\system32\wsecedit.dll
2020-09-20 22:25:17 ----A---- C:\WINDOWS\system32\tar.exe
2020-09-20 22:25:17 ----A---- C:\WINDOWS\system32\fdWSD.dll
2020-09-20 22:25:17 ----A---- C:\WINDOWS\system32\ClipUp.exe
2020-09-20 22:25:16 ----A---- C:\WINDOWS\system32\computecore.dll
2020-09-20 22:25:14 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-09-20 22:25:14 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-09-20 22:25:13 ----A---- C:\WINDOWS\system32\securekernel.exe
2020-09-20 22:25:13 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2020-09-20 22:25:13 ----A---- C:\WINDOWS\system32\hvloader.dll
2020-09-20 22:25:13 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-09-20 22:25:13 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-09-20 22:25:13 ----A---- C:\WINDOWS\system32\fdSSDP.dll
2020-09-20 22:25:13 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2020-09-20 22:25:12 ----A---- C:\WINDOWS\system32\vid.dll
2020-09-20 22:25:12 ----A---- C:\WINDOWS\system32\upnphost.dll
2020-09-20 22:25:12 ----A---- C:\WINDOWS\system32\upnpcont.exe
2020-09-20 22:25:12 ----A---- C:\WINDOWS\system32\udhisapi.dll
2020-09-20 22:25:12 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2020-09-20 22:25:12 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2020-09-20 22:25:12 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-20 22:25:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2020-09-20 22:25:11 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-09-20 22:25:11 ----A---- C:\WINDOWS\SYSWOW64\scecli.dll
2020-09-20 22:25:03 ----A---- C:\WINDOWS\SYSWOW64\rtutils.dll
2020-09-20 22:25:02 ----A---- C:\WINDOWS\SYSWOW64\msxml3r.dll
2020-09-20 22:25:02 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2020-09-20 22:25:02 ----A---- C:\WINDOWS\SYSWOW64\KBDKOR.DLL
2020-09-20 22:25:02 ----A---- C:\WINDOWS\SYSWOW64\kbd106n.dll
2020-09-20 22:25:02 ----A---- C:\WINDOWS\SYSWOW64\kbd106.dll
2020-09-20 22:25:02 ----A---- C:\WINDOWS\SYSWOW64\kbd101.DLL
2020-09-20 22:25:01 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2020-09-20 22:25:01 ----A---- C:\WINDOWS\SYSWOW64\KBDJPN.DLL
2020-09-20 22:25:01 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2020-09-20 22:25:01 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2020-09-20 22:25:01 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2020-09-20 22:25:00 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2020-09-20 22:25:00 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-09-20 22:25:00 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-09-20 22:25:00 ----A---- C:\WINDOWS\SYSWOW64\edpnotify.exe
2020-09-20 22:25:00 ----A---- C:\WINDOWS\SYSWOW64\ddraw.dll
2020-09-20 22:25:00 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\perfproc.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\perfos.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\perfnet.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\perfdisk.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\perfctrs.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\msimg32.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2020-09-20 22:24:59 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2020-09-20 22:24:58 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-09-20 22:24:58 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-09-20 22:24:58 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2020-09-20 22:24:58 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2020-09-20 22:24:58 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2020-09-20 22:24:58 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2020-09-20 22:24:58 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2020-09-20 22:24:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-20 22:24:57 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2020-09-20 22:24:57 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2020-09-20 22:24:57 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2020-09-20 22:24:57 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2020-09-20 22:24:57 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2020-09-20 22:24:57 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2020-09-20 22:24:57 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-09-20 22:24:56 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-09-20 22:24:56 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-09-20 22:24:56 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2020-09-20 22:24:56 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2020-09-20 22:24:56 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2020-09-20 22:24:56 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2020-09-20 22:24:56 ----A---- C:\WINDOWS\SYSWOW64\appidtel.exe
2020-09-20 22:24:55 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2020-09-20 22:24:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2020-09-20 22:24:55 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-09-20 22:24:55 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2020-09-20 22:24:55 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2020-09-20 22:24:55 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2020-09-20 22:24:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-20 22:24:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-09-20 22:24:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-09-20 22:24:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-09-20 22:24:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-09-20 22:24:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2020-09-20 22:24:54 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-09-20 22:24:54 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-20 22:24:54 ----A---- C:\WINDOWS\SYSWOW64\cmintegrator.dll
2020-09-20 22:24:53 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2020-09-20 22:24:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-09-20 22:24:52 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-09-20 22:24:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 22:24:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-09-20 22:24:52 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2020-09-20 22:24:52 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2020-09-20 22:24:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2020-09-20 22:24:51 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2020-09-20 22:24:51 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-09-20 22:24:50 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2020-09-20 22:24:50 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2020-09-20 22:24:50 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-20 22:24:50 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2020-09-20 22:24:50 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2020-09-20 22:24:50 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2020-09-20 22:24:50 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2020-09-20 22:24:37 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2020-09-20 22:24:37 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2020-09-20 22:24:37 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2020-09-20 22:24:36 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2020-09-20 22:24:36 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2020-09-20 22:24:36 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2020-09-20 22:24:36 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2020-09-20 22:24:35 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2020-09-20 22:24:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2020-09-20 22:24:35 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2020-09-20 22:24:35 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2020-09-20 22:24:35 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2020-09-20 22:24:34 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2020-09-20 22:24:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2020-09-20 22:24:34 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2020-09-20 22:24:34 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2020-09-20 22:24:34 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2020-09-20 22:24:34 ----A---- C:\WINDOWS\SYSWOW64\mapistub.dll
2020-09-20 22:24:34 ----A---- C:\WINDOWS\SYSWOW64\mapi32.dll
2020-09-20 22:24:34 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2020-09-20 22:24:34 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2020-09-20 22:24:34 ----A---- C:\WINDOWS\SYSWOW64\fixmapi.exe
2020-09-20 22:24:33 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2020-09-20 22:24:33 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2020-09-20 22:24:33 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2020-09-20 22:24:33 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2020-09-20 22:24:33 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2020-09-20 22:24:32 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2020-09-20 22:24:32 ----A---- C:\WINDOWS\system32\scecli.dll
2020-09-20 22:24:32 ----A---- C:\WINDOWS\system32\rascustom.dll
2020-09-20 22:24:32 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2020-09-20 22:24:31 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2020-09-20 22:24:31 ----A---- C:\WINDOWS\system32\rtutils.dll
2020-09-20 22:24:31 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2020-09-20 22:24:31 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2020-09-20 22:24:18 ----A---- C:\WINDOWS\system32\msxml3r.dll
2020-09-20 22:24:18 ----A---- C:\WINDOWS\system32\msxml3.dll
2020-09-20 22:24:18 ----A---- C:\WINDOWS\system32\KBDJPN.DLL
2020-09-20 22:24:18 ----A---- C:\WINDOWS\system32\kbd106n.dll
2020-09-20 22:24:18 ----A---- C:\WINDOWS\system32\kbd106.dll
2020-09-20 22:24:18 ----A---- C:\WINDOWS\system32\kbd101.dll
2020-09-20 22:24:18 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2020-09-20 22:24:17 ----A---- C:\WINDOWS\system32\msIso.dll
2020-09-20 22:24:17 ----A---- C:\WINDOWS\system32\jsproxy.dll
2020-09-20 22:24:17 ----A---- C:\WINDOWS\system32\iertutil.dll
2020-09-20 22:24:17 ----A---- C:\WINDOWS\system32\edgeIso.dll
2020-09-20 22:24:16 ----A---- C:\WINDOWS\system32\wininet.dll
2020-09-20 22:24:16 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-09-20 22:24:16 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-09-20 22:24:16 ----A---- C:\WINDOWS\system32\efscore.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\tdh.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\policymanager.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\perfproc.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\perfos.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\perfnet.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\perfdisk.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\perfctrs.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\pdh.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\omadmclient.exe
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\edpnotify.exe
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\ddraw.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\credprovs.dll
2020-09-20 22:24:15 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-20 22:24:14 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-20 22:24:04 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-20 22:24:04 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-20 22:24:03 ----A---- C:\WINDOWS\system32\wuuhext.dll
2020-09-20 22:24:03 ----A---- C:\WINDOWS\system32\wow64win.dll
2020-09-20 22:24:03 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-20 22:24:03 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-20 22:24:03 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-20 22:24:03 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2020-09-20 22:24:03 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2020-09-20 22:24:02 ----A---- C:\WINDOWS\system32\msimg32.dll
2020-09-20 22:24:02 ----A---- C:\WINDOWS\system32\mf3216.dll
2020-09-20 22:24:02 ----A---- C:\WINDOWS\system32\lpk.dll
2020-09-20 22:24:02 ----A---- C:\WINDOWS\system32\fontsub.dll
2020-09-20 22:24:02 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2020-09-20 22:24:02 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2020-09-20 22:24:02 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2020-09-20 22:24:02 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2020-09-20 22:24:02 ----A---- C:\WINDOWS\system32\dciman32.dll
2020-09-20 22:23:47 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-09-20 22:23:47 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2020-09-20 22:23:47 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2020-09-20 22:23:46 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2020-09-20 22:23:46 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-09-20 22:23:46 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2020-09-20 22:23:46 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2020-09-20 22:23:46 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2020-09-20 22:23:45 ----A---- C:\WINDOWS\system32\sspisrv.dll
2020-09-20 22:23:45 ----A---- C:\WINDOWS\system32\sspicli.dll
2020-09-20 22:23:45 ----A---- C:\WINDOWS\system32\lsass.exe
2020-09-20 22:23:45 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2020-09-20 22:23:44 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-09-20 22:23:43 ----A---- C:\WINDOWS\system32\utcutil.dll
2020-09-20 22:23:43 ----A---- C:\WINDOWS\system32\runexehelper.exe
2020-09-20 22:23:43 ----A---- C:\WINDOWS\system32\ntdll.dll
2020-09-20 22:23:43 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2020-09-20 22:23:43 ----A---- C:\WINDOWS\system32\dbghelp.dll
2020-09-20 22:23:42 ----A---- C:\WINDOWS\system32\tzres.dll
2020-09-20 22:23:42 ----A---- C:\WINDOWS\system32\schannel.dll
2020-09-20 22:23:42 ----A---- C:\WINDOWS\system32\samlib.dll
2020-09-20 22:23:42 ----A---- C:\WINDOWS\system32\profsvc.dll
2020-09-20 22:23:42 ----A---- C:\WINDOWS\system32\offlinesam.dll
2020-09-20 22:23:42 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-09-20 22:23:42 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-09-20 22:23:42 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-09-20 22:23:42 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-09-20 22:23:41 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-09-20 22:23:41 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-09-20 22:23:41 ----A---- C:\WINDOWS\system32\samsrv.dll
2020-09-20 22:23:41 ----A---- C:\WINDOWS\system32\combase.dll
2020-09-20 22:23:41 ----A---- C:\WINDOWS\system32\ci.dll
2020-09-20 22:23:40 ----A---- C:\WINDOWS\system32\wudriver.dll
2020-09-20 22:23:40 ----A---- C:\WINDOWS\system32\msctf.dll
2020-09-20 22:23:40 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2020-09-20 22:23:40 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2020-09-20 22:23:40 ----A---- C:\WINDOWS\system32\dnsapi.dll
2020-09-20 22:23:40 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-20 22:23:40 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-20 22:23:40 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2020-09-20 22:23:40 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2020-09-20 22:23:39 ----A---- C:\WINDOWS\system32\TabSvc.dll
2020-09-20 22:23:39 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-09-20 22:23:39 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-20 22:23:39 ----A---- C:\WINDOWS\system32\sppcext.dll
2020-09-20 22:23:38 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-09-20 22:23:36 ----A---- C:\WINDOWS\system32\shell32.dll
2020-09-20 22:23:36 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\srpapi.dll
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\ole32.dll
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\dwmcore.dll
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\drivers\applockerfltr.sys
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\appidtel.exe
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\appidsvc.dll
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\appidapi.dll
2020-09-20 22:23:35 ----A---- C:\WINDOWS\system32\acmigration.dll
2020-09-20 22:23:34 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-20 22:23:34 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2020-09-20 22:23:34 ----A---- C:\WINDOWS\system32\SRH.dll
2020-09-20 22:23:34 ----A---- C:\WINDOWS\system32\appraiser.dll
2020-09-20 22:23:33 ----A---- C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-09-20 22:23:33 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-20 22:23:31 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-20 22:23:31 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-20 22:23:30 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-09-20 22:23:30 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-09-20 22:23:30 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-09-20 22:23:30 ----A---- C:\WINDOWS\system32\updatecsp.dll
2020-09-20 22:23:30 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-20 22:23:30 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-20 22:23:30 ----A---- C:\WINDOWS\system32\MusNotification.exe
2020-09-20 22:23:29 ----A---- C:\WINDOWS\system32\win32u.dll
2020-09-20 22:23:29 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-09-20 22:23:29 ----A---- C:\WINDOWS\system32\win32k.sys
2020-09-20 22:23:29 ----A---- C:\WINDOWS\system32\daxexec.dll
2020-09-20 22:23:28 ----A---- C:\WINDOWS\system32\wpnservice.dll
2020-09-20 22:23:28 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-20 22:23:28 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-09-20 22:23:28 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-20 22:23:28 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-20 22:23:28 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2020-09-20 22:23:28 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-20 22:23:28 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2020-09-20 22:23:27 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-20 22:23:26 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-20 22:23:24 ----A---- C:\WINDOWS\system32\wintrust.dll
2020-09-20 22:23:24 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-20 22:23:24 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-20 22:23:23 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-09-20 22:23:23 ----A---- C:\WINDOWS\system32\WindowManagement.dll
2020-09-20 22:23:23 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-20 22:23:23 ----A---- C:\WINDOWS\system32\storewuauth.dll
2020-09-20 22:23:22 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2020-09-20 22:23:22 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 22:23:22 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-20 22:23:22 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-20 22:23:22 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-09-20 22:23:21 ----A---- C:\WINDOWS\system32\tquery.dll
2020-09-20 22:23:21 ----A---- C:\WINDOWS\system32\mssrch.dll
2020-09-20 22:23:21 ----A---- C:\WINDOWS\system32\mssprxy.dll
2020-09-20 22:23:21 ----A---- C:\WINDOWS\system32\ISM.dll
2020-09-20 22:23:20 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2020-09-20 22:23:20 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-20 22:23:20 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-20 22:23:20 ----A---- C:\WINDOWS\system32\mssvp.dll
2020-09-20 22:23:20 ----A---- C:\WINDOWS\system32\mssph.dll
2020-09-20 22:23:09 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-20 22:23:09 ----A---- C:\WINDOWS\system32\mssitlb.dll
2020-09-20 22:23:09 ----A---- C:\WINDOWS\system32\msscntrs.dll
2020-09-20 22:23:08 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2020-09-20 22:23:07 ----A---- C:\WINDOWS\system32\FntCache.dll
2020-09-20 22:23:07 ----A---- C:\WINDOWS\system32\dxgi.dll
2020-09-20 22:23:06 ----A---- C:\WINDOWS\system32\msxml6r.dll
2020-09-20 22:23:06 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2020-09-20 22:23:06 ----A---- C:\WINDOWS\system32\DWrite.dll
2020-09-20 22:23:05 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2020-09-20 22:23:05 ----A---- C:\WINDOWS\system32\wups2.dll
2020-09-20 22:23:05 ----A---- C:\WINDOWS\system32\wuauclt.exe
2020-09-20 22:23:05 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2020-09-20 22:23:05 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-20 22:23:05 ----A---- C:\WINDOWS\system32\msxml6.dll
2020-09-20 22:23:04 ----A---- C:\WINDOWS\system32\wuaueng.dll
2020-09-20 22:23:04 ----A---- C:\WINDOWS\system32\wuapi.dll
2020-09-20 22:23:04 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-09-20 22:23:03 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-09-20 22:23:03 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-09-20 22:23:03 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-09-20 22:23:03 ----A---- C:\WINDOWS\system32\cdd.dll
2020-09-20 22:23:01 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-20 22:23:01 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-20 22:23:01 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-20 22:23:01 ----A---- C:\WINDOWS\system32\appinfo.dll
2020-09-20 22:23:00 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-20 22:23:00 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-09-20 22:23:00 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2020-09-20 22:23:00 ----A---- C:\WINDOWS\system32\tbauth.dll
2020-09-20 22:23:00 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2020-09-20 22:22:59 ----A---- C:\WINDOWS\system32\thumbcache.dll
2020-09-20 22:22:59 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-20 22:22:59 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-20 22:22:59 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2020-09-20 22:22:59 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-09-20 22:22:59 ----A---- C:\WINDOWS\system32\cdprt.dll
2020-09-20 22:22:59 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-20 22:22:58 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-20 22:22:58 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-20 22:22:58 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-20 22:22:57 ----A---- C:\WINDOWS\system32\WWAHost.exe
2020-09-20 22:22:57 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-20 22:22:57 ----A---- C:\WINDOWS\system32\smbwmiv2.dll
2020-09-20 22:22:57 ----A---- C:\WINDOWS\system32\mapi32.dll
2020-09-20 22:22:57 ----A---- C:\WINDOWS\system32\kernel32.dll
2020-09-20 22:22:57 ----A---- C:\WINDOWS\system32\fixmapi.exe
2020-09-20 22:22:57 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-20 22:22:56 ----A---- C:\WINDOWS\system32\StartTileData.dll
2020-09-20 22:22:56 ----A---- C:\WINDOWS\system32\mapistub.dll
2020-09-20 22:22:55 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-20 22:22:55 ----A---- C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-20 22:22:55 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-20 22:22:55 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-20 22:22:55 ----A---- C:\WINDOWS\system32\provops.dll
2020-09-20 22:22:55 ----A---- C:\WINDOWS\system32\provdiagnostics.dll
2020-09-20 22:22:55 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\provtool.exe
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\provhandlers.dll
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\provengine.dll
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\provdatastore.dll
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\localspl.dll
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-20 22:22:54 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-20 22:22:53 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2020-09-20 22:22:52 ----A---- C:\WINDOWS\system32\wwansvc.dll
2020-09-20 22:22:52 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2020-09-20 22:22:52 ----A---- C:\WINDOWS\system32\drivers\KNetPwrDepBroker.sys
2020-09-20 22:22:52 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-09-20 22:22:52 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-09-20 22:22:51 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2020-09-20 22:22:50 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2020-09-20 22:22:50 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2020-09-20 22:22:50 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2020-09-20 22:22:50 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2020-09-20 22:22:50 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2020-09-20 22:22:49 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2020-09-20 22:22:49 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2020-09-20 22:22:48 ----A---- C:\WINDOWS\system32\drivers\BtaMPM.sys
2020-09-20 21:41:09 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-09-20 21:41:08 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-09-07 15:40:48 ----A---- C:\WINDOWS\system32\msrahc.dll
2020-09-07 15:40:47 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-09-07 15:40:23 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2020-09-07 15:40:23 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2020-09-07 15:40:23 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2020-09-07 15:40:22 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2020-09-07 15:40:22 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2020-09-07 15:40:16 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2020-09-07 15:40:15 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2020-09-07 15:40:15 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2020-09-07 15:40:14 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-09-07 15:40:13 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2020-09-07 15:40:05 ----A---- C:\WINDOWS\SYSWOW64\tapisrv.dll
2020-09-07 15:40:05 ----A---- C:\WINDOWS\SYSWOW64\msxbde40.dll
2020-09-07 15:40:05 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-09-07 15:40:05 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2020-09-07 15:40:02 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2020-09-07 15:40:00 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-09-07 15:40:00 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-09-07 15:39:58 ----A---- C:\WINDOWS\SYSWOW64\net1.exe
2020-09-07 15:39:58 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-09-07 15:39:56 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-09-07 15:39:55 ----A---- C:\WINDOWS\system32\tapisrv.dll
2020-09-07 15:39:55 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2020-09-07 15:39:54 ----A---- C:\WINDOWS\system32\msisip.dll
2020-09-07 15:39:50 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-09-07 15:39:37 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-09-07 15:39:37 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-09-07 15:39:34 ----A---- C:\WINDOWS\system32\wiatrace.dll
2020-09-07 15:39:34 ----A---- C:\WINDOWS\system32\wiaservc.dll
2020-09-07 15:39:34 ----A---- C:\WINDOWS\system32\wiarpc.dll
2020-09-07 15:39:34 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2020-09-07 15:39:34 ----A---- C:\WINDOWS\system32\sti.dll
2020-09-07 15:39:34 ----A---- C:\WINDOWS\system32\jscript.dll
2020-09-07 15:39:34 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-09-07 15:39:33 ----A---- C:\WINDOWS\system32\StorSvc.dll
2020-09-07 15:39:33 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-09-07 15:39:32 ----A---- C:\WINDOWS\system32\net1.exe
2020-09-07 15:39:30 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-09-07 15:39:30 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-09-07 15:39:30 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-09-07 15:39:30 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-09-07 15:39:28 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2020-09-07 15:39:27 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2020-09-07 15:39:27 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2020-09-07 15:39:26 ----A---- C:\WINDOWS\SYSWOW64\rtm.dll
2020-09-07 15:39:26 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2020-09-07 15:39:26 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2020-09-07 15:39:26 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2020-09-07 15:39:26 ----A---- C:\WINDOWS\SYSWOW64\iprtprio.dll
2020-09-07 15:39:26 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2020-09-07 15:39:25 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2020-09-07 15:39:25 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2020-09-07 15:39:25 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2020-09-07 15:39:25 ----A---- C:\WINDOWS\SYSWOW64\drivers\afunix.sys
2020-09-07 15:39:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-09-07 15:39:23 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-09-07 15:39:23 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-09-07 15:39:23 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-09-07 15:39:23 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-09-07 15:39:23 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2020-09-07 15:39:22 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-09-07 15:39:05 ----A---- C:\WINDOWS\SYSWOW64\wow32.dll
2020-09-07 15:39:05 ----A---- C:\WINDOWS\SYSWOW64\user.exe
2020-09-07 15:39:05 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2020-09-07 15:39:05 ----A---- C:\WINDOWS\SYSWOW64\ntvdm64.dll
2020-09-07 15:39:05 ----A---- C:\WINDOWS\SYSWOW64\instnm.exe
2020-09-07 15:39:05 ----A---- C:\WINDOWS\SYSWOW64\acwow64.dll
2020-09-07 15:39:02 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2020-09-07 15:39:02 ----A---- C:\WINDOWS\SYSWOW64\directml.dll
2020-09-07 15:39:01 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2020-09-07 15:39:01 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-09-07 15:39:01 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2020-09-07 15:39:00 ----A---- C:\WINDOWS\SYSWOW64\BCP47mrm.dll
2020-09-07 15:39:00 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2020-09-07 15:39:00 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2020-09-07 15:38:59 ----A---- C:\WINDOWS\SYSWOW64\Winlangdb.dll
2020-09-07 15:38:59 ----A---- C:\WINDOWS\SYSWOW64\UserLanguageProfileCallback.dll
2020-09-07 15:38:59 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2020-09-07 15:38:59 ----A---- C:\WINDOWS\SYSWOW64\globinputhost.dll
2020-09-07 15:38:57 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2020-09-07 15:38:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2020-09-07 15:38:56 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2020-09-07 15:38:56 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2020-09-07 15:38:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2020-09-07 15:38:54 ----A---- C:\WINDOWS\SYSWOW64\wsmprovhost.exe
2020-09-07 15:38:54 ----A---- C:\WINDOWS\SYSWOW64\wsmplpxy.dll
2020-09-07 15:38:54 ----A---- C:\WINDOWS\SYSWOW64\WSManMigrationPlugin.dll
2020-09-07 15:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2020-09-07 15:38:53 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2020-09-07 15:38:53 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2020-09-07 15:38:53 ----A---- C:\WINDOWS\SYSWOW64\WsmRes.dll
2020-09-07 15:38:53 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2020-09-07 15:38:53 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2020-09-07 15:38:53 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2020-09-07 15:38:53 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-09-07 15:38:52 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2020-09-07 15:38:52 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-09-07 15:38:52 ----A---- C:\WINDOWS\SYSWOW64\SpatializerApo.dll
2020-09-07 15:38:52 ----A---- C:\WINDOWS\SYSWOW64\HrtfApo.dll
2020-09-07 15:38:52 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2020-09-07 15:38:52 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2020-09-07 15:38:51 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-09-07 15:38:51 ----A---- C:\WINDOWS\system32\shdocvw.dll
2020-09-07 15:38:51 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2020-09-07 15:38:50 ----A---- C:\WINDOWS\system32\rasdlg.dll
2020-09-07 15:38:50 ----A---- C:\WINDOWS\system32\comctl32.dll
2020-09-07 15:38:49 ----A---- C:\WINDOWS\system32\rtm.dll
2020-09-07 15:38:49 ----A---- C:\WINDOWS\system32\RMapi.dll
2020-09-07 15:38:49 ----A---- C:\WINDOWS\system32\rasplap.dll
2020-09-07 15:38:49 ----A---- C:\WINDOWS\system32\rasmans.dll
2020-09-07 15:38:49 ----A---- C:\WINDOWS\system32\rasapi32.dll
2020-09-07 15:38:49 ----A---- C:\WINDOWS\system32\mprdim.dll
2020-09-07 15:38:49 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2020-09-07 15:38:49 ----A---- C:\WINDOWS\system32\iprtprio.dll
2020-09-07 15:38:48 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-09-07 15:38:48 ----A---- C:\WINDOWS\system32\rasgcw.dll
2020-09-07 15:38:48 ----A---- C:\WINDOWS\system32\drivers\afunix.sys
2020-09-07 15:38:48 ----A---- C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-09-07 15:38:31 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-09-07 15:38:31 ----A---- C:\WINDOWS\system32\profsvcext.dll
2020-09-07 15:38:31 ----A---- C:\WINDOWS\system32\lpkinstall.exe
2020-09-07 15:38:30 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2020-09-07 15:38:19 ----A---- C:\WINDOWS\system32\netlogon.dll
2020-09-07 15:38:15 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-09-07 15:38:15 ----A---- C:\WINDOWS\system32\weretw.dll
2020-09-07 15:38:15 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-09-07 15:38:15 ----A---- C:\WINDOWS\system32\wer.dll
2020-09-07 15:38:14 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-09-07 15:38:14 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-09-07 15:38:13 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-09-07 15:38:12 ----A---- C:\WINDOWS\system32\twinui.dll
2020-09-07 15:38:02 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2020-09-07 15:38:01 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-09-07 15:37:58 ----A---- C:\WINDOWS\system32\winresume.exe
2020-09-07 15:37:57 ----A---- C:\WINDOWS\system32\winload.exe
2020-09-07 15:37:49 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-09-07 15:37:48 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2020-09-07 15:37:48 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2020-09-07 15:37:47 ----A---- C:\WINDOWS\system32\wc_storage.dll
2020-09-07 15:37:47 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2020-09-07 15:37:46 ----A---- C:\WINDOWS\system32\user32.dll
2020-09-07 15:37:45 ----A---- C:\WINDOWS\system32\wpnprv.dll
2020-09-07 15:37:45 ----A---- C:\WINDOWS\system32\wpncore.dll
2020-09-07 15:37:45 ----A---- C:\WINDOWS\system32\wpnapps.dll
2020-09-07 15:37:45 ----A---- C:\WINDOWS\system32\sbservicetrigger.dll
2020-09-07 15:37:45 ----A---- C:\WINDOWS\system32\ncbservice.dll
2020-09-07 15:37:45 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-09-07 15:37:45 ----A---- C:\WINDOWS\system32\keepaliveprovider.dll
2020-09-07 15:37:44 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2020-09-07 15:37:42 ----A---- C:\WINDOWS\system32\BCP47mrm.dll
2020-09-07 15:37:42 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2020-09-07 15:37:42 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-09-07 15:37:41 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2020-09-07 15:37:41 ----A---- C:\WINDOWS\system32\globinputhost.dll
2020-09-07 15:37:40 ----A---- C:\WINDOWS\system32\Winlangdb.dll
2020-09-07 15:37:40 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-09-07 15:37:40 ----A---- C:\WINDOWS\system32\WaaSMedicPS.dll
2020-09-07 15:37:40 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-09-07 15:37:40 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-09-07 15:37:40 ----A---- C:\WINDOWS\system32\UserLanguageProfileCallback.dll
2020-09-07 15:37:39 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2020-09-07 15:37:14 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2020-09-07 15:37:12 ----A---- C:\WINDOWS\system32\directml.dll
2020-09-07 15:37:11 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-09-07 15:37:11 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2020-09-07 15:37:10 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-09-07 15:37:06 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2020-09-07 15:37:06 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2020-09-07 15:37:06 ----A---- C:\WINDOWS\system32\WsmRes.dll
2020-09-07 15:37:06 ----A---- C:\WINDOWS\system32\wsmprovhost.exe
2020-09-07 15:37:06 ----A---- C:\WINDOWS\system32\wsmplpxy.dll
2020-09-07 15:37:06 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2020-09-07 15:37:06 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-09-07 15:37:06 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-09-07 15:37:06 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2020-09-07 15:37:06 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-09-07 15:37:05 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-09-07 15:37:04 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2020-09-07 15:37:03 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2020-09-07 15:37:03 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2020-09-07 15:37:03 ----A---- C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-09-07 15:37:03 ----A---- C:\WINDOWS\explorer.exe
2020-09-07 15:37:02 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2020-09-07 15:37:02 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-09-07 15:37:01 ----A---- C:\WINDOWS\system32\WpcTok.exe
2020-09-07 15:37:01 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2020-09-07 15:37:01 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-09-07 15:36:59 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2020-09-07 15:36:59 ----A---- C:\WINDOWS\system32\LanguageOverlayServer.dll
2020-09-07 15:36:59 ----A---- C:\WINDOWS\system32\HrtfApo.dll
2020-09-07 15:36:59 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2020-09-07 15:36:59 ----A---- C:\WINDOWS\system32\BTAGService.dll
2020-09-07 15:14:28 ----A---- C:\WINDOWS\system32\avgBoot.exe
2020-09-07 15:14:09 ----A---- C:\WINDOWS\system32\drivers\avgStm.sys
2020-09-07 15:14:06 ----A---- C:\WINDOWS\system32\drivers\avgMonFlt.sys
2020-09-07 15:01:37 ----D---- C:\Program Files\AVG
2020-09-07 15:01:34 ----A---- C:\WINDOWS\system32\icarus_rvrt.exe
======List of files/folders modified in the last 1 month======
2020-10-02 09:36:44 ----RD---- C:\Program Files
2020-10-02 09:30:20 ----D---- C:\WINDOWS\Temp
2020-10-02 09:20:01 ----D---- C:\Windows
2020-10-02 09:16:57 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-10-02 09:16:15 ----D---- C:\Users\Tereza\AppData\Roaming\DAEMON Tools Lite
2020-10-02 09:14:39 ----D---- C:\WINDOWS\INF
2020-10-02 09:14:36 ----D---- C:\WINDOWS\Minidump
2020-10-02 09:14:36 ----D---- C:\WINDOWS\LiveKernelReports
2020-10-02 09:14:36 ----D---- C:\WINDOWS\debug
2020-10-02 09:11:11 ----D---- C:\WINDOWS\system32\sru
2020-10-02 09:10:40 ----D---- C:\WINDOWS\Prefetch
2020-10-02 09:08:00 ----D---- C:\WINDOWS\system32\Tasks
2020-10-01 16:25:26 ----RD---- C:\Program Files (x86)
2020-10-01 16:11:41 ----D---- C:\WINDOWS\system32\config
2020-10-01 16:09:32 ----D---- C:\WINDOWS\WinSxS
2020-10-01 16:07:47 ----D---- C:\WINDOWS\system32\SleepStudy
2020-10-01 12:54:23 ----D---- C:\WINDOWS\AppReadiness
2020-10-01 12:41:57 ----SHD---- C:\WINDOWS\Installer
2020-10-01 12:38:40 ----D---- C:\Users\Tereza\AppData\Roaming\Spotify
2020-10-01 12:26:46 ----RD---- C:\WINDOWS\Microsoft.NET
2020-10-01 12:20:08 ----D---- C:\WINDOWS\System32
2020-10-01 12:20:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-01 12:15:50 ----AD---- C:\Program Files (x86)\TeamViewer
2020-09-30 23:50:13 ----HD---- C:\Program Files\WindowsApps
2020-09-30 23:48:40 ----D---- C:\WINDOWS\Logs
2020-09-30 20:29:50 ----D---- C:\WINDOWS\system32\catroot2
2020-09-30 20:29:48 ----SHD---- C:\System Volume Information
2020-09-29 12:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2020-09-27 12:40:32 ----D---- C:\WINDOWS\SysWOW64
2020-09-27 12:18:10 ----D---- C:\WINDOWS\system32\drivers
2020-09-24 10:45:40 ----AD---- C:\Program Files (x86)\Microsoft Office
2020-09-24 08:35:01 ----AD---- C:\ProgramData\Avg
2020-09-23 19:48:11 ----RSD---- C:\WINDOWS\Fonts
2020-09-21 00:08:43 ----D---- C:\WINDOWS\system32\DriverStore
2020-09-21 00:04:56 ----D---- C:\WINDOWS\SYSWOW64\migration
2020-09-21 00:04:55 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-09-21 00:04:50 ----D---- C:\WINDOWS\SystemResources
2020-09-21 00:04:48 ----D---- C:\WINDOWS\system32\wbem
2020-09-21 00:04:48 ----D---- C:\WINDOWS\system32\ru-RU
2020-09-21 00:04:48 ----D---- C:\WINDOWS\system32\ro-RO
2020-09-21 00:04:48 ----D---- C:\WINDOWS\system32\pt-PT
2020-09-21 00:04:48 ----D---- C:\WINDOWS\system32\pl-PL
2020-09-21 00:04:48 ----D---- C:\WINDOWS\system32\oobe
2020-09-21 00:04:48 ----D---- C:\WINDOWS\system32\nl-NL
2020-09-21 00:04:47 ----SD---- C:\WINDOWS\system32\DiagSvcs
2020-09-21 00:04:47 ----D---- C:\WINDOWS\system32\migwiz
2020-09-21 00:04:47 ----D---- C:\WINDOWS\system32\migration
2020-09-21 00:04:47 ----D---- C:\WINDOWS\system32\en-US
2020-09-21 00:04:47 ----D---- C:\WINDOWS\system32\el-GR
2020-09-21 00:04:47 ----D---- C:\WINDOWS\system32\cs-CZ
2020-09-21 00:04:46 ----D---- C:\WINDOWS\system32\ar-SA
2020-09-21 00:04:38 ----D---- C:\WINDOWS\ShellExperiences
2020-09-21 00:04:37 ----RD---- C:\WINDOWS\PrintDialog
2020-09-21 00:04:37 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2020-09-21 00:04:37 ----D---- C:\WINDOWS\Provisioning
2020-09-21 00:04:37 ----D---- C:\WINDOWS\bcastdvr
2020-09-21 00:04:37 ----D---- C:\Program Files\Internet Explorer
2020-09-20 23:22:03 ----RSD---- C:\WINDOWS\assembly
2020-09-20 22:48:56 ----D---- C:\WINDOWS\system32\MRT
2020-09-20 22:37:37 ----AC---- C:\WINDOWS\system32\MRT.exe
2020-09-20 22:37:03 ----D---- C:\WINDOWS\CbsTemp
2020-09-20 22:22:51 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2020-09-07 18:50:43 ----D---- C:\WINDOWS\ServiceState
2020-09-07 15:52:35 ----D---- C:\WINDOWS\SYSWOW64\setup
2020-09-07 15:52:35 ----D---- C:\WINDOWS\SYSWOW64\oobe
2020-09-07 15:52:35 ----D---- C:\WINDOWS\SYSWOW64\drivers
2020-09-07 15:52:35 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-09-07 15:52:26 ----D---- C:\WINDOWS\system32\setup
2020-09-07 15:52:26 ----D---- C:\WINDOWS\system32\PerceptionSimulation
2020-09-07 15:52:25 ----D---- C:\WINDOWS\system32\Dism
2020-09-07 15:52:24 ----D---- C:\WINDOWS\system32\Boot
2020-09-07 15:52:23 ----D---- C:\WINDOWS\servicing
2020-09-07 15:52:23 ----D---- C:\WINDOWS\apppatch
2020-09-07 15:14:28 ----HD---- C:\WINDOWS\ELAMBKUP
2020-09-07 15:01:37 ----D---- C:\Program Files\Common Files\AVG
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avgbidsh;avgbidsh; C:\WINDOWS\system32\drivers\avgbidsh.sys [2020-09-07 195712]
R0 avgbuniv;avgbuniv; C:\WINDOWS\system32\drivers\avgbuniv.sys [2020-09-07 61056]
R0 avgElam;avgElam; C:\WINDOWS\system32\drivers\avgElam.sys [2020-07-21 16320]
R0 avgRvrt;avgRvrt; C:\WINDOWS\system32\drivers\avgRvrt.sys [2020-09-07 84912]
R0 avgVmm;avgVmm; C:\WINDOWS\system32\drivers\avgVmm.sys [2020-09-08 326488]
R0 BTATH_BUS;@oem15.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2014-02-26 35016]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-09-07 40960]
R1 avgArPot;avgArPot; C:\WINDOWS\system32\drivers\avgArPot.sys [2020-09-07 206456]
R1 avgbidsdriver;avgbidsdriver; C:\WINDOWS\system32\drivers\avgbidsdriver.sys [2020-09-07 235648]
R1 avgKbd;avgKbd; C:\WINDOWS\system32\drivers\avgKbd.sys [2020-09-07 42832]
R1 avgNetHub;avgNetHub; C:\WINDOWS\system32\drivers\avgNetHub.sys [2020-09-24 517648]
R1 avgRdr;avgRdr; C:\WINDOWS\system32\drivers\avgRdr2.sys [2020-09-07 109336]
R1 avgSnx;avgSnx; C:\WINDOWS\system32\drivers\avgSnx.sys [2020-09-07 851664]
R1 avgSP;avgSP; C:\WINDOWS\system32\drivers\avgSP.sys [2020-09-07 469944]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 avgMonFlt;avgMonFlt; C:\WINDOWS\system32\drivers\avgMonFlt.sys [2020-09-07 175256]
R2 avgStm;avgStm; C:\WINDOWS\system32\drivers\avgStm.sys [2020-09-07 217392]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-05-16 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 ACPIVPC;@oem1.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-02-12 35576]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athw8x.sys [2019-03-19 4233728]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-02-16 117264]
R3 BtFilter;BtFilter; C:\WINDOWS\System32\drivers\btfilter.sys [2019-07-19 69368]
R3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2020-03-11 231936]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-03-11 114688]
R3 BthHFAud;@microsoft_bluetooth_hfp.inf,%BTHHFAUD_DISPLAY_NAME%;Microsoft Bluetooth Hands-Free Audio driver; C:\WINDOWS\System32\drivers\BthHfAud.sys [2019-03-19 57856]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-03-19 133120]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-03-11 99328]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
R3 dtlitescsibus;@oem52.inf,%DisplayName%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2020-02-18 42256]
R3 dtliteusbbus;@oem53.inf,%DisplayName%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2020-02-18 59360]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-03 3811288]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-03-04 3882456]
R3 IntcDAud;@oem44.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\drivers\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem26.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-03-19 662528]
R3 rtsuvc;@oem12.inf,%rtsuvc.DeviceDesc%;EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2016-09-03 3136272]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-11 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 AppleKmdfFilter;@oem34.inf,%AppleKmdfFilterDisplayName%;Apple KMDF Filter Driver; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [2018-05-10 20640]
S3 AppleLowerFilter;@oem34.inf,%AppleLowerFilterDisplayName%;Apple Lower Filter Driver; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [2018-05-10 35560]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2020-09-20 18432]
S3 avgTap;@oem32.inf,%DeviceDescription%;AVG TAP Adapter v3; C:\WINDOWS\System32\drivers\avgTap.sys [2016-12-09 54888]
S3 BRDriver64_1_3_3_E02B25FC;BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys []
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-03-11 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2020-03-11 1428992]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-11-04 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-11-04 64000]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-09-20 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-18 359424]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 Netaapl;@oem33.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\System32\drivers\netaapl64.sys [2017-11-28 32352]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 phidmice;USB Mouse Low Filter WU Driver; C:\WINDOWS\system32\DRIVERS\phidmice.sys [2016-07-11 33048]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 pmouself;Mouse Suite WU Driver; C:\WINDOWS\system32\DRIVERS\pmouself.sys [2016-07-11 26880]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 pvendrlf;Mouse Suite I/O WU Driver; C:\WINDOWS\system32\DRIVERS\pvendrlf.sys [2016-07-11 15032]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-18 986936]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2020-09-06 169544]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2020-06-04 3673680]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2020-06-04 3406416]
R2 AtherosSvc;AtherosSvc; C:\WINDOWS\System32\drivers\AdminService.exe [2019-07-19 382712]
R2 AVG Antivirus;AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [2020-09-07 358432]
R2 AVG Firewall;AVG Firewall Service; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [2020-09-07 1097752]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2018-06-14 1428264]
R2 AvgWscReporter;AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [2020-09-07 110608]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_1d9762;Uživatelská služba platformy připojených zařízení_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CleanupPSvc;AVG TuneUp; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [2020-09-09 12978896]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2020-09-21 8853384]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-04-11 192200]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2014-05-22 584960]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2015-02-12 198192]
R2 McAfee WebAdvisor;McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [2020-10-02 953544]
R2 OneSyncSvc_1d9762;Hostitel synchronizace_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R3 avgbIDSAgent;avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [2020-09-07 7871424]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_1d9762;Uživatelská služba schránky_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2020-02-18 4506728]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-04 43704]
R3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_1d9762;Data kontaktů_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-08-05 224160]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-30 107848]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_1d9762;Agent Activation Runtime_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2020-02-06 336952]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_1d9762;Uživatelská služba pro GameDVR a vysílání her_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_1d9762;Služba pro podporu uživatelů Bluetooth_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_1d9762;CaptureService_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_1d9762;ConsentUX_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-03 299488]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-16 381152]
S3 CredentialEnrollmentManagerUserSvc_1d9762;CredentialEnrollmentManagerUserSvc_1d9762; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-16 381152]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_1d9762;DeviceAssociationBroker_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_1d9762;DevicePicker_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_1d9762;Tok zařízení_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-09-20 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-08-05 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\elevation_service.exe [2020-09-19 1322992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-30 107848]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-25 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_1d9762;Služba zasílání zpráv_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.63\elevation_service.exe [2020-09-23 1537424]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\syswow64\GameMon.des [2016-08-22 6053312]
S3 ose;Office Source Engine; c:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 214832]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_1d9762;PrintWorkflow_1d9762; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119395
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivka
Zdravím!
Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . RSIT není plně kompatibilní s desítkami. Děkuji.
Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . RSIT není plně kompatibilní s desítkami. Děkuji.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivka
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5175568 2016-09-03] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [AutoStartTransition] => C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe [294672 2015-02-12] (Lenovo (Beijing) Limited -> )
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10841584 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [156808 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [2614840 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2195968 2018-05-15] (AVG Netherlands B.V. -> )
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [84008696 2019-12-08] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [413888 2020-02-09] (Power Software Limited -> Power Software Ltd)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [Spotify] => C:\Users\Tereza\AppData\Roaming\Spotify\Spotify.exe [23412456 2020-09-24] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [30870200 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Tereza\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-10-04] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: E - "E:\PXRoute.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: H - "H:\setup.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: {ee7d36a9-615d-11ea-83c5-d0534960e580} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Providers\8gfhpci5: C:\Program Files (x86)\Prdather Configuration\local64spl.dll <==== ATTENTION
HKLM\...\Print\Monitors\4700PSeries PCL6 Language Monitor: C:\WINDOWS\system32\KOBJZJ_L.dll [17408 2017-03-20] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\Installer\chrmstp.exe [2020-09-23] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-02-26] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-02-26] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG Secure VPN.lnk [2017-05-09]
ShortcutTarget: AVG Secure VPN.lnk -> C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
BootExecute: autocheck autochk * icarus_rvrt.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {020439DA-609C-4250-840F-B64AD6F15C9D} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {0B8BF5AC-2C8A-49D5-B9F6-A14E1D662619} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {0BA61507-8735-4DF2-8060-CA5FEE850F5B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {0F3F5609-D8F2-47D9-A814-147092A4E067} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {15447A40-1D5D-48BB-9074-B9374FDF1B26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {168F1968-A5C3-4DC7-8402-2FE0F00B4757} - System32\Tasks\{375C4476-8551-416E-933C-CA5F3DD86441} => C:\windows\system32\pcalua.exe -a C:\Users\Tereza\Desktop\hp2\system\Game.exe -d E:\crack -c E:\crack\Game.exe
Task: {1BB22087-3123-4C22-BF6A-3B9FDD73D0F8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {2420CFD3-C575-4407-89BF-C2F6D00AE7AE} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-tereza.blahova@outlook.cz => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {26619C70-DEA2-46B9-8744-653845D30585} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2A8069F8-9EDD-4C63-86F8-3D2780DCFAF8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {32D30842-D8A2-4B73-AE45-9EC50921937D} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-20] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {3475D498-8B77-470B-BB25-4354830FF69D} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {366ACB17-F67E-4F11-9407-29264323EB24} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [332800 2020-09-20] (Microsoft Windows -> Microsoft Corporation)
Task: {3D869F6F-F593-41E4-B7F9-CA7603C7FD93} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b313ccf52e91 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {47D224C4-B29B-445E-919B-98736C2152F6} - System32\Tasks\GoogleUpdateTaskMachineCore1d0b313cccfe52d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {5016C5F7-37D2-4DD5-85C6-588DB437E7E2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4011448 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {57E47C81-D872-46EC-BEF8-E317D6307E5D} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {609545C4-98B1-4687-92F5-7DC25595CDDF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {665C2D5D-1A87-4CF0-89C9-754F5CFFCC4B} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [332800 2020-09-20] (Microsoft Windows -> Microsoft Corporation)
Task: {685D5CF0-FC92-4717-AECE-97CFDD6DD98C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {699CA3EC-35C4-47A1-A8D9-6FA3C6D3369C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A8CB1F5-68A8-4DBF-9B6F-70ECDCE57F8A} - \WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001 -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6F6B3A0D-C74E-44BE-AC77-5777FAD7914E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {71648C36-98B4-46B1-B1CA-DE1AAD3DA09B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {72272F1A-ACF6-4C57-A279-00CA2A4CBB99} - System32\Tasks\AVG Secure VPN Update => C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe [1071512 2020-10-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {747BFD47-DCB9-4925-81B9-4065F33751CB} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {77501555-8F1E-45CB-9B2E-F82D01CA3CEB} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {78514EE9-C7EC-4CCA-9FF4-E9DB0517EE7F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {78CA6D58-0264-44C5-A043-9B570A178783} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {7BE7F0B0-2FDF-4007-BF60-E778A7A9179B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {85456F8F-BD42-470E-86E9-AA8EF967008D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8890B5E7-1F43-4BC9-8037-6269CAEB3993} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17184 2014-05-30] (LENOVO -> Lenovo)
Task: {8E12D3A5-7D71-4043-BB6A-97B225DFDDC6} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b31319f66a18 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {9533572D-500F-499A-9E4F-D9BA64CF76F3} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [336952 2020-02-06] (Adobe Inc. -> Adobe)
Task: {974CB924-9CC4-4F73-A137-F3D57D1845BD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {97BD4E19-08A1-493A-827A-550DE54ECF79} - System32\Tasks\Prdather Configuration => C:\Program Files (x86)\Daletictain\cuuph.exe [1016752 2017-01-31] (Glarysoft LTD -> Glarysoft Ltd)
Task: {994591F7-2272-4139-B9B8-5B6138124AED} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {9CC9F1AA-B5F8-4B00-BC2A-46F292C4DF03} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4011448 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F96FB9E-5234-442F-BD76-5B3CF4361D6E} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [33536 2014-05-22] (LENOVO -> )
Task: {A4FB906B-5704-4635-98C7-DC1CD4190593} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A6279069-2816-466D-B083-CABB1B1C19A3} - System32\Tasks\AVG EUpdate Task => C:\Program Files (x86)\AVG\Setup\avgsetupx.exe [4072504 2018-06-22] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
Task: {A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {AD5ADFCA-8780-4DFC-8428-3C21DEA12A83} - System32\Tasks\AVG\AVG TuneUp Update BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [2812656 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {AE1AA9BE-D8BB-4A1F-BA5A-A10D2CDED6CE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B00B279E-A535-47A8-B7F7-0E5F4C0E3521} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {B1504F69-8600-4346-BEAA-1FB1116B2B82} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B1D08757-3EAC-4C74-9399-ED733EEBF2B9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B4BB6857-698E-4C07-9C20-0A5D7566996C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {B5403EEE-9266-46DB-AF19-9095BEEB3DB2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {BCC8B832-3390-4217-96C9-BC531822083D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C656CAE4-42D4-4599-BF0D-67A6158B8960} - System32\Tasks\{5140B943-8CC7-4365-8048-11FD9D0E6A0B} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Harry Potter a Tajemná komnata\system\Game.exe" -d C:\PROGRA~2\EAGAME~1\HARRYP~1
Task: {C6C0A02F-4DEF-41AF-82A7-DA138B1D892D} - System32\Tasks\{4499C407-8224-4494-8BD9-F74401EDD645} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\GameforgeLive\Games\CZE_ces\4Story\unins000.exe"
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF9A11E0-F0BE-4502-8DCE-14EAF08519D5} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {DBECC934-51C2-4BC0-A5D4-561D0717F9E4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {DC0E7D48-9301-449A-B6E2-7B84BA2B47B9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DD158EA7-E62F-4827-BECE-4CD6ECFEFE81} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {DF348033-6E46-448E-91BC-24AFA900877E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E62DD62F-5E35-4848-BEB7-993431981AFD} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3897992 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {EB5AB23A-FA27-4BB5-9A28-D724BE084B55} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {FA4A9457-3FFD-4B05-AFD4-FCED57C081A1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1153928 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC3B72B9-76A6-40A4-9E02-0CCA494A4D15} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {FCA11D92-B76A-4F22-8294-3741D316F8F0} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [5151368 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0b31319f66a18.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4df83cd8-099b-42eb-a952-84fbbf807bed}: [DhcpNameServer] 172.168.130.2
Tcpip\..\Interfaces\{5b6c1477-195b-4d12-9e05-430d94c004e7}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{748dd2bd-d8c1-4e14-ae81-8db328008947}: [NameServer] 77.234.40.79
Edge:
======
Edge Profile: C:\Users\Tereza\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-02]
FireFox:
========
FF DefaultProfile: h7lc3mbl.default
FF ProfilePath: C:\Users\Tereza\AppData\Roaming\Firefox\Firefox\Profiles\h7lc3mbl.default [2017-06-13] <==== ATTENTION
FF Homepage: Firefox\Firefox\Profiles\h7lc3mbl.default -> hxxp://www.searchinme.com/
FF Extension: (SimilarWeb) - C:\Users\Tereza\AppData\Roaming\Firefox\Firefox\Profiles\h7lc3mbl.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2017-02-21] [Legacy] [not signed]
FF Extension: (FF Adr) - C:\Users\Tereza\AppData\Roaming\Firefox\Firefox\Profiles\h7lc3mbl.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2017-02-11] [not signed]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Tereza\AppData\Roaming\Firefox\Firefox\Profiles\h7lc3mbl.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2017-05-25] [Legacy] [not signed]
FF SearchPlugin: C:\Users\Tereza\AppData\Roaming\Firefox\Firefox\Profiles\h7lc3mbl.default\searchplugins\startsearch.xml [2017-05-25]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-10-06] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-30] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-30] (Adobe Systems Incorporated -> )
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-10-07] <==== ATTENTION
CHR Notifications: ChromeDefaultData -> hxxps://www.fotor.com; hxxps://www.myguidequeenstown.com; hxxps://www.slevomat.cz
CHR HomePage: ChromeDefaultData -> hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91"
CHR Extension: (Prezentace) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-31]
CHR Extension: (Dokumenty) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-31]
CHR Extension: (Disk Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-12]
CHR Extension: (YouTube) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-31]
CHR Extension: (uBlock Origin) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-10-06]
CHR Extension: (Tabulky) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-06]
CHR Extension: (Gmail) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-28]
CHR Extension: (Chrome Media Router) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-07]
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default [2020-10-02]
CHR Extension: (Prezentace Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-30]
CHR Extension: (Dokumenty Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-30]
CHR Extension: (Disk Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Tabulky Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AdBlock) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-01-31]
CHR Extension: (Shopicks) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\iadhdfmpolpbdekneiekahmibhcbgjcj [2017-01-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-30]
CHR Extension: (Chrome Media Router) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-17]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn]
CHR HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Antanna\Application\chrome.exe (Google Inc -> Google Inc.) <==== ATTENTION
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [336952 2020-02-06] (Adobe Inc. -> Adobe)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [358432 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [1097752 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [7871424 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [110608 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [12978896 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8943496 2020-09-24] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-04-11] (Huawei Software Technologies Co., LTD. -> )
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-22] (LENOVO -> LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [953544 2020-10-02] (McAfee, LLC -> McAfee, LLC)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [6053312 2016-08-22] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 SecureVpn; C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe [7025728 2020-10-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 vToolbarUpdater40.3.8; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe [1371136 2018-05-15] (AVG Netherlands B.V. -> AVG Secure Search)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28760 2020-01-17] (LAVASOFT SOFTWARE CANADA INC -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\NisSrv.exe [3285864 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MsMpEng.exe [103168 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [811520 2018-05-15] (AVG Netherlands B.V. -> )
R2 ymc; C:\ProgramData\LenovoTransition\Server\x64\ymc.exe [33040 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-26] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206456 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [235648 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [195712 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61056 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16320 2020-07-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42832 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175256 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [517648 2020-09-24] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109336 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84912 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851664 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469944 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [217392 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgTap; C:\WINDOWS\System32\drivers\avgTap.sys [54888 2016-12-09] (AVG Technologies CZ, s.r.o. -> The OpenVPN Project)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [326488 2020-09-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 phidmice; C:\WINDOWS\system32\DRIVERS\phidmice.sys [33048 2016-07-11] (WDKTestCert idd,131110062695071623 -> )
S3 pmouself; C:\WINDOWS\system32\DRIVERS\pmouself.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 pvendrlf; C:\WINDOWS\system32\DRIVERS\pvendrlf.sys [15032 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [28624 2020-02-18] () [File not signed]
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Apple, Inc.) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376544 2020-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-07 09:51 - 2020-10-07 10:06 - 000037212 _____ C:\Users\Tereza\Desktop\FRST.txt
2020-10-07 09:51 - 2020-10-07 09:51 - 000000000 _____ C:\Users\Tereza\Desktop\Addition.txt
2020-10-07 09:30 - 2020-10-07 10:05 - 000000000 ____D C:\FRST
2020-10-07 09:26 - 2020-10-07 09:26 - 002299392 _____ (Farbar) C:\Users\Tereza\Desktop\FRST64.exe
2020-10-06 15:48 - 2020-10-06 15:48 - 000531842 _____ C:\Users\Tereza\Downloads\video (3).mp4
2020-10-06 15:09 - 2020-10-06 15:15 - 153617152 _____ C:\Users\Tereza\Downloads\video (15).mp4
2020-10-06 15:06 - 2020-10-06 15:06 - 001638257 _____ C:\Users\Tereza\Downloads\video (14).mp4
2020-10-06 15:04 - 2020-10-06 15:04 - 002131546 _____ C:\Users\Tereza\Downloads\video (13).mp4
2020-10-06 15:01 - 2020-10-06 15:08 - 057227620 _____ C:\Users\Tereza\Downloads\video (8).mp4
2020-10-06 15:01 - 2020-10-06 15:02 - 070353223 _____ C:\Users\Tereza\Downloads\video (10).mp4
2020-10-06 15:01 - 2020-10-06 15:01 - 026556652 _____ C:\Users\Tereza\Downloads\video (12).mp4
2020-10-06 15:01 - 2020-10-06 15:01 - 001024453 _____ C:\Users\Tereza\Downloads\video (11).mp4
2020-10-06 15:01 - 2020-10-06 15:01 - 000731715 _____ C:\Users\Tereza\Downloads\video (9).mp4
2020-10-06 15:00 - 2020-10-06 15:00 - 006332911 _____ C:\Users\Tereza\Downloads\video (7).mp4
2020-10-06 15:00 - 2020-10-06 15:00 - 006332911 _____ C:\Users\Tereza\Downloads\video (6).mp4
2020-10-06 15:00 - 2020-10-06 15:00 - 000531842 _____ C:\Users\Tereza\Downloads\video (5).mp4
2020-10-06 14:59 - 2020-10-06 14:59 - 021015114 _____ C:\Users\Tereza\Downloads\video (4).mp4
2020-10-06 14:58 - 2020-10-06 14:58 - 001638257 _____ C:\Users\Tereza\Downloads\video (2).mp4
2020-10-06 14:57 - 2020-10-06 14:58 - 002131546 _____ C:\Users\Tereza\Downloads\video (1).mp4
2020-10-06 12:50 - 2020-10-06 12:50 - 000223855 _____ C:\Users\Tereza\Downloads\3. cvičení (1).pdf
2020-10-06 12:50 - 2020-10-06 12:50 - 000215593 _____ C:\Users\Tereza\Downloads\4. cvičení (1).pdf
2020-10-06 12:49 - 2020-10-06 12:50 - 127700129 _____ C:\Users\Tereza\Downloads\Handouts_2cv_řešení_roušky.pptx
2020-10-05 12:36 - 2020-10-05 12:36 - 000052457 _____ C:\Users\Tereza\Downloads\Word_procvičování-20201005.zip
2020-10-05 09:42 - 2020-10-05 09:43 - 000733497 _____ C:\Users\Tereza\Downloads\eduroam-cs_CZ.kml
2020-10-04 21:29 - 2020-10-04 21:31 - 253991975 _____ C:\Users\Tereza\Downloads\video.mp4
2020-10-04 21:06 - 2020-10-04 21:06 - 000002419 _____ C:\Users\Tereza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-10-04 21:06 - 2020-10-04 21:06 - 000002411 _____ C:\Users\Tereza\Desktop\Microsoft Teams.lnk
2020-10-04 21:00 - 2020-10-04 21:01 - 101284632 _____ (Microsoft Corporation) C:\Users\Tereza\Downloads\Teams_windows_x64.exe
2020-10-04 20:58 - 2020-10-04 20:58 - 000002467 _____ C:\Users\Tereza\Desktop\Access.lnk
2020-10-04 20:58 - 2020-10-04 20:58 - 000002446 _____ C:\Users\Tereza\Desktop\OneNote.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002504 _____ C:\Users\Tereza\Desktop\Word.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002503 _____ C:\Users\Tereza\Desktop\PowerPoint.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002466 _____ C:\Users\Tereza\Desktop\Excel.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002460 _____ C:\Users\Tereza\Desktop\Outlook.lnk
2020-10-04 20:20 - 2020-10-04 20:20 - 000687104 _____ C:\Users\Tereza\Downloads\A Cv. 4, Rozvaha, VZZ, CF, studenti,2020-21.ppt
2020-10-04 20:20 - 2020-10-04 20:20 - 000173260 _____ C:\Users\Tereza\Downloads\A cv. 5 - 6, Náklady, 2020-2021, studenti.pptx
2020-10-04 20:10 - 2020-10-04 20:10 - 000223855 _____ C:\Users\Tereza\Downloads\3. cvičení.pdf
2020-10-04 20:10 - 2020-10-04 20:10 - 000215593 _____ C:\Users\Tereza\Downloads\4. cvičení.pdf
2020-10-04 19:27 - 2020-10-04 19:28 - 072523626 _____ C:\Users\Tereza\Downloads\the-business-2-0-intermediate-b1.pdf
2020-10-02 09:36 - 2020-10-02 09:37 - 000000000 ____D C:\rsit
2020-10-02 09:36 - 2020-10-02 09:36 - 001222144 _____ C:\Users\Tereza\Downloads\RSITx64.exe
2020-10-02 09:36 - 2020-10-02 09:36 - 000000000 ____D C:\Program Files\trend micro
2020-10-02 09:08 - 2020-10-07 00:04 - 000002236 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-10-02 09:07 - 2020-10-07 08:59 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-02 09:07 - 2020-10-02 09:07 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-02 09:07 - 2020-10-02 09:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-10-02 09:07 - 2020-10-02 09:07 - 000000000 ____D C:\Program Files\CCleaner
2020-10-02 09:06 - 2020-10-02 09:06 - 029069888 _____ (Piriform Software Ltd) C:\Users\Tereza\Downloads\ccsetup572.exe
2020-10-01 16:25 - 2020-10-01 16:25 - 000000000 ____D C:\Program Files (x86)\World of Warcraft Cataclysm 4.3.4
2020-10-01 16:17 - 2020-10-01 16:17 - 008193829 _____ C:\Users\Tereza\Downloads\WoW434_mini.zip
2020-10-01 13:18 - 2020-10-01 13:18 - 000534354 _____ C:\Users\Tereza\Downloads\c_1-4.pdf
2020-10-01 09:00 - 2020-10-01 09:01 - 409574760 _____ C:\Users\Tereza\Downloads\Handouts_2cv_řešení_videa.pptx
2020-09-30 23:49 - 2020-09-30 23:49 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2020-09-30 23:49 - 2020-09-10 18:14 - 000905528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2020-09-30 23:49 - 2020-09-10 18:14 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2020-09-30 10:56 - 2020-10-01 12:02 - 000672768 _____ C:\Users\Tereza\Downloads\A1 Cv. 3, Rozvaha-studenti, 2020-2021 (1).ppt
2020-09-29 13:09 - 2020-09-29 13:09 - 000035329 _____ C:\Users\Tereza\Downloads\Zadost_o_ubytovaci_stipendium.pdf
2020-09-29 10:37 - 2020-09-29 10:37 - 000446982 _____ C:\Users\Tereza\Downloads\PrednaskaExcelPrazdna.xlsx
2020-09-29 08:42 - 2020-09-29 08:42 - 000621818 _____ C:\Users\Tereza\Downloads\Cvičení-20200929.zip
2020-09-29 08:38 - 2020-09-29 08:38 - 000804864 _____ C:\Users\Tereza\Downloads\A1 Cv. 3, Rozvaha-studenti, 2020-2021.ppt
2020-09-29 08:31 - 2020-09-29 08:31 - 069513199 _____ C:\Users\Tereza\Downloads\Př-2.mkv
2020-09-29 08:29 - 2020-09-29 08:29 - 000445964 _____ C:\Users\Tereza\Downloads\Cvičení (návody a další samostatná práce)-20200929.zip
2020-09-23 23:12 - 2020-10-06 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-09-23 23:12 - 2020-09-23 23:12 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002504 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2020-09-23 19:32 - 2020-09-23 19:33 - 006228616 _____ (Microsoft Corporation) C:\Users\Tereza\Downloads\OfficeSetup.exe
2020-09-22 20:22 - 2020-09-22 21:04 - 000000000 ____D C:\World of Warcraft - 3.3.5a (12340) - enUS (No Install)_CZhra_CZquesty
2020-09-21 22:11 - 2020-09-21 22:11 - 002749688 _____ C:\Users\Tereza\Downloads\cvicebnice-matematika-a-gencev-ekf-vsb.pdf
2020-09-21 20:49 - 2020-09-21 20:49 - 000285730 _____ C:\Users\Tereza\Downloads\c_1-1.pdf
2020-09-20 22:26 - 2020-09-20 22:26 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 005503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 004309504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 002494752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 002315472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002138264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001491160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001247744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001151808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001108384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001039872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000928768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000748384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000738072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000709632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000682752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFSR.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000666288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000420168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSE.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOVER.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUTILITY.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSERES.dll
2020-09-20 22:25 - 2020-09-20 22:26 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 032928920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 022642176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 007761408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 007284736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 006304256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 005907456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 005767744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004605952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004538368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 003501568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 002259680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001459200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001421392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 001326592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001218424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000783496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000671560 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000299072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnscmmc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnscmmc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhuxgraphics.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tar.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NAPCRYPT.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tar.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wslapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106n.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd101.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-09-20 22:24 - 2020-09-20 22:24 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 006069360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005848848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005041152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005003832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 003740456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002585032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002565120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001957552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001750016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001704960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001698816 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001664696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001653792 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001369088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001307464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001246208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001141048 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001124864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001054160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001009200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000892728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000867328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000844088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000823752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000768504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000675032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000667312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000628400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000572208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000544336 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000466352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000356160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000285056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000260408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000224064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000165184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000146640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000090944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000089344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000063296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDJPN.DLL
2020-09-20 22:24 - 2020-09-20 22:24 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106n.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd101.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 009926456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 007910152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007845080 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007582768 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007271232 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 006170624 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 005284328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 004048384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003805696 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 003547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003371176 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003265024 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003136000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002772616 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002711552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002697536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002483712 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002454904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002260824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002090280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001930752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001670144 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 001485824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001480520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 001399216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001260752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001170960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001008952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000944680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000893104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000858928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000716304 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000661832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-09-20 22:23 - 2020-09-20 22:23 - 000460192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000372536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000363128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000273208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000254776 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000213824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000205640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000146248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000079576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000066872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000057888 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000047008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-09-20 22:22 - 2020-09-20 22:23 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 003714048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 002291712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001942016 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001784832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001767424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001746232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000981320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000978232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000555320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000250680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000224072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000208712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000200008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapistub.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000142152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe
2020-09-20 21:41 - 2020-08-15 07:25 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-09-20 21:41 - 2020-08-15 07:15 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-09-20 21:31 - 2020-09-20 21:42 - 000242698 _____ C:\Users\Tereza\Desktop\odstoupeni-od-smlouvy.pdf
2020-09-12 20:46 - 2020-09-12 20:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-2380088464-113028033-3958389239-1001
2020-09-10 16:07 - 2020-09-10 16:07 - 000157252 _____ C:\Users\Tereza\Downloads\2020_2021_UVOD DO STUDIA.pdf
2020-09-07 15:40 - 2020-09-07 15:40 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-09-07 15:40 - 2020-09-07 15:40 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2020-09-07 15:40 - 2020-09-07 15:40 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2020-09-07 15:40 - 2020-09-07 15:40 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2020-09-07 15:40 - 2020-09-07 15:40 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2020-09-07 15:40 - 2020-09-07 15:40 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-09-07 15:39 - 2020-09-07 15:39 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-09-07 15:39 - 2020-09-07 15:39 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-09-07 15:39 - 2020-09-07 15:39 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin
2020-09-07 15:39 - 2020-09-07 15:39 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin
2020-09-07 15:38 - 2020-09-07 15:38 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-09-07 15:38 - 2020-09-07 15:38 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-09-07 15:37 - 2020-09-07 15:37 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-09-07 15:37 - 2020-09-07 15:37 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-09-07 15:37 - 2020-09-07 15:37 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-09-07 15:36 - 2020-09-07 15:36 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-09-07 15:36 - 2020-09-07 15:36 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll
2020-09-07 15:36 - 2020-09-07 15:36 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll
2020-09-07 15:36 - 2020-09-07 15:36 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2020-09-07 15:36 - 2020-09-07 15:36 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
2020-09-07 15:14 - 2020-09-07 15:10 - 000217392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2020-09-07 15:14 - 2020-09-07 15:10 - 000175256 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2020-09-07 15:14 - 2020-09-07 15:09 - 000339080 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-09-07 15:11 - 2020-09-07 15:11 - 000002002 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG TuneUp.lnk
2020-09-07 15:11 - 2020-09-07 15:11 - 000001990 _____ C:\Users\Public\Desktop\AVG TuneUp.lnk
2020-09-07 15:01 - 2020-09-07 15:01 - 000000000 ____D C:\Program Files\AVG
2020-09-07 15:01 - 2020-09-02 14:20 - 000129424 _____ (AVG Technologies) C:\WINDOWS\system32\icarus_rvrt.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-07 09:48 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-07 09:35 - 2015-07-03 23:06 - 000000000 ____D C:\Users\Tereza\AppData\Local\Spotify
2020-10-07 09:25 - 2019-11-04 21:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-10-07 09:21 - 2019-11-04 21:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-07 09:16 - 2019-11-04 21:55 - 000003668 _____ C:\WINDOWS\system32\Tasks\AVG EUpdate Task
2020-10-07 09:04 - 2019-11-04 21:35 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-07 09:04 - 2019-03-19 13:55 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-07 09:04 - 2019-03-19 13:55 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-07 09:04 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-10-07 09:02 - 2016-04-02 21:28 - 000000000 ____D C:\ProgramData\Avg
2020-10-07 09:01 - 2015-07-03 23:06 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\Spotify
2020-10-07 09:00 - 2019-11-04 21:55 - 000004278 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-10-07 08:59 - 2015-06-30 10:36 - 000000000 __SHD C:\Users\Tereza\IntelGraphicsProfiles
2020-10-07 08:57 - 2019-11-04 21:55 - 000003986 _____ C:\WINDOWS\system32\Tasks\AVG Secure VPN Update
2020-10-07 08:57 - 2015-09-24 19:08 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-10-07 08:56 - 2019-11-04 21:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-07 00:05 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-10-07 00:04 - 2020-08-05 01:21 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-07 00:04 - 2020-08-05 01:21 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-07 00:04 - 2019-11-04 21:55 - 000004940 _____ C:\WINDOWS\system32\Tasks\Prdather Configuration
2020-10-07 00:04 - 2019-11-04 21:55 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-10-07 00:04 - 2019-11-04 21:55 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2380088464-113028033-3958389239-1001
2020-10-07 00:04 - 2019-11-04 21:55 - 000002814 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-tereza.blahova@outlook.cz
2020-10-07 00:04 - 2019-11-04 21:55 - 000002750 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2380088464-113028033-3958389239-1001
2020-10-07 00:04 - 2019-11-04 21:55 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-10-07 00:04 - 2019-11-04 21:55 - 000002318 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2380088464-113028033-3958389239-500
2020-10-07 00:04 - 2019-11-04 21:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-10-06 22:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-06 22:37 - 2018-05-20 23:45 - 000000000 ____D C:\Users\Tereza\AppData\Local\PlaceholderTileLogoFolder
2020-10-06 22:25 - 2019-10-06 23:30 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-10-06 22:07 - 2018-09-13 20:09 - 000000000 ____D C:\Users\Tereza\AppData\Local\CrashDumps
2020-10-06 16:06 - 2015-02-12 10:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-10-06 15:48 - 2015-07-01 13:05 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\vlc
2020-10-05 13:10 - 2018-02-12 22:56 - 000000000 ____D C:\Users\Tereza\AppData\Local\Packages
2020-10-04 23:48 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-04 21:06 - 2020-02-13 10:26 - 000000000 ____D C:\Users\Tereza\AppData\Local\SquirrelTemp
2020-10-03 10:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-03 10:03 - 2020-08-05 01:22 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-03 10:03 - 2020-08-05 01:22 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-02 09:16 - 2017-01-31 15:25 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\DAEMON Tools Lite
2020-10-02 09:14 - 2020-01-17 04:16 - 000000000 ____D C:\WINDOWS\Minidump
2020-10-01 12:44 - 2015-08-24 10:47 - 000000000 ____D C:\Users\Tereza\AppData\Local\ElevatedDiagnostics
2020-10-01 12:30 - 2019-11-04 21:23 - 000000000 ____D C:\Users\Tereza
2020-09-29 20:24 - 2019-07-04 13:28 - 000000000 ____D C:\Users\Tereza\Desktop\filmy
2020-09-27 12:41 - 2015-07-01 13:29 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-09-24 08:31 - 2020-04-21 12:25 - 000517648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2020-09-24 08:29 - 2019-11-04 21:12 - 000466688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-23 23:29 - 2015-09-13 20:21 - 000000000 ____D C:\Users\Tereza\Desktop\school
2020-09-23 23:27 - 2019-10-30 16:37 - 000000000 ____D C:\Users\Tereza\Desktop\logika
2020-09-23 19:45 - 2015-06-30 11:00 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-09-21 19:27 - 2018-02-13 18:08 - 000000000 ___RD C:\Users\Tereza\3D Objects
2020-09-21 19:27 - 2015-07-01 02:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-09-20 22:48 - 2015-07-03 17:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-20 22:37 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-09-20 22:37 - 2015-07-03 17:52 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-20 22:22 - 2019-11-04 21:31 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-09-08 18:42 - 2019-11-04 21:23 - 000002414 _____ C:\Users\Tereza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-09-08 18:42 - 2016-05-16 18:04 - 000000000 ___RD C:\Users\Tereza\OneDrive - Stredni skola KOSTKA s.r.o
2020-09-08 10:25 - 2017-04-24 20:54 - 000326488 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2020-09-07 18:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ServiceState
2020-09-07 18:50 - 2016-09-04 12:18 - 000000000 ____D C:\Users\Tereza\AppData\Local\ConnectedDevicesPlatform
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-09-07 15:52 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2020-09-07 15:17 - 2020-01-17 22:27 - 000000000 ____D C:\Users\Tereza\AppData\Local\Opera Software
2020-09-07 15:14 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-09-07 15:11 - 2019-11-04 21:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2020-09-07 15:10 - 2019-02-23 22:50 - 000195712 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2020-09-07 15:10 - 2019-02-23 22:50 - 000061056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2020-09-07 15:10 - 2018-10-15 13:16 - 000042832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2020-09-07 15:10 - 2017-04-24 20:54 - 000469944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2020-09-07 15:10 - 2017-04-24 20:54 - 000109336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2020-09-07 15:10 - 2017-04-24 20:54 - 000084912 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2020-09-07 15:08 - 2019-02-23 22:50 - 000235648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-09-07 15:08 - 2017-11-14 14:26 - 000206456 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2020-09-07 15:08 - 2017-04-24 20:54 - 000851664 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2020-09-07 15:07 - 2018-12-13 14:14 - 000000000 ____D C:\Users\Tereza\AppData\Local\D3DSCache
2020-09-07 15:01 - 2017-12-27 16:37 - 000000000 ____D C:\Program Files\Common Files\AVG
==================== Files in the root of some directories ========
2017-03-02 14:26 - 2017-03-02 14:26 - 000000000 _____ () C:\Program Files (x86)\metadata
2017-03-02 19:46 - 2017-03-02 19:46 - 000000040 _____ () C:\Program Files (x86)\settings.dat
2020-10-05 11:22 - 2020-10-05 11:22 - 000000124 _____ () C:\Users\Tereza\AppData\Roaming\debug.log
2018-10-01 19:51 - 2018-10-01 19:51 - 000000000 _____ () C:\Users\Tereza\AppData\Local\oobelibMkey.log
2016-04-19 11:31 - 2016-04-19 11:31 - 000000000 _____ () C:\Users\Tereza\AppData\Local\{43CC2DB6-C910-4B5B-9112-5E75706FB958}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5175568 2016-09-03] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [AutoStartTransition] => C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe [294672 2015-02-12] (Lenovo (Beijing) Limited -> )
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10841584 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [156808 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [2614840 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2195968 2018-05-15] (AVG Netherlands B.V. -> )
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [84008696 2019-12-08] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [413888 2020-02-09] (Power Software Limited -> Power Software Ltd)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [Spotify] => C:\Users\Tereza\AppData\Roaming\Spotify\Spotify.exe [23412456 2020-09-24] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [30870200 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Tereza\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-10-04] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: E - "E:\PXRoute.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: H - "H:\setup.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: {ee7d36a9-615d-11ea-83c5-d0534960e580} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Providers\8gfhpci5: C:\Program Files (x86)\Prdather Configuration\local64spl.dll <==== ATTENTION
HKLM\...\Print\Monitors\4700PSeries PCL6 Language Monitor: C:\WINDOWS\system32\KOBJZJ_L.dll [17408 2017-03-20] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\Installer\chrmstp.exe [2020-09-23] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-02-26] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-02-26] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG Secure VPN.lnk [2017-05-09]
ShortcutTarget: AVG Secure VPN.lnk -> C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
BootExecute: autocheck autochk * icarus_rvrt.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {020439DA-609C-4250-840F-B64AD6F15C9D} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {0B8BF5AC-2C8A-49D5-B9F6-A14E1D662619} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {0BA61507-8735-4DF2-8060-CA5FEE850F5B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {0F3F5609-D8F2-47D9-A814-147092A4E067} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {15447A40-1D5D-48BB-9074-B9374FDF1B26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {168F1968-A5C3-4DC7-8402-2FE0F00B4757} - System32\Tasks\{375C4476-8551-416E-933C-CA5F3DD86441} => C:\windows\system32\pcalua.exe -a C:\Users\Tereza\Desktop\hp2\system\Game.exe -d E:\crack -c E:\crack\Game.exe
Task: {1BB22087-3123-4C22-BF6A-3B9FDD73D0F8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {2420CFD3-C575-4407-89BF-C2F6D00AE7AE} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-tereza.blahova@outlook.cz => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {26619C70-DEA2-46B9-8744-653845D30585} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2A8069F8-9EDD-4C63-86F8-3D2780DCFAF8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {32D30842-D8A2-4B73-AE45-9EC50921937D} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-20] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {3475D498-8B77-470B-BB25-4354830FF69D} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {366ACB17-F67E-4F11-9407-29264323EB24} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [332800 2020-09-20] (Microsoft Windows -> Microsoft Corporation)
Task: {3D869F6F-F593-41E4-B7F9-CA7603C7FD93} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b313ccf52e91 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {47D224C4-B29B-445E-919B-98736C2152F6} - System32\Tasks\GoogleUpdateTaskMachineCore1d0b313cccfe52d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {5016C5F7-37D2-4DD5-85C6-588DB437E7E2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4011448 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {57E47C81-D872-46EC-BEF8-E317D6307E5D} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {609545C4-98B1-4687-92F5-7DC25595CDDF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {665C2D5D-1A87-4CF0-89C9-754F5CFFCC4B} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [332800 2020-09-20] (Microsoft Windows -> Microsoft Corporation)
Task: {685D5CF0-FC92-4717-AECE-97CFDD6DD98C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {699CA3EC-35C4-47A1-A8D9-6FA3C6D3369C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A8CB1F5-68A8-4DBF-9B6F-70ECDCE57F8A} - \WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001 -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6F6B3A0D-C74E-44BE-AC77-5777FAD7914E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {71648C36-98B4-46B1-B1CA-DE1AAD3DA09B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {72272F1A-ACF6-4C57-A279-00CA2A4CBB99} - System32\Tasks\AVG Secure VPN Update => C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe [1071512 2020-10-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {747BFD47-DCB9-4925-81B9-4065F33751CB} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {77501555-8F1E-45CB-9B2E-F82D01CA3CEB} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {78514EE9-C7EC-4CCA-9FF4-E9DB0517EE7F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {78CA6D58-0264-44C5-A043-9B570A178783} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {7BE7F0B0-2FDF-4007-BF60-E778A7A9179B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {85456F8F-BD42-470E-86E9-AA8EF967008D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8890B5E7-1F43-4BC9-8037-6269CAEB3993} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17184 2014-05-30] (LENOVO -> Lenovo)
Task: {8E12D3A5-7D71-4043-BB6A-97B225DFDDC6} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b31319f66a18 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {9533572D-500F-499A-9E4F-D9BA64CF76F3} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [336952 2020-02-06] (Adobe Inc. -> Adobe)
Task: {974CB924-9CC4-4F73-A137-F3D57D1845BD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {97BD4E19-08A1-493A-827A-550DE54ECF79} - System32\Tasks\Prdather Configuration => C:\Program Files (x86)\Daletictain\cuuph.exe [1016752 2017-01-31] (Glarysoft LTD -> Glarysoft Ltd)
Task: {994591F7-2272-4139-B9B8-5B6138124AED} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {9CC9F1AA-B5F8-4B00-BC2A-46F292C4DF03} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4011448 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F96FB9E-5234-442F-BD76-5B3CF4361D6E} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [33536 2014-05-22] (LENOVO -> )
Task: {A4FB906B-5704-4635-98C7-DC1CD4190593} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A6279069-2816-466D-B083-CABB1B1C19A3} - System32\Tasks\AVG EUpdate Task => C:\Program Files (x86)\AVG\Setup\avgsetupx.exe [4072504 2018-06-22] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
Task: {A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {AD5ADFCA-8780-4DFC-8428-3C21DEA12A83} - System32\Tasks\AVG\AVG TuneUp Update BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [2812656 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {AE1AA9BE-D8BB-4A1F-BA5A-A10D2CDED6CE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B00B279E-A535-47A8-B7F7-0E5F4C0E3521} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {B1504F69-8600-4346-BEAA-1FB1116B2B82} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B1D08757-3EAC-4C74-9399-ED733EEBF2B9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B4BB6857-698E-4C07-9C20-0A5D7566996C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {B5403EEE-9266-46DB-AF19-9095BEEB3DB2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {BCC8B832-3390-4217-96C9-BC531822083D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C656CAE4-42D4-4599-BF0D-67A6158B8960} - System32\Tasks\{5140B943-8CC7-4365-8048-11FD9D0E6A0B} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Harry Potter a Tajemná komnata\system\Game.exe" -d C:\PROGRA~2\EAGAME~1\HARRYP~1
Task: {C6C0A02F-4DEF-41AF-82A7-DA138B1D892D} - System32\Tasks\{4499C407-8224-4494-8BD9-F74401EDD645} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\GameforgeLive\Games\CZE_ces\4Story\unins000.exe"
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF9A11E0-F0BE-4502-8DCE-14EAF08519D5} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {DBECC934-51C2-4BC0-A5D4-561D0717F9E4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {DC0E7D48-9301-449A-B6E2-7B84BA2B47B9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DD158EA7-E62F-4827-BECE-4CD6ECFEFE81} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {DF348033-6E46-448E-91BC-24AFA900877E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E62DD62F-5E35-4848-BEB7-993431981AFD} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3897992 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {EB5AB23A-FA27-4BB5-9A28-D724BE084B55} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {FA4A9457-3FFD-4B05-AFD4-FCED57C081A1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1153928 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC3B72B9-76A6-40A4-9E02-0CCA494A4D15} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {FCA11D92-B76A-4F22-8294-3741D316F8F0} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [5151368 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0b31319f66a18.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4df83cd8-099b-42eb-a952-84fbbf807bed}: [DhcpNameServer] 172.168.130.2
Tcpip\..\Interfaces\{5b6c1477-195b-4d12-9e05-430d94c004e7}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{748dd2bd-d8c1-4e14-ae81-8db328008947}: [NameServer] 77.234.40.79
Edge:
======
Edge Profile: C:\Users\Tereza\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-02]
FireFox:
========
FF DefaultProfile: h7lc3mbl.default
FF ProfilePath: C:\Users\Tereza\AppData\Roaming\Firefox\Firefox\Profiles\h7lc3mbl.default [2017-06-13] <==== ATTENTION
FF Homepage: Firefox\Firefox\Profiles\h7lc3mbl.default -> hxxp://www.searchinme.com/
FF Extension: (SimilarWeb) - C:\Users\Tereza\AppData\Roaming\Firefox\Firefox\Profiles\h7lc3mbl.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2017-02-21] [Legacy] [not signed]
FF Extension: (FF Adr) - C:\Users\Tereza\AppData\Roaming\Firefox\Firefox\Profiles\h7lc3mbl.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2017-02-11] [not signed]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Tereza\AppData\Roaming\Firefox\Firefox\Profiles\h7lc3mbl.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2017-05-25] [Legacy] [not signed]
FF SearchPlugin: C:\Users\Tereza\AppData\Roaming\Firefox\Firefox\Profiles\h7lc3mbl.default\searchplugins\startsearch.xml [2017-05-25]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-10-06] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-30] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-30] (Adobe Systems Incorporated -> )
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-10-07] <==== ATTENTION
CHR Notifications: ChromeDefaultData -> hxxps://www.fotor.com; hxxps://www.myguidequeenstown.com; hxxps://www.slevomat.cz
CHR HomePage: ChromeDefaultData -> hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91"
CHR Extension: (Prezentace) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-31]
CHR Extension: (Dokumenty) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-31]
CHR Extension: (Disk Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-12]
CHR Extension: (YouTube) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-31]
CHR Extension: (uBlock Origin) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-10-06]
CHR Extension: (Tabulky) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-06]
CHR Extension: (Gmail) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-28]
CHR Extension: (Chrome Media Router) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-07]
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default [2020-10-02]
CHR Extension: (Prezentace Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-30]
CHR Extension: (Dokumenty Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-30]
CHR Extension: (Disk Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Tabulky Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AdBlock) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-01-31]
CHR Extension: (Shopicks) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\iadhdfmpolpbdekneiekahmibhcbgjcj [2017-01-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-30]
CHR Extension: (Chrome Media Router) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-17]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn]
CHR HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Antanna\Application\chrome.exe (Google Inc -> Google Inc.) <==== ATTENTION
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [336952 2020-02-06] (Adobe Inc. -> Adobe)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [358432 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [1097752 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [7871424 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [110608 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [12978896 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8943496 2020-09-24] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-04-11] (Huawei Software Technologies Co., LTD. -> )
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-22] (LENOVO -> LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [953544 2020-10-02] (McAfee, LLC -> McAfee, LLC)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [6053312 2016-08-22] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 SecureVpn; C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe [7025728 2020-10-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 vToolbarUpdater40.3.8; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe [1371136 2018-05-15] (AVG Netherlands B.V. -> AVG Secure Search)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28760 2020-01-17] (LAVASOFT SOFTWARE CANADA INC -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\NisSrv.exe [3285864 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MsMpEng.exe [103168 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [811520 2018-05-15] (AVG Netherlands B.V. -> )
R2 ymc; C:\ProgramData\LenovoTransition\Server\x64\ymc.exe [33040 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-26] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206456 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [235648 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [195712 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61056 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16320 2020-07-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42832 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175256 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [517648 2020-09-24] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109336 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84912 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851664 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469944 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [217392 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgTap; C:\WINDOWS\System32\drivers\avgTap.sys [54888 2016-12-09] (AVG Technologies CZ, s.r.o. -> The OpenVPN Project)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [326488 2020-09-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 phidmice; C:\WINDOWS\system32\DRIVERS\phidmice.sys [33048 2016-07-11] (WDKTestCert idd,131110062695071623 -> )
S3 pmouself; C:\WINDOWS\system32\DRIVERS\pmouself.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 pvendrlf; C:\WINDOWS\system32\DRIVERS\pvendrlf.sys [15032 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [28624 2020-02-18] () [File not signed]
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Apple, Inc.) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376544 2020-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-07 09:51 - 2020-10-07 10:06 - 000037212 _____ C:\Users\Tereza\Desktop\FRST.txt
2020-10-07 09:51 - 2020-10-07 09:51 - 000000000 _____ C:\Users\Tereza\Desktop\Addition.txt
2020-10-07 09:30 - 2020-10-07 10:05 - 000000000 ____D C:\FRST
2020-10-07 09:26 - 2020-10-07 09:26 - 002299392 _____ (Farbar) C:\Users\Tereza\Desktop\FRST64.exe
2020-10-06 15:48 - 2020-10-06 15:48 - 000531842 _____ C:\Users\Tereza\Downloads\video (3).mp4
2020-10-06 15:09 - 2020-10-06 15:15 - 153617152 _____ C:\Users\Tereza\Downloads\video (15).mp4
2020-10-06 15:06 - 2020-10-06 15:06 - 001638257 _____ C:\Users\Tereza\Downloads\video (14).mp4
2020-10-06 15:04 - 2020-10-06 15:04 - 002131546 _____ C:\Users\Tereza\Downloads\video (13).mp4
2020-10-06 15:01 - 2020-10-06 15:08 - 057227620 _____ C:\Users\Tereza\Downloads\video (8).mp4
2020-10-06 15:01 - 2020-10-06 15:02 - 070353223 _____ C:\Users\Tereza\Downloads\video (10).mp4
2020-10-06 15:01 - 2020-10-06 15:01 - 026556652 _____ C:\Users\Tereza\Downloads\video (12).mp4
2020-10-06 15:01 - 2020-10-06 15:01 - 001024453 _____ C:\Users\Tereza\Downloads\video (11).mp4
2020-10-06 15:01 - 2020-10-06 15:01 - 000731715 _____ C:\Users\Tereza\Downloads\video (9).mp4
2020-10-06 15:00 - 2020-10-06 15:00 - 006332911 _____ C:\Users\Tereza\Downloads\video (7).mp4
2020-10-06 15:00 - 2020-10-06 15:00 - 006332911 _____ C:\Users\Tereza\Downloads\video (6).mp4
2020-10-06 15:00 - 2020-10-06 15:00 - 000531842 _____ C:\Users\Tereza\Downloads\video (5).mp4
2020-10-06 14:59 - 2020-10-06 14:59 - 021015114 _____ C:\Users\Tereza\Downloads\video (4).mp4
2020-10-06 14:58 - 2020-10-06 14:58 - 001638257 _____ C:\Users\Tereza\Downloads\video (2).mp4
2020-10-06 14:57 - 2020-10-06 14:58 - 002131546 _____ C:\Users\Tereza\Downloads\video (1).mp4
2020-10-06 12:50 - 2020-10-06 12:50 - 000223855 _____ C:\Users\Tereza\Downloads\3. cvičení (1).pdf
2020-10-06 12:50 - 2020-10-06 12:50 - 000215593 _____ C:\Users\Tereza\Downloads\4. cvičení (1).pdf
2020-10-06 12:49 - 2020-10-06 12:50 - 127700129 _____ C:\Users\Tereza\Downloads\Handouts_2cv_řešení_roušky.pptx
2020-10-05 12:36 - 2020-10-05 12:36 - 000052457 _____ C:\Users\Tereza\Downloads\Word_procvičování-20201005.zip
2020-10-05 09:42 - 2020-10-05 09:43 - 000733497 _____ C:\Users\Tereza\Downloads\eduroam-cs_CZ.kml
2020-10-04 21:29 - 2020-10-04 21:31 - 253991975 _____ C:\Users\Tereza\Downloads\video.mp4
2020-10-04 21:06 - 2020-10-04 21:06 - 000002419 _____ C:\Users\Tereza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-10-04 21:06 - 2020-10-04 21:06 - 000002411 _____ C:\Users\Tereza\Desktop\Microsoft Teams.lnk
2020-10-04 21:00 - 2020-10-04 21:01 - 101284632 _____ (Microsoft Corporation) C:\Users\Tereza\Downloads\Teams_windows_x64.exe
2020-10-04 20:58 - 2020-10-04 20:58 - 000002467 _____ C:\Users\Tereza\Desktop\Access.lnk
2020-10-04 20:58 - 2020-10-04 20:58 - 000002446 _____ C:\Users\Tereza\Desktop\OneNote.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002504 _____ C:\Users\Tereza\Desktop\Word.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002503 _____ C:\Users\Tereza\Desktop\PowerPoint.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002466 _____ C:\Users\Tereza\Desktop\Excel.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002460 _____ C:\Users\Tereza\Desktop\Outlook.lnk
2020-10-04 20:20 - 2020-10-04 20:20 - 000687104 _____ C:\Users\Tereza\Downloads\A Cv. 4, Rozvaha, VZZ, CF, studenti,2020-21.ppt
2020-10-04 20:20 - 2020-10-04 20:20 - 000173260 _____ C:\Users\Tereza\Downloads\A cv. 5 - 6, Náklady, 2020-2021, studenti.pptx
2020-10-04 20:10 - 2020-10-04 20:10 - 000223855 _____ C:\Users\Tereza\Downloads\3. cvičení.pdf
2020-10-04 20:10 - 2020-10-04 20:10 - 000215593 _____ C:\Users\Tereza\Downloads\4. cvičení.pdf
2020-10-04 19:27 - 2020-10-04 19:28 - 072523626 _____ C:\Users\Tereza\Downloads\the-business-2-0-intermediate-b1.pdf
2020-10-02 09:36 - 2020-10-02 09:37 - 000000000 ____D C:\rsit
2020-10-02 09:36 - 2020-10-02 09:36 - 001222144 _____ C:\Users\Tereza\Downloads\RSITx64.exe
2020-10-02 09:36 - 2020-10-02 09:36 - 000000000 ____D C:\Program Files\trend micro
2020-10-02 09:08 - 2020-10-07 00:04 - 000002236 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-10-02 09:07 - 2020-10-07 08:59 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-02 09:07 - 2020-10-02 09:07 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-02 09:07 - 2020-10-02 09:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-10-02 09:07 - 2020-10-02 09:07 - 000000000 ____D C:\Program Files\CCleaner
2020-10-02 09:06 - 2020-10-02 09:06 - 029069888 _____ (Piriform Software Ltd) C:\Users\Tereza\Downloads\ccsetup572.exe
2020-10-01 16:25 - 2020-10-01 16:25 - 000000000 ____D C:\Program Files (x86)\World of Warcraft Cataclysm 4.3.4
2020-10-01 16:17 - 2020-10-01 16:17 - 008193829 _____ C:\Users\Tereza\Downloads\WoW434_mini.zip
2020-10-01 13:18 - 2020-10-01 13:18 - 000534354 _____ C:\Users\Tereza\Downloads\c_1-4.pdf
2020-10-01 09:00 - 2020-10-01 09:01 - 409574760 _____ C:\Users\Tereza\Downloads\Handouts_2cv_řešení_videa.pptx
2020-09-30 23:49 - 2020-09-30 23:49 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2020-09-30 23:49 - 2020-09-10 18:14 - 000905528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2020-09-30 23:49 - 2020-09-10 18:14 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2020-09-30 10:56 - 2020-10-01 12:02 - 000672768 _____ C:\Users\Tereza\Downloads\A1 Cv. 3, Rozvaha-studenti, 2020-2021 (1).ppt
2020-09-29 13:09 - 2020-09-29 13:09 - 000035329 _____ C:\Users\Tereza\Downloads\Zadost_o_ubytovaci_stipendium.pdf
2020-09-29 10:37 - 2020-09-29 10:37 - 000446982 _____ C:\Users\Tereza\Downloads\PrednaskaExcelPrazdna.xlsx
2020-09-29 08:42 - 2020-09-29 08:42 - 000621818 _____ C:\Users\Tereza\Downloads\Cvičení-20200929.zip
2020-09-29 08:38 - 2020-09-29 08:38 - 000804864 _____ C:\Users\Tereza\Downloads\A1 Cv. 3, Rozvaha-studenti, 2020-2021.ppt
2020-09-29 08:31 - 2020-09-29 08:31 - 069513199 _____ C:\Users\Tereza\Downloads\Př-2.mkv
2020-09-29 08:29 - 2020-09-29 08:29 - 000445964 _____ C:\Users\Tereza\Downloads\Cvičení (návody a další samostatná práce)-20200929.zip
2020-09-23 23:12 - 2020-10-06 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-09-23 23:12 - 2020-09-23 23:12 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002504 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2020-09-23 19:32 - 2020-09-23 19:33 - 006228616 _____ (Microsoft Corporation) C:\Users\Tereza\Downloads\OfficeSetup.exe
2020-09-22 20:22 - 2020-09-22 21:04 - 000000000 ____D C:\World of Warcraft - 3.3.5a (12340) - enUS (No Install)_CZhra_CZquesty
2020-09-21 22:11 - 2020-09-21 22:11 - 002749688 _____ C:\Users\Tereza\Downloads\cvicebnice-matematika-a-gencev-ekf-vsb.pdf
2020-09-21 20:49 - 2020-09-21 20:49 - 000285730 _____ C:\Users\Tereza\Downloads\c_1-1.pdf
2020-09-20 22:26 - 2020-09-20 22:26 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 005503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 004309504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 002494752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 002315472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002138264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001491160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001247744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001151808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001108384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001039872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000928768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000748384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000738072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000709632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000682752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFSR.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000666288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000420168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSE.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOVER.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUTILITY.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSERES.dll
2020-09-20 22:25 - 2020-09-20 22:26 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 032928920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 022642176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 007761408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 007284736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 006304256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 005907456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 005767744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004605952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004538368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 003501568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 002259680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001459200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001421392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 001326592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001218424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000783496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000671560 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000299072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnscmmc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnscmmc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhuxgraphics.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tar.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NAPCRYPT.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tar.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wslapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106n.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd101.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-09-20 22:24 - 2020-09-20 22:24 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 006069360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005848848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005041152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005003832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 003740456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002585032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002565120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001957552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001750016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001704960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001698816 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001664696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001653792 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001369088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001307464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001246208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001141048 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001124864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001054160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001009200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000892728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000867328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000844088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000823752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000768504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000675032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000667312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000628400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000572208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000544336 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000466352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000356160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000285056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000260408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000224064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000165184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000146640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000090944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000089344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000063296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDJPN.DLL
2020-09-20 22:24 - 2020-09-20 22:24 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106n.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd101.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 009926456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 007910152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007845080 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007582768 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007271232 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 006170624 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 005284328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 004048384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003805696 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 003547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003371176 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003265024 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003136000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002772616 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002711552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002697536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002483712 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002454904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002260824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002090280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001930752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001670144 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 001485824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001480520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 001399216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001260752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001170960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001008952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000944680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000893104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000858928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000716304 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000661832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-09-20 22:23 - 2020-09-20 22:23 - 000460192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000372536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000363128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000273208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000254776 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000213824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000205640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000146248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000079576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000066872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000057888 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000047008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-09-20 22:22 - 2020-09-20 22:23 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 003714048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 002291712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001942016 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001784832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001767424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001746232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000981320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000978232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000555320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000250680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000224072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000208712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000200008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapistub.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000142152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe
2020-09-20 21:41 - 2020-08-15 07:25 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-09-20 21:41 - 2020-08-15 07:15 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-09-20 21:31 - 2020-09-20 21:42 - 000242698 _____ C:\Users\Tereza\Desktop\odstoupeni-od-smlouvy.pdf
2020-09-12 20:46 - 2020-09-12 20:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-2380088464-113028033-3958389239-1001
2020-09-10 16:07 - 2020-09-10 16:07 - 000157252 _____ C:\Users\Tereza\Downloads\2020_2021_UVOD DO STUDIA.pdf
2020-09-07 15:40 - 2020-09-07 15:40 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-09-07 15:40 - 2020-09-07 15:40 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2020-09-07 15:40 - 2020-09-07 15:40 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2020-09-07 15:40 - 2020-09-07 15:40 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2020-09-07 15:40 - 2020-09-07 15:40 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2020-09-07 15:40 - 2020-09-07 15:40 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-09-07 15:40 - 2020-09-07 15:40 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-09-07 15:39 - 2020-09-07 15:39 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-09-07 15:39 - 2020-09-07 15:39 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-09-07 15:39 - 2020-09-07 15:39 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2020-09-07 15:39 - 2020-09-07 15:39 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2020-09-07 15:39 - 2020-09-07 15:39 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin
2020-09-07 15:39 - 2020-09-07 15:39 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin
2020-09-07 15:38 - 2020-09-07 15:38 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-09-07 15:38 - 2020-09-07 15:38 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-09-07 15:38 - 2020-09-07 15:38 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-09-07 15:38 - 2020-09-07 15:38 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-09-07 15:37 - 2020-09-07 15:37 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-09-07 15:37 - 2020-09-07 15:37 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-09-07 15:37 - 2020-09-07 15:37 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-09-07 15:37 - 2020-09-07 15:37 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-09-07 15:37 - 2020-09-07 15:37 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-09-07 15:36 - 2020-09-07 15:36 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-09-07 15:36 - 2020-09-07 15:36 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll
2020-09-07 15:36 - 2020-09-07 15:36 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll
2020-09-07 15:36 - 2020-09-07 15:36 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2020-09-07 15:36 - 2020-09-07 15:36 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
2020-09-07 15:14 - 2020-09-07 15:10 - 000217392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2020-09-07 15:14 - 2020-09-07 15:10 - 000175256 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2020-09-07 15:14 - 2020-09-07 15:09 - 000339080 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-09-07 15:11 - 2020-09-07 15:11 - 000002002 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG TuneUp.lnk
2020-09-07 15:11 - 2020-09-07 15:11 - 000001990 _____ C:\Users\Public\Desktop\AVG TuneUp.lnk
2020-09-07 15:01 - 2020-09-07 15:01 - 000000000 ____D C:\Program Files\AVG
2020-09-07 15:01 - 2020-09-02 14:20 - 000129424 _____ (AVG Technologies) C:\WINDOWS\system32\icarus_rvrt.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-07 09:48 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-07 09:35 - 2015-07-03 23:06 - 000000000 ____D C:\Users\Tereza\AppData\Local\Spotify
2020-10-07 09:25 - 2019-11-04 21:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-10-07 09:21 - 2019-11-04 21:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-07 09:16 - 2019-11-04 21:55 - 000003668 _____ C:\WINDOWS\system32\Tasks\AVG EUpdate Task
2020-10-07 09:04 - 2019-11-04 21:35 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-07 09:04 - 2019-03-19 13:55 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-07 09:04 - 2019-03-19 13:55 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-07 09:04 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-10-07 09:02 - 2016-04-02 21:28 - 000000000 ____D C:\ProgramData\Avg
2020-10-07 09:01 - 2015-07-03 23:06 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\Spotify
2020-10-07 09:00 - 2019-11-04 21:55 - 000004278 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-10-07 08:59 - 2015-06-30 10:36 - 000000000 __SHD C:\Users\Tereza\IntelGraphicsProfiles
2020-10-07 08:57 - 2019-11-04 21:55 - 000003986 _____ C:\WINDOWS\system32\Tasks\AVG Secure VPN Update
2020-10-07 08:57 - 2015-09-24 19:08 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-10-07 08:56 - 2019-11-04 21:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-07 00:05 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-10-07 00:04 - 2020-08-05 01:21 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-07 00:04 - 2020-08-05 01:21 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-07 00:04 - 2019-11-04 21:55 - 000004940 _____ C:\WINDOWS\system32\Tasks\Prdather Configuration
2020-10-07 00:04 - 2019-11-04 21:55 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-10-07 00:04 - 2019-11-04 21:55 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2380088464-113028033-3958389239-1001
2020-10-07 00:04 - 2019-11-04 21:55 - 000002814 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-tereza.blahova@outlook.cz
2020-10-07 00:04 - 2019-11-04 21:55 - 000002750 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2380088464-113028033-3958389239-1001
2020-10-07 00:04 - 2019-11-04 21:55 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-10-07 00:04 - 2019-11-04 21:55 - 000002318 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2380088464-113028033-3958389239-500
2020-10-07 00:04 - 2019-11-04 21:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-10-06 22:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-06 22:37 - 2018-05-20 23:45 - 000000000 ____D C:\Users\Tereza\AppData\Local\PlaceholderTileLogoFolder
2020-10-06 22:25 - 2019-10-06 23:30 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-10-06 22:07 - 2018-09-13 20:09 - 000000000 ____D C:\Users\Tereza\AppData\Local\CrashDumps
2020-10-06 16:06 - 2015-02-12 10:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-10-06 15:48 - 2015-07-01 13:05 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\vlc
2020-10-05 13:10 - 2018-02-12 22:56 - 000000000 ____D C:\Users\Tereza\AppData\Local\Packages
2020-10-04 23:48 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-04 21:06 - 2020-02-13 10:26 - 000000000 ____D C:\Users\Tereza\AppData\Local\SquirrelTemp
2020-10-03 10:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-03 10:03 - 2020-08-05 01:22 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-03 10:03 - 2020-08-05 01:22 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-02 09:16 - 2017-01-31 15:25 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\DAEMON Tools Lite
2020-10-02 09:14 - 2020-01-17 04:16 - 000000000 ____D C:\WINDOWS\Minidump
2020-10-01 12:44 - 2015-08-24 10:47 - 000000000 ____D C:\Users\Tereza\AppData\Local\ElevatedDiagnostics
2020-10-01 12:30 - 2019-11-04 21:23 - 000000000 ____D C:\Users\Tereza
2020-09-29 20:24 - 2019-07-04 13:28 - 000000000 ____D C:\Users\Tereza\Desktop\filmy
2020-09-27 12:41 - 2015-07-01 13:29 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-09-24 08:31 - 2020-04-21 12:25 - 000517648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2020-09-24 08:29 - 2019-11-04 21:12 - 000466688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-23 23:29 - 2015-09-13 20:21 - 000000000 ____D C:\Users\Tereza\Desktop\school
2020-09-23 23:27 - 2019-10-30 16:37 - 000000000 ____D C:\Users\Tereza\Desktop\logika
2020-09-23 19:45 - 2015-06-30 11:00 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-09-21 19:27 - 2018-02-13 18:08 - 000000000 ___RD C:\Users\Tereza\3D Objects
2020-09-21 19:27 - 2015-07-01 02:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-09-20 22:48 - 2015-07-03 17:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-20 22:37 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-09-20 22:37 - 2015-07-03 17:52 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-20 22:22 - 2019-11-04 21:31 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-09-08 18:42 - 2019-11-04 21:23 - 000002414 _____ C:\Users\Tereza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-09-08 18:42 - 2016-05-16 18:04 - 000000000 ___RD C:\Users\Tereza\OneDrive - Stredni skola KOSTKA s.r.o
2020-09-08 10:25 - 2017-04-24 20:54 - 000326488 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2020-09-07 18:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ServiceState
2020-09-07 18:50 - 2016-09-04 12:18 - 000000000 ____D C:\Users\Tereza\AppData\Local\ConnectedDevicesPlatform
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-09-07 15:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-09-07 15:52 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2020-09-07 15:17 - 2020-01-17 22:27 - 000000000 ____D C:\Users\Tereza\AppData\Local\Opera Software
2020-09-07 15:14 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-09-07 15:11 - 2019-11-04 21:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2020-09-07 15:10 - 2019-02-23 22:50 - 000195712 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2020-09-07 15:10 - 2019-02-23 22:50 - 000061056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2020-09-07 15:10 - 2018-10-15 13:16 - 000042832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2020-09-07 15:10 - 2017-04-24 20:54 - 000469944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2020-09-07 15:10 - 2017-04-24 20:54 - 000109336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2020-09-07 15:10 - 2017-04-24 20:54 - 000084912 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2020-09-07 15:08 - 2019-02-23 22:50 - 000235648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-09-07 15:08 - 2017-11-14 14:26 - 000206456 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2020-09-07 15:08 - 2017-04-24 20:54 - 000851664 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2020-09-07 15:07 - 2018-12-13 14:14 - 000000000 ____D C:\Users\Tereza\AppData\Local\D3DSCache
2020-09-07 15:01 - 2017-12-27 16:37 - 000000000 ____D C:\Program Files\Common Files\AVG
==================== Files in the root of some directories ========
2017-03-02 14:26 - 2017-03-02 14:26 - 000000000 _____ () C:\Program Files (x86)\metadata
2017-03-02 19:46 - 2017-03-02 19:46 - 000000040 _____ () C:\Program Files (x86)\settings.dat
2020-10-05 11:22 - 2020-10-05 11:22 - 000000124 _____ () C:\Users\Tereza\AppData\Roaming\debug.log
2018-10-01 19:51 - 2018-10-01 19:51 - 000000000 _____ () C:\Users\Tereza\AppData\Local\oobelibMkey.log
2016-04-19 11:31 - 2016-04-19 11:31 - 000000000 _____ () C:\Users\Tereza\AppData\Local\{43CC2DB6-C910-4B5B-9112-5E75706FB958}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Re: Preventivka
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-10-2020
Ran by Tereza (07-10-2020 10:08:53)
Running from C:\Users\Tereza\Desktop
Windows 10 Home Version 1903 18362.1082 (X64) (2019-11-04 19:57:04)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2380088464-113028033-3958389239-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2380088464-113028033-3958389239-503 - Limited - Disabled)
Guest (S-1-5-21-2380088464-113028033-3958389239-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2380088464-113028033-3958389239-1003 - Limited - Enabled)
Tereza (S-1-5-21-2380088464-113028033-3958389239-1001 - Administrator - Enabled) => C:\Users\Tereza
WDAGUtilityAccount (S-1-5-21-2380088464-113028033-3958389239-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 17.00 beta (HKLM-x32\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.216 - Adobe)
Adobe Premiere (HKLM\...\{C1CB876C-A08E-4692-B525-42848BD154D7}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
AlphaGo (HKLM-x32\...\{118B6258-BF13-47C9-8D46-B2A349196B5D}) (Version: 1.0.0 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{51639FCA-678F-4D71-8044-E16E3D49187F}) (Version: 1.0.7 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{97D2FBF4-72CF-4DD6-8DA8-26710BC7BE71}) (Version: 1.1.0 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{E1AF73C7-0C82-4D66-829E-16B29FBBF384}) (Version: 1.1.7 - AlphaGo) <==== ATTENTION
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 20.7.3140 - AVG Technologies)
AVG Secure VPN (HKLM\...\{078F51FA-D92F-419A-9E69-08BC59265F7E}_is1) (Version: 1.1.588.0 - AVG)
AVG TuneUp (HKLM\...\AVG TuneUp) (Version: 20.1.2071.396 - AVG)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.9.626 - AVG Technologies)
BikaQ Rss (HKLM-x32\...\{78A2D999-4673-4FCC-818E-57B0AF8F3B70}) (Version: 2.0.16 - BikaQ) <==== ATTENTION
CCleaner (HKLM\...\CCleaner) (Version: 5.72 - Piriform)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1152 - Disc Soft Ltd)
Dependency Package Update (HKLM\...\{0788641D-D31A-478D-BB34-C41564AE9F93}) (Version: 1.6.32.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.25.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Energy Manager (HKLM-x32\...\{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.20 - Lenovo) Hidden
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.20 - Lenovo)
FMW 1 (HKLM\...\{4CC5FB14-3F4D-4FA8-B921-00A9B40145C4}) (Version: 1.227.45 - AVG Technologies) Hidden
Gameforge Live 2.0.13 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.13 - Gameforge)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.2.0 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.121 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Harry Potter a Fénixův řád™ (HKLM-x32\...\{B69F28DF-CBB1-41B7-008A-210E4D0518FC}) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Language, Proof and Logic (HKLM-x32\...\{6BB2714B-397C-4135-91D5-137D07BC30A5}) (Version: 12.10 - The Openproof Project, CSLI, Stanford University)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.25.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10260 - Realtek Semiconductor Corp.)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Hidden
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.)
Lenovo Transition (HKLM\...\Lenovo Transition) (Version: 2.1.14.1221 - Lenovo)
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0001.00 - Lenovo Group Limited) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.13231.20262 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.68 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft OneDrive (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\OneDriveSetup.exe) (Version: 20.143.0716.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Teams) (Version: 1.3.00.26064 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.28.0 - Nikon Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.6 - Power Software Ltd)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7188 - Realtek Semiconductor Corp.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Spotify) (Version: 1.1.42.622.gbd112320 - Spotify AB)
Star Stable 2 (HKLM-x32\...\{6DD86DE9-1AE7-41B0-9326-1A90E32BAE88}) (Version: 1.00.0000 - Stabenfeldt)
Star Stable Online 2.4.0 (HKLM-x32\...\8c663ade-0de5-52b6-812d-f5cd25f943ac) (Version: 2.4.0 - Star Stable Entertainment AB)
Starshine 1.díl (HKLM-x32\...\{73B3C57B-3ED7-40DB-A554-32EB5D35F84E}) (Version: 1.00.000 - )
Starshine 2.díl (HKLM-x32\...\{2FA1102F-DE05-4E79-8CED-E5BAABFC2FEF}) (Version: 1.00.000 - )
Starshine 3.díl (HKLM-x32\...\{A7123032-A8DA-48AC-9F5D-0A3B14698375}) (Version: 1.00.000 - )
Starshine 4.díl (HKLM-x32\...\{C4ECF493-29C4-4CB7-903E-90C28F3D0C00}) (Version: 1.00.000 - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.34161 - Microsoft Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.2.2756 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Vegas Pro 13.0 (64-bit) (HKLM-x32\...\Vegas Pro 13.0 (64-bit)) (Version: 13.0 (64-bit) - Exµs ™)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Web Companion (HKLM-x32\...\{0632446b-f93c-4a7a-8966-e504d3742a3e}) (Version: 4.9.2159.4024 - Lavasoft)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.154 - McAfee, LLC)
Windows Driver Package - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
youndoo - Uninstall (HKLM-x32\...\{3A9A11F8-6F05-47EF-B1C3-87FBD42441D7}) (Version: - ) <==== ATTENTION
Packages:
=========
Camera Man -> C:\Program Files\WindowsApps\E0469640.CameraMan_1.0.1929.30229_x86__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-30] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.25.9091.0_x86__q4d96b2w5wcc2 [2020-06-30] (Evernote)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-09-16] (Facebook Inc)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa [2020-09-22] (Apple Inc.) [Startup Task]
KONICA MINOLTA Print Experience -> C:\Program Files\WindowsApps\KONICAMINOLTAINC.KONICAMINOLTAPrintExperience_1.4.0.4_neutral__s63fsn2sety0r [2020-03-30] (KONICA MINOLTA INC)
Lenovo Recommends -> C:\Program Files\WindowsApps\E0469640.LenovoRecommends_1.5.14.117_x64__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2019-04-01] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2009.18.0_x64__k1h2ywk1493x8 [2020-09-27] (LENOVO INC.)
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2019-04-01] (FilmOn TV Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.11.6020.0_x64__8wekyb3d8bbwe [2020-06-17] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-09-07] (Microsoft Studios) [MS Ad]
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-30] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Phone Companion -> C:\Program Files\WindowsApps\E0469640.DeviceCollaboration_2.0.0.9_x64__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Svátky pro Windows 8 -> C:\Program Files\WindowsApps\9AABFA2B.Svtky_1.3.0.0_x64__grzn081tst3he [2019-04-01] (bezysoftware s.r.o.)
The Weather Channel for Lenovo -> C:\Program Files\WindowsApps\Weather.TheWeatherChannelforLenovo_2015.1013.1.0_x64__t3yemqpq4kp7p [2019-04-01] (The Weather Channel.)
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-04] (Microsoft Corporation)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2019-04-01] (TripAdvisor LLC)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-04-01] (Twitter Inc.)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2019-04-01] (Zinio LLC)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\ChromeHTML: -> C:\Program Files (x86)\Antanna\Application\chrome.exe (Google Inc -> Google Inc.) <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{04271989-C4D2-71D3-CD68-494E6C3BF5A6} -> [OneDrive - Stredni skola KOSTKA s.r.o] => C:\Users\Tereza\OneDrive - Stredni skola KOSTKA s.r.o [2016-05-16 18:04]
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Tereza\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Tereza\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {48F04F78-DE45-11E6-8A81-64006A5CFC23} - C:\Users\Tereza\AppData\Roaming\Cligutainqerotain\Devaiedduberch.dll [148992 2017-01-31] () [File not signed] <==== ATTENTION
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Tereza\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Antanna\Application\chrome.exe (Google Inc.)
ShortcutWithArgument: C:\Users\Tereza\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2572d0ef8585eb3c\Google Chrome.lnk -> C:\Program Files (x86)\Antanna\Application\chrome.exe (Google Inc.) ->
==================== Loaded Modules (Whitelisted) =============
2016-11-28 15:20 - 2016-11-28 15:20 - 048920064 _____ () [File not signed] C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131525701610402108&GUID=6621E8EC-E6A9-4FD2-9567-5F33119CB5BB
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={F0C4A60E-4469-4376-826A-1A4CD60DBB78}&mid=8250873ba49847cf9a4b85a733dd65b4-4c2216fa3457d538c76b72bc8a0e159ff65bf34c&lang=cs&ds=ZEN&coid=avgtbdisZE&cmpid=0318tb&pr=fr&d=2017-05-09 12:21:38&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {ED02269F-0BD1-4EC1-9187-C39A12FDA95C} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-05-15] (AVG Netherlands B.V. -> AVG)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-10-02] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-05-15] (AVG Netherlands B.V. -> AVG)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-10-02] (McAfee, LLC -> McAfee, LLC)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\sharepoint.com -> hxxps://kostkaskola.sharepoint.com
IE trusted site: HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 15:25 - 2019-01-29 11:47 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Lenovo\FusionEngine;C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\QuickTime\QTSystem\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tereza\Desktop\loved\collage\original (4).jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartupApproved\Run: => ""
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0FE93CCE-0EF7-44B0-95B6-5785218839AF}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{1EAEC615-85AF-4C4E-AE9C-74E334C7C041}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{F3914568-15BC-4C15-A8CD-9A57F0B788FB}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{8794EE1C-C5B9-4799-96F6-D7A640A72C7A}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8C854486-491E-4798-AF05-E8F12B6D9772}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{D09FEC78-6988-4DD3-9E48-188314E1B1AA}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{0134EEF9-2780-4673-9E1A-F3CAE7BB2FFF}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{19DEE3B9-5A6D-4F0D-9B5E-038FCF020C65}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{48CA7A2B-03EF-413F-94B1-C2D2510B61AE}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FC9E618B-7C60-43FA-84EA-01D6C6864850}] => (Allow) C:\Program Files (x86)\Antanna\Application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [{B841FBC7-04BF-4E8F-8FDA-12CC8C0F436B}] => (Allow) C:\WINDOWS\explorer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D889C995-ADCD-4A6C-B875-76401F047FA5}] => (Allow) C:\WINDOWS\system32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{86EA0FE0-6E3E-4A54-BEFF-01C2980A63DB}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe (Gameforge 4D GmbH -> )
FirewallRules: [{65E4E080-CA1D-43AD-B926-E355D7A7F5EF}] => (Allow) C:\Users\Tereza\AppData\Roaming\uTorrent\uTorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{C31B188D-5ADE-418A-9E66-87B7FA14B96A}] => (Allow) C:\Users\Tereza\AppData\Roaming\uTorrent\uTorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{EB556B22-5B3F-41C2-8808-3D325D48BFE0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0CADCC02-D516-4FD3-9005-9C4EAD668BE8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B273E940-C01D-43E4-8BE8-8AFA29988281}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0305C2C3-519E-4006-A9CA-A1194592F3ED}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{06C71D49-2B06-4798-ABC2-31E9D82BA1E1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{15AEAAE5-DC6A-47F7-8BB1-AB98E8CE6C42}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{B88E4EDA-5F51-4ED1-A066-0FE8E2609F57}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{27987EB1-AA2A-4D46-9F29-79F21EE82042}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4F7E9582-42DC-4B6E-A851-37A170C91E33}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5410FF0C-98A7-4B3F-860A-D7F46D9AA31B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5ADB454A-D30F-4FE4-A7A3-81D64AE93266}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.63\opera.exe => No File
FirewallRules: [{E3101E10-D567-48BA-BBD8-EADAE5B694BB}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.104\opera.exe => No File
FirewallRules: [{7F08428C-C0CE-47C1-8D57-42D1DED2DDDB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{40E9EE48-1AFA-4356-BD08-1C97919E91B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{693C5ED7-FBA1-4F7A-B3BC-864F17442BFD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0A6C28E7-4409-4540-8A51-A32B7C78496D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B3BE4F51-B9C5-47C5-84B9-84E963905BB6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A5846C20-C4D4-4EC1-B1C0-F088FD1CF123}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A46E1523-74EA-4104-AE96-D547AF8EBCF3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F36DF6D8-5CAE-4D0A-9079-8DC70BEDFAD3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{887C0D10-00F1-4D1C-BF50-691DDBC22547}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6EA37137-81A7-4995-8772-637C29711FD3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{114409AF-6108-4896-9675-043E9A19371B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{13905A5C-CF4D-481A-A1D0-3E011A904902}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0EAA187A-B3B8-4EED-8B30-BC2A68F66AD5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9812521A-81EF-49E7-8B8D-4AC1E00BBD52}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
30-09-2020 20:29:00 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
Name: AVG TAP Adapter v3
Description: AVG TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: avgTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/07/2020 10:03:03 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 4.10.2020.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 31c8
Čas spuštění: 01d69c7bb11f13b2
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\Tereza\Desktop\FRST64.exe
ID hlášení: f64acfac-e738-4c23-aee0-4a7490916860
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Top level window is idle
Error: (10/07/2020 09:38:19 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3592,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/07/2020 09:33:06 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16332,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/07/2020 09:22:34 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15688,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/07/2020 09:20:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program YourPhone.exe verze 1.20091.84.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 2780
Čas spuštění: 01d69c776e7f6f0d
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20091.84.0_x64__8wekyb3d8bbwe\YourPhone.exe
ID hlášení: 4e1d6fd6-faee-48f7-98d8-5c0d23edefe7
Úplný název balíčku s chybou: Microsoft.YourPhone_1.20091.84.0_x64__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Quiesce
Error: (10/07/2020 09:17:19 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3660,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/07/2020 08:59:24 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe, identifikátor PID: 1028, identifikátor PID ProfSvc: 1776.
Error: (10/07/2020 08:59:24 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe, identifikátor PID: 1028, identifikátor PID ProfSvc: 1776.
System errors:
=============
Error: (10/07/2020 09:37:38 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Error: (10/07/2020 09:32:24 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.248.
Počítač s IP adresou 192.168.0.220 nepovolil získání názvu
tímto počítačem.
Error: (10/07/2020 09:29:32 AM) (Source: DCOM) (EventID: 10010) (User: TERKA-PC)
Description: Server Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/07/2020 09:27:14 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.248.
Počítač s IP adresou 192.168.0.220 nepovolil získání názvu
tímto počítačem.
Error: (10/07/2020 09:22:03 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.248.
Počítač s IP adresou 192.168.0.220 nepovolil získání názvu
tímto počítačem.
Error: (10/07/2020 09:22:03 AM) (Source: BROWSER) (EventID: 8009) (User: )
Description: Prohledávač se nemůže povýšit na hlavní prohledávač. Za hlavní prohledávač
se aktuálně považuje počítač DRED-PC.
Error: (10/07/2020 09:16:59 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Pomocník pro přihlášení pomocí účtu Microsoft neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (10/07/2020 09:16:59 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Pomocník pro přihlášení pomocí účtu Microsoft bylo dosaženo časového limitu (30000 ms).
Windows Defender:
===================================
Date: 2020-02-29 15:56:20.914
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {A6C49F06-1383-4389-876B-7D6687014B5E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-02-21 19:58:33.252
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-21 19:57:36.229
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-21 19:56:17.951
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: Terka-PC\Tereza
Název procesu: C:\Program Files (x86)\PowerISO\PowerISO.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-20 17:05:30.479
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {81A28959-5268-4A20-8995-02222265E764}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-03-17 02:24:30.928
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.926
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.925
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.901
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.897
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
CodeIntegrity:
===================================
Date: 2020-10-07 09:34:28.173
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:34:25.817
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:34:25.112
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:27:55.222
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:27:49.571
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:25:52.908
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:25:45.637
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:25:15.527
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO A3CN31WW 07/25/2014
Motherboard: LENOVO Lenovo Flex 2-14
Processor: Intel(R) Pentium(R) CPU N3530 @ 2.16GHz
Percentage of memory in use: 75%
Total physical RAM: 3979.49 MB
Available physical RAM: 963.54 MB
Total Virtual: 6795.49 MB
Available Virtual: 2029.13 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:424.27 GB) (Free:177.21 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:9.7 GB) NTFS
\\?\Volume{f14a7205-da0a-48c3-aff6-bc8fd08afb78}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.67 GB) NTFS
\\?\Volume{492deddb-3ab3-4df7-b1fd-8ba949b22fcb}\ (PBR_DRV) (Fixed) (Total:14.16 GB) (Free:4.58 GB) NTFS
\\?\Volume{fbfac45b-043f-4cd4-a8e3-9afad87181f2}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 05905877)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by Tereza (07-10-2020 10:08:53)
Running from C:\Users\Tereza\Desktop
Windows 10 Home Version 1903 18362.1082 (X64) (2019-11-04 19:57:04)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2380088464-113028033-3958389239-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2380088464-113028033-3958389239-503 - Limited - Disabled)
Guest (S-1-5-21-2380088464-113028033-3958389239-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2380088464-113028033-3958389239-1003 - Limited - Enabled)
Tereza (S-1-5-21-2380088464-113028033-3958389239-1001 - Administrator - Enabled) => C:\Users\Tereza
WDAGUtilityAccount (S-1-5-21-2380088464-113028033-3958389239-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 17.00 beta (HKLM-x32\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.216 - Adobe)
Adobe Premiere (HKLM\...\{C1CB876C-A08E-4692-B525-42848BD154D7}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
AlphaGo (HKLM-x32\...\{118B6258-BF13-47C9-8D46-B2A349196B5D}) (Version: 1.0.0 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{51639FCA-678F-4D71-8044-E16E3D49187F}) (Version: 1.0.7 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{97D2FBF4-72CF-4DD6-8DA8-26710BC7BE71}) (Version: 1.1.0 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{E1AF73C7-0C82-4D66-829E-16B29FBBF384}) (Version: 1.1.7 - AlphaGo) <==== ATTENTION
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 20.7.3140 - AVG Technologies)
AVG Secure VPN (HKLM\...\{078F51FA-D92F-419A-9E69-08BC59265F7E}_is1) (Version: 1.1.588.0 - AVG)
AVG TuneUp (HKLM\...\AVG TuneUp) (Version: 20.1.2071.396 - AVG)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.9.626 - AVG Technologies)
BikaQ Rss (HKLM-x32\...\{78A2D999-4673-4FCC-818E-57B0AF8F3B70}) (Version: 2.0.16 - BikaQ) <==== ATTENTION
CCleaner (HKLM\...\CCleaner) (Version: 5.72 - Piriform)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1152 - Disc Soft Ltd)
Dependency Package Update (HKLM\...\{0788641D-D31A-478D-BB34-C41564AE9F93}) (Version: 1.6.32.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.25.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Energy Manager (HKLM-x32\...\{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.20 - Lenovo) Hidden
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.20 - Lenovo)
FMW 1 (HKLM\...\{4CC5FB14-3F4D-4FA8-B921-00A9B40145C4}) (Version: 1.227.45 - AVG Technologies) Hidden
Gameforge Live 2.0.13 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.13 - Gameforge)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.2.0 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.121 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Harry Potter a Fénixův řád™ (HKLM-x32\...\{B69F28DF-CBB1-41B7-008A-210E4D0518FC}) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Language, Proof and Logic (HKLM-x32\...\{6BB2714B-397C-4135-91D5-137D07BC30A5}) (Version: 12.10 - The Openproof Project, CSLI, Stanford University)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.25.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10260 - Realtek Semiconductor Corp.)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Hidden
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.)
Lenovo Transition (HKLM\...\Lenovo Transition) (Version: 2.1.14.1221 - Lenovo)
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0001.00 - Lenovo Group Limited) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.13231.20262 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.68 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft OneDrive (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\OneDriveSetup.exe) (Version: 20.143.0716.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Teams) (Version: 1.3.00.26064 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.28.0 - Nikon Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.6 - Power Software Ltd)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7188 - Realtek Semiconductor Corp.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Spotify) (Version: 1.1.42.622.gbd112320 - Spotify AB)
Star Stable 2 (HKLM-x32\...\{6DD86DE9-1AE7-41B0-9326-1A90E32BAE88}) (Version: 1.00.0000 - Stabenfeldt)
Star Stable Online 2.4.0 (HKLM-x32\...\8c663ade-0de5-52b6-812d-f5cd25f943ac) (Version: 2.4.0 - Star Stable Entertainment AB)
Starshine 1.díl (HKLM-x32\...\{73B3C57B-3ED7-40DB-A554-32EB5D35F84E}) (Version: 1.00.000 - )
Starshine 2.díl (HKLM-x32\...\{2FA1102F-DE05-4E79-8CED-E5BAABFC2FEF}) (Version: 1.00.000 - )
Starshine 3.díl (HKLM-x32\...\{A7123032-A8DA-48AC-9F5D-0A3B14698375}) (Version: 1.00.000 - )
Starshine 4.díl (HKLM-x32\...\{C4ECF493-29C4-4CB7-903E-90C28F3D0C00}) (Version: 1.00.000 - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.34161 - Microsoft Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.2.2756 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Vegas Pro 13.0 (64-bit) (HKLM-x32\...\Vegas Pro 13.0 (64-bit)) (Version: 13.0 (64-bit) - Exµs ™)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Web Companion (HKLM-x32\...\{0632446b-f93c-4a7a-8966-e504d3742a3e}) (Version: 4.9.2159.4024 - Lavasoft)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.154 - McAfee, LLC)
Windows Driver Package - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
youndoo - Uninstall (HKLM-x32\...\{3A9A11F8-6F05-47EF-B1C3-87FBD42441D7}) (Version: - ) <==== ATTENTION
Packages:
=========
Camera Man -> C:\Program Files\WindowsApps\E0469640.CameraMan_1.0.1929.30229_x86__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-30] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.25.9091.0_x86__q4d96b2w5wcc2 [2020-06-30] (Evernote)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-09-16] (Facebook Inc)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa [2020-09-22] (Apple Inc.) [Startup Task]
KONICA MINOLTA Print Experience -> C:\Program Files\WindowsApps\KONICAMINOLTAINC.KONICAMINOLTAPrintExperience_1.4.0.4_neutral__s63fsn2sety0r [2020-03-30] (KONICA MINOLTA INC)
Lenovo Recommends -> C:\Program Files\WindowsApps\E0469640.LenovoRecommends_1.5.14.117_x64__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2019-04-01] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2009.18.0_x64__k1h2ywk1493x8 [2020-09-27] (LENOVO INC.)
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2019-04-01] (FilmOn TV Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.11.6020.0_x64__8wekyb3d8bbwe [2020-06-17] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-09-07] (Microsoft Studios) [MS Ad]
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-30] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Phone Companion -> C:\Program Files\WindowsApps\E0469640.DeviceCollaboration_2.0.0.9_x64__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Svátky pro Windows 8 -> C:\Program Files\WindowsApps\9AABFA2B.Svtky_1.3.0.0_x64__grzn081tst3he [2019-04-01] (bezysoftware s.r.o.)
The Weather Channel for Lenovo -> C:\Program Files\WindowsApps\Weather.TheWeatherChannelforLenovo_2015.1013.1.0_x64__t3yemqpq4kp7p [2019-04-01] (The Weather Channel.)
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-04] (Microsoft Corporation)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2019-04-01] (TripAdvisor LLC)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-04-01] (Twitter Inc.)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2019-04-01] (Zinio LLC)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\ChromeHTML: -> C:\Program Files (x86)\Antanna\Application\chrome.exe (Google Inc -> Google Inc.) <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{04271989-C4D2-71D3-CD68-494E6C3BF5A6} -> [OneDrive - Stredni skola KOSTKA s.r.o] => C:\Users\Tereza\OneDrive - Stredni skola KOSTKA s.r.o [2016-05-16 18:04]
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Tereza\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Tereza\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {48F04F78-DE45-11E6-8A81-64006A5CFC23} - C:\Users\Tereza\AppData\Roaming\Cligutainqerotain\Devaiedduberch.dll [148992 2017-01-31] () [File not signed] <==== ATTENTION
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Tereza\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Antanna\Application\chrome.exe (Google Inc.)
ShortcutWithArgument: C:\Users\Tereza\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2572d0ef8585eb3c\Google Chrome.lnk -> C:\Program Files (x86)\Antanna\Application\chrome.exe (Google Inc.) ->
==================== Loaded Modules (Whitelisted) =============
2016-11-28 15:20 - 2016-11-28 15:20 - 048920064 _____ () [File not signed] C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131525701610402108&GUID=6621E8EC-E6A9-4FD2-9567-5F33119CB5BB
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={F0C4A60E-4469-4376-826A-1A4CD60DBB78}&mid=8250873ba49847cf9a4b85a733dd65b4-4c2216fa3457d538c76b72bc8a0e159ff65bf34c&lang=cs&ds=ZEN&coid=avgtbdisZE&cmpid=0318tb&pr=fr&d=2017-05-09 12:21:38&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {ED02269F-0BD1-4EC1-9187-C39A12FDA95C} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-05-15] (AVG Netherlands B.V. -> AVG)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-10-02] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-05-15] (AVG Netherlands B.V. -> AVG)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-10-02] (McAfee, LLC -> McAfee, LLC)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\sharepoint.com -> hxxps://kostkaskola.sharepoint.com
IE trusted site: HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 15:25 - 2019-01-29 11:47 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Lenovo\FusionEngine;C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\QuickTime\QTSystem\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tereza\Desktop\loved\collage\original (4).jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartupApproved\Run: => ""
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0FE93CCE-0EF7-44B0-95B6-5785218839AF}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{1EAEC615-85AF-4C4E-AE9C-74E334C7C041}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{F3914568-15BC-4C15-A8CD-9A57F0B788FB}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{8794EE1C-C5B9-4799-96F6-D7A640A72C7A}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8C854486-491E-4798-AF05-E8F12B6D9772}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{D09FEC78-6988-4DD3-9E48-188314E1B1AA}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{0134EEF9-2780-4673-9E1A-F3CAE7BB2FFF}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{19DEE3B9-5A6D-4F0D-9B5E-038FCF020C65}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{48CA7A2B-03EF-413F-94B1-C2D2510B61AE}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FC9E618B-7C60-43FA-84EA-01D6C6864850}] => (Allow) C:\Program Files (x86)\Antanna\Application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [{B841FBC7-04BF-4E8F-8FDA-12CC8C0F436B}] => (Allow) C:\WINDOWS\explorer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D889C995-ADCD-4A6C-B875-76401F047FA5}] => (Allow) C:\WINDOWS\system32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{86EA0FE0-6E3E-4A54-BEFF-01C2980A63DB}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe (Gameforge 4D GmbH -> )
FirewallRules: [{65E4E080-CA1D-43AD-B926-E355D7A7F5EF}] => (Allow) C:\Users\Tereza\AppData\Roaming\uTorrent\uTorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{C31B188D-5ADE-418A-9E66-87B7FA14B96A}] => (Allow) C:\Users\Tereza\AppData\Roaming\uTorrent\uTorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{EB556B22-5B3F-41C2-8808-3D325D48BFE0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0CADCC02-D516-4FD3-9005-9C4EAD668BE8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B273E940-C01D-43E4-8BE8-8AFA29988281}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0305C2C3-519E-4006-A9CA-A1194592F3ED}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{06C71D49-2B06-4798-ABC2-31E9D82BA1E1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{15AEAAE5-DC6A-47F7-8BB1-AB98E8CE6C42}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{B88E4EDA-5F51-4ED1-A066-0FE8E2609F57}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{27987EB1-AA2A-4D46-9F29-79F21EE82042}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4F7E9582-42DC-4B6E-A851-37A170C91E33}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5410FF0C-98A7-4B3F-860A-D7F46D9AA31B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5ADB454A-D30F-4FE4-A7A3-81D64AE93266}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.63\opera.exe => No File
FirewallRules: [{E3101E10-D567-48BA-BBD8-EADAE5B694BB}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.104\opera.exe => No File
FirewallRules: [{7F08428C-C0CE-47C1-8D57-42D1DED2DDDB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{40E9EE48-1AFA-4356-BD08-1C97919E91B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{693C5ED7-FBA1-4F7A-B3BC-864F17442BFD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0A6C28E7-4409-4540-8A51-A32B7C78496D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B3BE4F51-B9C5-47C5-84B9-84E963905BB6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A5846C20-C4D4-4EC1-B1C0-F088FD1CF123}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A46E1523-74EA-4104-AE96-D547AF8EBCF3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F36DF6D8-5CAE-4D0A-9079-8DC70BEDFAD3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{887C0D10-00F1-4D1C-BF50-691DDBC22547}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6EA37137-81A7-4995-8772-637C29711FD3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{114409AF-6108-4896-9675-043E9A19371B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{13905A5C-CF4D-481A-A1D0-3E011A904902}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0EAA187A-B3B8-4EED-8B30-BC2A68F66AD5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9812521A-81EF-49E7-8B8D-4AC1E00BBD52}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
30-09-2020 20:29:00 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
Name: AVG TAP Adapter v3
Description: AVG TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: avgTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/07/2020 10:03:03 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 4.10.2020.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 31c8
Čas spuštění: 01d69c7bb11f13b2
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\Tereza\Desktop\FRST64.exe
ID hlášení: f64acfac-e738-4c23-aee0-4a7490916860
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Top level window is idle
Error: (10/07/2020 09:38:19 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3592,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/07/2020 09:33:06 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16332,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/07/2020 09:22:34 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15688,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/07/2020 09:20:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program YourPhone.exe verze 1.20091.84.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 2780
Čas spuštění: 01d69c776e7f6f0d
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20091.84.0_x64__8wekyb3d8bbwe\YourPhone.exe
ID hlášení: 4e1d6fd6-faee-48f7-98d8-5c0d23edefe7
Úplný název balíčku s chybou: Microsoft.YourPhone_1.20091.84.0_x64__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Quiesce
Error: (10/07/2020 09:17:19 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3660,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/07/2020 08:59:24 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe, identifikátor PID: 1028, identifikátor PID ProfSvc: 1776.
Error: (10/07/2020 08:59:24 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe, identifikátor PID: 1028, identifikátor PID ProfSvc: 1776.
System errors:
=============
Error: (10/07/2020 09:37:38 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Error: (10/07/2020 09:32:24 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.248.
Počítač s IP adresou 192.168.0.220 nepovolil získání názvu
tímto počítačem.
Error: (10/07/2020 09:29:32 AM) (Source: DCOM) (EventID: 10010) (User: TERKA-PC)
Description: Server Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/07/2020 09:27:14 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.248.
Počítač s IP adresou 192.168.0.220 nepovolil získání názvu
tímto počítačem.
Error: (10/07/2020 09:22:03 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.248.
Počítač s IP adresou 192.168.0.220 nepovolil získání názvu
tímto počítačem.
Error: (10/07/2020 09:22:03 AM) (Source: BROWSER) (EventID: 8009) (User: )
Description: Prohledávač se nemůže povýšit na hlavní prohledávač. Za hlavní prohledávač
se aktuálně považuje počítač DRED-PC.
Error: (10/07/2020 09:16:59 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Pomocník pro přihlášení pomocí účtu Microsoft neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (10/07/2020 09:16:59 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Pomocník pro přihlášení pomocí účtu Microsoft bylo dosaženo časového limitu (30000 ms).
Windows Defender:
===================================
Date: 2020-02-29 15:56:20.914
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {A6C49F06-1383-4389-876B-7D6687014B5E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-02-21 19:58:33.252
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-21 19:57:36.229
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-21 19:56:17.951
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: Terka-PC\Tereza
Název procesu: C:\Program Files (x86)\PowerISO\PowerISO.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-20 17:05:30.479
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {81A28959-5268-4A20-8995-02222265E764}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-03-17 02:24:30.928
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.926
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.925
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.901
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.897
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
CodeIntegrity:
===================================
Date: 2020-10-07 09:34:28.173
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:34:25.817
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:34:25.112
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:27:55.222
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:27:49.571
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:25:52.908
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:25:45.637
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-07 09:25:15.527
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO A3CN31WW 07/25/2014
Motherboard: LENOVO Lenovo Flex 2-14
Processor: Intel(R) Pentium(R) CPU N3530 @ 2.16GHz
Percentage of memory in use: 75%
Total physical RAM: 3979.49 MB
Available physical RAM: 963.54 MB
Total Virtual: 6795.49 MB
Available Virtual: 2029.13 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:424.27 GB) (Free:177.21 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:9.7 GB) NTFS
\\?\Volume{f14a7205-da0a-48c3-aff6-bc8fd08afb78}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.67 GB) NTFS
\\?\Volume{492deddb-3ab3-4df7-b1fd-8ba949b22fcb}\ (PBR_DRV) (Fixed) (Total:14.16 GB) (Free:4.58 GB) NTFS
\\?\Volume{fbfac45b-043f-4cd4-a8e3-9afad87181f2}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 05905877)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 119395
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivka
Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivka
# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-08-2020
# Duration: 00:01:07
# OS: Windows 10 Home
# Cleaned: 78
# Failed: 2
***** [ Services ] *****
Deleted WCAssistantService
Deleted WtuSystemSupport
Deleted vToolbarUpdater40.3.8
***** [ Folders ] *****
Deleted C:\Program Files (x86)\58FD2952_JUMPEASY
Deleted C:\Program Files (x86)\5903A829_JUMPEASY
Deleted C:\Program Files (x86)\AlphaGo
Deleted C:\Program Files (x86)\Antanna
Deleted C:\Program Files (x86)\BikaQRss
Deleted C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted C:\Program Files (x86)\Lavasoft\Web Companion
Deleted C:\Program Files (x86)\avg web tuneup
Deleted C:\Program Files (x86)\deskapp
Deleted C:\Program Files (x86)\reports
Deleted C:\Program Files\Common Files\AVG Secure Search
Deleted C:\Program Files\avg web tuneup
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted C:\ProgramData\Lavasoft\Web Companion
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
Deleted C:\ProgramData\avg web tuneup
Deleted C:\Users\Tereza\AppData\Local\Antanna
Deleted C:\Users\Tereza\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_SIQ0LWF3TZGXP2KHFKLLYBK3IDTBEHNG
Deleted C:\Users\Tereza\AppData\Local\Packages\windows_ie_ac_001\AC\AVG Web TuneUp
Deleted C:\Users\Tereza\AppData\Local\avg web tuneup
Deleted C:\Users\Tereza\AppData\Roaming\Firefox
Deleted C:\Users\Tereza\AppData\Roaming\Kyubey
Deleted C:\Users\Tereza\AppData\Roaming\Lavasoft\Web Companion
Deleted C:\Users\Tereza\AppData\Roaming\WinSAPSvc
***** [ Files ] *****
Deleted C:\Program Files (x86)\settings.dat
Deleted C:\Users\Public\Documents\report.dat
Deleted C:\Users\Public\Documents\temp.dat
Deleted C:\Users\Tereza\Downloads\REGCLEANER.EXE
Deleted C:\Windows\System32\log\iSafeKrnlCall.log
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\2B11E1DF07B921912B3B90C20FAFB5F3
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{993F5746-4C15-42BC-99C1-064A1764271B}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\csastats
Deleted HKLM\SOFTWARE\2B11E1DF07B921912B3B90C20FAFB5F3
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{FC9E618B-7C60-43FA-84EA-01D6C6864850}
Deleted HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Classes\WtuServer.WtuServerObj
Deleted HKLM\Software\Classes\WtuServer.WtuServerObj.1
Deleted HKLM\Software\InterSect Alliance
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Search Page
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-2380088464-113028033-3958389239-1001\Components\E4DFFE2B890D5484D965ED57EB3B9531
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG Tuneup
Deleted HKLM\Software\Wow6432Node\2B11E1DF07B921912B3B90C20FAFB5F3
Deleted HKLM\Software\Wow6432Node\AVG Tuneup
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0632446b-f93c-4a7a-8966-e504d3742a3e}|DisplayIcon
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0632446b-f93c-4a7a-8966-e504d3742a3e}|DisplayName
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0632446b-f93c-4a7a-8966-e504d3742a3e}|UninstallString
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Wow6432Node\\Google\Chrome\NativeMessagingHosts\avgsh
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows NT\CurrentVersion\Svchost|BIT
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{118B6258-BF13-47C9-8D46-B2A349196B5D}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{51639FCA-678F-4D71-8044-E16E3D49187F}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{78A2D999-4673-4FCC-818E-57B0AF8F3B70}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{97D2FBF4-72CF-4DD6-8DA8-26710BC7BE71}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{E1AF73C7-0C82-4D66-829E-16B29FBBF384}
Deleted HKLM\Software\Wow6432Node\ecb`nl
Deleted HKLM\Software\ecb`nl
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\.DEFAULT\Software\ecb`nl
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\S-1-5-18\Software\ecb`nl
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
Deleted ourluckysites
Not Deleted http://www.ourluckysites.com/?type=hp&t ... XXW763LL91
Not Deleted http://www.ourluckysites.com/?type=hp&t ... XXW763LL91
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [10829 octets] - [08/10/2020 14:34:24]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-08-2020
# Duration: 00:01:07
# OS: Windows 10 Home
# Cleaned: 78
# Failed: 2
***** [ Services ] *****
Deleted WCAssistantService
Deleted WtuSystemSupport
Deleted vToolbarUpdater40.3.8
***** [ Folders ] *****
Deleted C:\Program Files (x86)\58FD2952_JUMPEASY
Deleted C:\Program Files (x86)\5903A829_JUMPEASY
Deleted C:\Program Files (x86)\AlphaGo
Deleted C:\Program Files (x86)\Antanna
Deleted C:\Program Files (x86)\BikaQRss
Deleted C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted C:\Program Files (x86)\Lavasoft\Web Companion
Deleted C:\Program Files (x86)\avg web tuneup
Deleted C:\Program Files (x86)\deskapp
Deleted C:\Program Files (x86)\reports
Deleted C:\Program Files\Common Files\AVG Secure Search
Deleted C:\Program Files\avg web tuneup
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted C:\ProgramData\Lavasoft\Web Companion
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
Deleted C:\ProgramData\avg web tuneup
Deleted C:\Users\Tereza\AppData\Local\Antanna
Deleted C:\Users\Tereza\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_SIQ0LWF3TZGXP2KHFKLLYBK3IDTBEHNG
Deleted C:\Users\Tereza\AppData\Local\Packages\windows_ie_ac_001\AC\AVG Web TuneUp
Deleted C:\Users\Tereza\AppData\Local\avg web tuneup
Deleted C:\Users\Tereza\AppData\Roaming\Firefox
Deleted C:\Users\Tereza\AppData\Roaming\Kyubey
Deleted C:\Users\Tereza\AppData\Roaming\Lavasoft\Web Companion
Deleted C:\Users\Tereza\AppData\Roaming\WinSAPSvc
***** [ Files ] *****
Deleted C:\Program Files (x86)\settings.dat
Deleted C:\Users\Public\Documents\report.dat
Deleted C:\Users\Public\Documents\temp.dat
Deleted C:\Users\Tereza\Downloads\REGCLEANER.EXE
Deleted C:\Windows\System32\log\iSafeKrnlCall.log
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\2B11E1DF07B921912B3B90C20FAFB5F3
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{993F5746-4C15-42BC-99C1-064A1764271B}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\csastats
Deleted HKLM\SOFTWARE\2B11E1DF07B921912B3B90C20FAFB5F3
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{FC9E618B-7C60-43FA-84EA-01D6C6864850}
Deleted HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Classes\WtuServer.WtuServerObj
Deleted HKLM\Software\Classes\WtuServer.WtuServerObj.1
Deleted HKLM\Software\InterSect Alliance
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Search Page
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-2380088464-113028033-3958389239-1001\Components\E4DFFE2B890D5484D965ED57EB3B9531
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG Tuneup
Deleted HKLM\Software\Wow6432Node\2B11E1DF07B921912B3B90C20FAFB5F3
Deleted HKLM\Software\Wow6432Node\AVG Tuneup
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0632446b-f93c-4a7a-8966-e504d3742a3e}|DisplayIcon
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0632446b-f93c-4a7a-8966-e504d3742a3e}|DisplayName
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0632446b-f93c-4a7a-8966-e504d3742a3e}|UninstallString
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Wow6432Node\\Google\Chrome\NativeMessagingHosts\avgsh
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows NT\CurrentVersion\Svchost|BIT
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{118B6258-BF13-47C9-8D46-B2A349196B5D}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{51639FCA-678F-4D71-8044-E16E3D49187F}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{78A2D999-4673-4FCC-818E-57B0AF8F3B70}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{97D2FBF4-72CF-4DD6-8DA8-26710BC7BE71}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{E1AF73C7-0C82-4D66-829E-16B29FBBF384}
Deleted HKLM\Software\Wow6432Node\ecb`nl
Deleted HKLM\Software\ecb`nl
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\.DEFAULT\Software\ecb`nl
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\S-1-5-18\Software\ecb`nl
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
Deleted ourluckysites
Not Deleted http://www.ourluckysites.com/?type=hp&t ... XXW763LL91
Not Deleted http://www.ourluckysites.com/?type=hp&t ... XXW763LL91
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [10829 octets] - [08/10/2020 14:34:24]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 119395
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivka
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivka
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-10-2020
Ran by Tereza (administrator) on TERKA-PC (LENOVO INVALID) (09-10-2020 12:47:15)
Running from C:\Users\Tereza\Desktop
Loaded Profiles: Tereza
Platform: Windows 10 Home Version 1903 18362.1082 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\Antanna\Application\chrome.exe" "%1"
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe <2>
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Atheros) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\afwServ.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupUI.exe <2>
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <7>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Huawei Software Technologies Co., LTD. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe
(Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\Lenovo Transition\TransitionServer.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo (Beijing) Limited -> Lenovo) C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
(LENOVO -> LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Tereza\AppData\Local\Microsoft\Teams\current\Teams.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12009.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20082.10421.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Power Software Limited -> Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5175568 2016-09-03] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [AutoStartTransition] => C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe [294672 2015-02-12] (Lenovo (Beijing) Limited -> )
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10841584 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [156808 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [2614840 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
HKLM-x32\...\Run: [vProt] => "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [84008696 2019-12-08] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [413888 2020-02-09] (Power Software Limited -> Power Software Ltd)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [Spotify] => C:\Users\Tereza\AppData\Roaming\Spotify\Spotify.exe [23412456 2020-09-24] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [30870200 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Tereza\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-10-04] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: E - "E:\PXRoute.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: H - "H:\setup.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: {ee7d36a9-615d-11ea-83c5-d0534960e580} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Providers\8gfhpci5: C:\Program Files (x86)\Prdather Configuration\local64spl.dll <==== ATTENTION
HKLM\...\Print\Monitors\4700PSeries PCL6 Language Monitor: C:\WINDOWS\system32\KOBJZJ_L.dll [17408 2017-03-20] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.75\Installer\chrmstp.exe [2020-10-09] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-02-26] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-02-26] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG Secure VPN.lnk [2017-05-09]
ShortcutTarget: AVG Secure VPN.lnk -> C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
BootExecute: autocheck autochk * icarus_rvrt.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {020439DA-609C-4250-840F-B64AD6F15C9D} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {093349ED-761F-43AD-A4D5-38E4F31E5B32} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [33536 2014-05-22] (LENOVO -> )
Task: {0B8BF5AC-2C8A-49D5-B9F6-A14E1D662619} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {0BA61507-8735-4DF2-8060-CA5FEE850F5B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {0F3F5609-D8F2-47D9-A814-147092A4E067} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {15447A40-1D5D-48BB-9074-B9374FDF1B26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {15E7687A-C3B1-4866-A323-88DC7610FE71} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {168F1968-A5C3-4DC7-8402-2FE0F00B4757} - System32\Tasks\{375C4476-8551-416E-933C-CA5F3DD86441} => C:\windows\system32\pcalua.exe -a C:\Users\Tereza\Desktop\hp2\system\Game.exe -d E:\crack -c E:\crack\Game.exe
Task: {1BB22087-3123-4C22-BF6A-3B9FDD73D0F8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {2420CFD3-C575-4407-89BF-C2F6D00AE7AE} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-tereza.blahova@outlook.cz => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {26619C70-DEA2-46B9-8744-653845D30585} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2A8069F8-9EDD-4C63-86F8-3D2780DCFAF8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {32D30842-D8A2-4B73-AE45-9EC50921937D} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-20] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {3475D498-8B77-470B-BB25-4354830FF69D} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {366ACB17-F67E-4F11-9407-29264323EB24} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [332800 2020-09-20] (Microsoft Windows -> Microsoft Corporation)
Task: {3D869F6F-F593-41E4-B7F9-CA7603C7FD93} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b313ccf52e91 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {47D224C4-B29B-445E-919B-98736C2152F6} - System32\Tasks\GoogleUpdateTaskMachineCore1d0b313cccfe52d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {5016C5F7-37D2-4DD5-85C6-588DB437E7E2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4011448 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {57E47C81-D872-46EC-BEF8-E317D6307E5D} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {609545C4-98B1-4687-92F5-7DC25595CDDF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {665C2D5D-1A87-4CF0-89C9-754F5CFFCC4B} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [332800 2020-09-20] (Microsoft Windows -> Microsoft Corporation)
Task: {685D5CF0-FC92-4717-AECE-97CFDD6DD98C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {699CA3EC-35C4-47A1-A8D9-6FA3C6D3369C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A8CB1F5-68A8-4DBF-9B6F-70ECDCE57F8A} - \WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001 -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6F6B3A0D-C74E-44BE-AC77-5777FAD7914E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {71648C36-98B4-46B1-B1CA-DE1AAD3DA09B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {747BFD47-DCB9-4925-81B9-4065F33751CB} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {77501555-8F1E-45CB-9B2E-F82D01CA3CEB} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {78CA6D58-0264-44C5-A043-9B570A178783} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {7BE7F0B0-2FDF-4007-BF60-E778A7A9179B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {85456F8F-BD42-470E-86E9-AA8EF967008D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8890B5E7-1F43-4BC9-8037-6269CAEB3993} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17184 2014-05-30] (LENOVO -> Lenovo)
Task: {8E12D3A5-7D71-4043-BB6A-97B225DFDDC6} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b31319f66a18 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {9533572D-500F-499A-9E4F-D9BA64CF76F3} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [336952 2020-02-06] (Adobe Inc. -> Adobe)
Task: {974CB924-9CC4-4F73-A137-F3D57D1845BD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {97BD4E19-08A1-493A-827A-550DE54ECF79} - System32\Tasks\Prdather Configuration => C:\Program Files (x86)\Daletictain\cuuph.exe [1016752 2017-01-31] (Glarysoft LTD -> Glarysoft Ltd)
Task: {994591F7-2272-4139-B9B8-5B6138124AED} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {9CC9F1AA-B5F8-4B00-BC2A-46F292C4DF03} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4011448 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4FB906B-5704-4635-98C7-DC1CD4190593} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A6279069-2816-466D-B083-CABB1B1C19A3} - System32\Tasks\AVG EUpdate Task => C:\Program Files (x86)\AVG\Setup\avgsetupx.exe [4072504 2018-06-22] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
Task: {A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {AD5ADFCA-8780-4DFC-8428-3C21DEA12A83} - System32\Tasks\AVG\AVG TuneUp Update BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [2812656 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {AE1AA9BE-D8BB-4A1F-BA5A-A10D2CDED6CE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B00B279E-A535-47A8-B7F7-0E5F4C0E3521} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {B1504F69-8600-4346-BEAA-1FB1116B2B82} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B1D08757-3EAC-4C74-9399-ED733EEBF2B9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B4BB6857-698E-4C07-9C20-0A5D7566996C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {B5403EEE-9266-46DB-AF19-9095BEEB3DB2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {BCC8B832-3390-4217-96C9-BC531822083D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C656CAE4-42D4-4599-BF0D-67A6158B8960} - System32\Tasks\{5140B943-8CC7-4365-8048-11FD9D0E6A0B} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Harry Potter a Tajemná komnata\system\Game.exe" -d C:\PROGRA~2\EAGAME~1\HARRYP~1
Task: {C6C0A02F-4DEF-41AF-82A7-DA138B1D892D} - System32\Tasks\{4499C407-8224-4494-8BD9-F74401EDD645} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\GameforgeLive\Games\CZE_ces\4Story\unins000.exe"
Task: {CB731DEB-96F9-46CE-8210-AA53CF903B3C} - System32\Tasks\AVG Secure VPN Update => C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe [1071512 2020-10-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF9A11E0-F0BE-4502-8DCE-14EAF08519D5} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {DBECC934-51C2-4BC0-A5D4-561D0717F9E4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {DC0E7D48-9301-449A-B6E2-7B84BA2B47B9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DD158EA7-E62F-4827-BECE-4CD6ECFEFE81} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {DF348033-6E46-448E-91BC-24AFA900877E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E62DD62F-5E35-4848-BEB7-993431981AFD} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3897992 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {EB5AB23A-FA27-4BB5-9A28-D724BE084B55} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {FA4A9457-3FFD-4B05-AFD4-FCED57C081A1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1153928 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC3B72B9-76A6-40A4-9E02-0CCA494A4D15} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {FCA11D92-B76A-4F22-8294-3741D316F8F0} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [5151368 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0b31319f66a18.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4df83cd8-099b-42eb-a952-84fbbf807bed}: [DhcpNameServer] 172.168.130.2
Tcpip\..\Interfaces\{5b6c1477-195b-4d12-9e05-430d94c004e7}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{748dd2bd-d8c1-4e14-ae81-8db328008947}: [NameServer] 77.234.40.79
Edge:
======
Edge Profile: C:\Users\Tereza\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-09]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-10-06] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-30] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-30] (Adobe Systems Incorporated -> )
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-10-09] <==== ATTENTION
CHR Notifications: ChromeDefaultData -> hxxps://www.fotor.com; hxxps://www.myguidequeenstown.com; hxxps://www.slevomat.cz
CHR HomePage: ChromeDefaultData -> hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91"
CHR Extension: (Prezentace) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-31]
CHR Extension: (Dokumenty) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-31]
CHR Extension: (Disk Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-12]
CHR Extension: (YouTube) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-31]
CHR Extension: (uBlock Origin) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-10-08]
CHR Extension: (Tabulky) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-06]
CHR Extension: (Gmail) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-28]
CHR Extension: (Chrome Media Router) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-07]
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default [2020-10-02]
CHR Extension: (Prezentace Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-30]
CHR Extension: (Dokumenty Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-30]
CHR Extension: (Disk Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Tabulky Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AdBlock) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-01-31]
CHR Extension: (Shopicks) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\iadhdfmpolpbdekneiekahmibhcbgjcj [2017-01-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-30]
CHR Extension: (Chrome Media Router) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-17]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn]
CHR HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Antanna\Application\chrome.exe <==== ATTENTION
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [336952 2020-02-06] (Adobe Inc. -> Adobe)
S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [358432 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [1097752 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [7871424 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [110608 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [12978896 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8943496 2020-09-24] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-04-11] (Huawei Software Technologies Co., LTD. -> )
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-22] (LENOVO -> LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [953544 2020-10-02] (McAfee, LLC -> McAfee, LLC)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [6053312 2016-08-22] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 SecureVpn; C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe [7025728 2020-10-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\NisSrv.exe [3285864 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MsMpEng.exe [103168 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ymc; C:\ProgramData\LenovoTransition\Server\x64\ymc.exe [33040 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-26] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206456 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [235648 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [195712 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61056 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16320 2020-07-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42832 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175256 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [517648 2020-09-24] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109336 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84912 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851664 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469944 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [217392 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgTap; C:\WINDOWS\System32\drivers\avgTap.sys [54888 2016-12-09] (AVG Technologies CZ, s.r.o. -> The OpenVPN Project)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [326488 2020-09-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 phidmice; C:\WINDOWS\system32\DRIVERS\phidmice.sys [33048 2016-07-11] (WDKTestCert idd,131110062695071623 -> )
S3 pmouself; C:\WINDOWS\system32\DRIVERS\pmouself.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 pvendrlf; C:\WINDOWS\system32\DRIVERS\pvendrlf.sys [15032 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [28624 2020-02-18] () [File not signed]
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Apple, Inc.) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376544 2020-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-09 12:42 - 2020-10-09 12:42 - 109483117 _____ C:\Users\Tereza\Downloads\OneDrive_2020-10-09.zip
2020-10-09 12:04 - 2020-10-09 12:05 - 026247073 _____ C:\Users\Tereza\Downloads\Psychologie.zip
2020-10-08 14:31 - 2020-10-08 14:31 - 008414384 _____ (Malwarebytes) C:\Users\Tereza\Desktop\adwcleaner_8.0.7.exe
2020-10-08 13:52 - 2020-10-08 14:08 - 070353223 _____ C:\Users\Tereza\Downloads\video (20).mp4
2020-10-07 09:51 - 2020-10-09 12:50 - 000041700 _____ C:\Users\Tereza\Desktop\FRST.txt
2020-10-07 09:51 - 2020-10-07 10:13 - 000055608 _____ C:\Users\Tereza\Desktop\Addition.txt
2020-10-07 09:30 - 2020-10-09 12:49 - 000000000 ____D C:\FRST
2020-10-07 09:26 - 2020-10-07 09:26 - 002299392 _____ (Farbar) C:\Users\Tereza\Desktop\FRST64.exe
2020-10-06 12:50 - 2020-10-06 12:50 - 000223855 _____ C:\Users\Tereza\Downloads\3. cvičení (1).pdf
2020-10-06 12:50 - 2020-10-06 12:50 - 000215593 _____ C:\Users\Tereza\Downloads\4. cvičení (1).pdf
2020-10-06 12:49 - 2020-10-06 12:50 - 127700129 _____ C:\Users\Tereza\Downloads\Handouts_2cv_řešení_roušky.pptx
2020-10-05 12:36 - 2020-10-05 12:36 - 000052457 _____ C:\Users\Tereza\Downloads\Word_procvičování-20201005.zip
2020-10-05 09:42 - 2020-10-05 09:43 - 000733497 _____ C:\Users\Tereza\Downloads\eduroam-cs_CZ.kml
2020-10-04 21:29 - 2020-10-04 21:31 - 253991975 _____ C:\Users\Tereza\Downloads\video.mp4
2020-10-04 21:06 - 2020-10-04 21:06 - 000002419 _____ C:\Users\Tereza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-10-04 21:06 - 2020-10-04 21:06 - 000002411 _____ C:\Users\Tereza\Desktop\Microsoft Teams.lnk
2020-10-04 21:00 - 2020-10-04 21:01 - 101284632 _____ (Microsoft Corporation) C:\Users\Tereza\Downloads\Teams_windows_x64.exe
2020-10-04 20:58 - 2020-10-04 20:58 - 000002467 _____ C:\Users\Tereza\Desktop\Access.lnk
2020-10-04 20:58 - 2020-10-04 20:58 - 000002446 _____ C:\Users\Tereza\Desktop\OneNote.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002504 _____ C:\Users\Tereza\Desktop\Word.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002503 _____ C:\Users\Tereza\Desktop\PowerPoint.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002466 _____ C:\Users\Tereza\Desktop\Excel.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002460 _____ C:\Users\Tereza\Desktop\Outlook.lnk
2020-10-04 20:20 - 2020-10-04 20:20 - 000687104 _____ C:\Users\Tereza\Downloads\A Cv. 4, Rozvaha, VZZ, CF, studenti,2020-21.ppt
2020-10-04 20:20 - 2020-10-04 20:20 - 000173260 _____ C:\Users\Tereza\Downloads\A cv. 5 - 6, Náklady, 2020-2021, studenti.pptx
2020-10-04 20:10 - 2020-10-04 20:10 - 000223855 _____ C:\Users\Tereza\Downloads\3. cvičení.pdf
2020-10-04 20:10 - 2020-10-04 20:10 - 000215593 _____ C:\Users\Tereza\Downloads\4. cvičení.pdf
2020-10-04 19:27 - 2020-10-04 19:28 - 072523626 _____ C:\Users\Tereza\Downloads\the-business-2-0-intermediate-b1.pdf
2020-10-02 09:36 - 2020-10-02 09:37 - 000000000 ____D C:\rsit
2020-10-02 09:36 - 2020-10-02 09:36 - 001222144 _____ C:\Users\Tereza\Downloads\RSITx64.exe
2020-10-02 09:36 - 2020-10-02 09:36 - 000000000 ____D C:\Program Files\trend micro
2020-10-02 09:08 - 2020-10-08 20:19 - 000002236 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-10-02 09:07 - 2020-10-08 20:19 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-02 09:07 - 2020-10-02 09:07 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-02 09:07 - 2020-10-02 09:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-10-02 09:07 - 2020-10-02 09:07 - 000000000 ____D C:\Program Files\CCleaner
2020-10-02 09:06 - 2020-10-02 09:06 - 029069888 _____ (Piriform Software Ltd) C:\Users\Tereza\Downloads\ccsetup572.exe
2020-10-01 16:25 - 2020-10-01 16:25 - 000000000 ____D C:\Program Files (x86)\World of Warcraft Cataclysm 4.3.4
2020-10-01 16:17 - 2020-10-01 16:17 - 008193829 _____ C:\Users\Tereza\Downloads\WoW434_mini.zip
2020-10-01 13:18 - 2020-10-01 13:18 - 000534354 _____ C:\Users\Tereza\Downloads\c_1-4.pdf
2020-10-01 09:00 - 2020-10-01 09:01 - 409574760 _____ C:\Users\Tereza\Downloads\Handouts_2cv_řešení_videa.pptx
2020-09-30 23:49 - 2020-09-30 23:49 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2020-09-30 23:49 - 2020-09-10 18:14 - 000905528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2020-09-30 23:49 - 2020-09-10 18:14 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2020-09-30 10:56 - 2020-10-01 12:02 - 000672768 _____ C:\Users\Tereza\Downloads\A1 Cv. 3, Rozvaha-studenti, 2020-2021 (1).ppt
2020-09-29 13:09 - 2020-09-29 13:09 - 000035329 _____ C:\Users\Tereza\Downloads\Zadost_o_ubytovaci_stipendium.pdf
2020-09-29 10:37 - 2020-09-29 10:37 - 000446982 _____ C:\Users\Tereza\Downloads\PrednaskaExcelPrazdna.xlsx
2020-09-29 08:42 - 2020-09-29 08:42 - 000621818 _____ C:\Users\Tereza\Downloads\Cvičení-20200929.zip
2020-09-29 08:38 - 2020-09-29 08:38 - 000804864 _____ C:\Users\Tereza\Downloads\A1 Cv. 3, Rozvaha-studenti, 2020-2021.ppt
2020-09-29 08:31 - 2020-09-29 08:31 - 069513199 _____ C:\Users\Tereza\Downloads\Př-2.mkv
2020-09-29 08:29 - 2020-09-29 08:29 - 000445964 _____ C:\Users\Tereza\Downloads\Cvičení (návody a další samostatná práce)-20200929.zip
2020-09-23 23:12 - 2020-10-06 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-09-23 23:12 - 2020-09-23 23:12 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002504 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2020-09-23 19:32 - 2020-09-23 19:33 - 006228616 _____ (Microsoft Corporation) C:\Users\Tereza\Downloads\OfficeSetup.exe
2020-09-22 20:22 - 2020-09-22 21:04 - 000000000 ____D C:\World of Warcraft - 3.3.5a (12340) - enUS (No Install)_CZhra_CZquesty
2020-09-21 22:11 - 2020-09-21 22:11 - 002749688 _____ C:\Users\Tereza\Downloads\cvicebnice-matematika-a-gencev-ekf-vsb.pdf
2020-09-21 20:49 - 2020-09-21 20:49 - 000285730 _____ C:\Users\Tereza\Downloads\c_1-1.pdf
2020-09-20 22:26 - 2020-09-20 22:26 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 005503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 004309504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 002494752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 002315472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002138264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001491160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001247744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001151808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001108384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001039872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000928768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000748384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000738072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000709632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000682752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFSR.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000666288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000420168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSE.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOVER.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUTILITY.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSERES.dll
2020-09-20 22:25 - 2020-09-20 22:26 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 032928920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 022642176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 007761408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 007284736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 006304256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 005907456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 005767744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004605952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004538368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 003501568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 002259680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001459200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001421392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 001326592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001218424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000783496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000671560 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000299072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnscmmc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnscmmc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhuxgraphics.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tar.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NAPCRYPT.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tar.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wslapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106n.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd101.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-09-20 22:24 - 2020-09-20 22:24 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 006069360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005848848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005041152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005003832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 003740456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002585032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002565120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001957552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001750016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001704960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001698816 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001664696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001653792 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001369088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001307464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001246208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001141048 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001124864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001054160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001009200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000892728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000867328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000844088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000823752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000768504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000675032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000667312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000628400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000572208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000544336 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000466352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000356160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000285056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000260408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000224064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000165184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000146640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000090944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000089344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000063296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDJPN.DLL
2020-09-20 22:24 - 2020-09-20 22:24 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106n.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd101.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 009926456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 007910152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007845080 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007582768 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007271232 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 006170624 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 005284328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 004048384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003805696 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 003547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003371176 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003265024 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003136000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002772616 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002711552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002697536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002483712 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002454904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002260824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002090280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001930752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001670144 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 001485824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001480520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 001399216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001260752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001170960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001008952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000944680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000893104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000858928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000716304 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000661832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-09-20 22:23 - 2020-09-20 22:23 - 000460192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000372536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000363128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000273208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000254776 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000213824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000205640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000146248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000079576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000066872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000057888 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000047008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-09-20 22:22 - 2020-09-20 22:23 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 003714048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 002291712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001942016 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001784832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001767424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001746232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000981320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000978232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000555320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000250680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000224072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000208712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000200008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapistub.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000142152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe
2020-09-20 21:41 - 2020-08-15 07:25 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-09-20 21:41 - 2020-08-15 07:15 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-09-20 21:31 - 2020-09-20 21:42 - 000242698 _____ C:\Users\Tereza\Desktop\odstoupeni-od-smlouvy.pdf
2020-09-12 20:46 - 2020-09-12 20:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-2380088464-113028033-3958389239-1001
2020-09-10 16:07 - 2020-09-10 16:07 - 000157252 _____ C:\Users\Tereza\Downloads\2020_2021_UVOD DO STUDIA.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-09 12:51 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-09 12:49 - 2018-02-12 22:56 - 000000000 ____D C:\Users\Tereza\AppData\Local\Packages
2020-10-09 12:27 - 2016-04-02 21:28 - 000000000 ____D C:\ProgramData\Avg
2020-10-09 12:27 - 2016-04-02 21:28 - 000000000 ____D C:\Program Files (x86)\AVG
2020-10-09 12:26 - 2019-11-04 21:55 - 000003668 _____ C:\WINDOWS\system32\Tasks\AVG EUpdate Task
2020-10-09 12:16 - 2015-06-30 11:00 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-10-09 11:56 - 2019-11-04 21:55 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-10-09 11:51 - 2019-11-04 21:55 - 000004278 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-10-09 11:49 - 2019-11-04 21:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-09 00:15 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-09 00:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-09 00:14 - 2020-08-05 01:22 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-09 00:14 - 2020-08-05 01:22 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-08 20:19 - 2020-08-05 01:21 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-08 20:19 - 2020-08-05 01:21 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-08 20:19 - 2019-11-04 21:55 - 000004940 _____ C:\WINDOWS\system32\Tasks\Prdather Configuration
2020-10-08 20:19 - 2019-11-04 21:55 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-10-08 20:19 - 2019-11-04 21:55 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2380088464-113028033-3958389239-1001
2020-10-08 20:19 - 2019-11-04 21:55 - 000002814 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-tereza.blahova@outlook.cz
2020-10-08 20:19 - 2019-11-04 21:55 - 000002750 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2380088464-113028033-3958389239-1001
2020-10-08 20:19 - 2019-11-04 21:55 - 000002318 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2380088464-113028033-3958389239-500
2020-10-08 20:19 - 2019-11-04 21:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-10-08 15:21 - 2019-11-04 21:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-10-08 15:20 - 2019-10-06 23:30 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-10-08 15:19 - 2015-07-03 23:06 - 000000000 ____D C:\Users\Tereza\AppData\Local\Spotify
2020-10-08 15:18 - 2015-07-03 23:06 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\Spotify
2020-10-08 15:14 - 2015-06-30 10:36 - 000000000 __SHD C:\Users\Tereza\IntelGraphicsProfiles
2020-10-08 14:42 - 2019-11-04 21:35 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-08 14:42 - 2019-03-19 13:55 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-08 14:42 - 2019-03-19 13:55 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-08 14:42 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-10-08 14:38 - 2019-11-04 21:55 - 000003986 _____ C:\WINDOWS\system32\Tasks\AVG Secure VPN Update
2020-10-08 14:38 - 2019-11-04 21:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-08 14:38 - 2015-09-24 19:08 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-10-08 14:37 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-10-08 14:36 - 2020-01-17 22:24 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\Lavasoft
2020-10-08 14:36 - 2020-01-17 22:24 - 000000000 ____D C:\Users\Tereza\AppData\Local\Lavasoft
2020-10-08 14:36 - 2020-01-17 22:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2020-10-08 14:36 - 2020-01-17 22:24 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2020-10-08 14:36 - 2020-01-17 22:23 - 000000000 ____D C:\ProgramData\Lavasoft
2020-10-08 14:34 - 2017-02-17 21:32 - 000000000 ____D C:\WINDOWS\system32\log
2020-10-08 14:34 - 2017-01-31 15:52 - 000000000 ____D C:\AdwCleaner
2020-10-08 13:55 - 2015-07-01 13:05 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\vlc
2020-10-06 22:37 - 2018-05-20 23:45 - 000000000 ____D C:\Users\Tereza\AppData\Local\PlaceholderTileLogoFolder
2020-10-06 22:07 - 2018-09-13 20:09 - 000000000 ____D C:\Users\Tereza\AppData\Local\CrashDumps
2020-10-06 16:06 - 2015-02-12 10:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-10-04 21:06 - 2020-02-13 10:26 - 000000000 ____D C:\Users\Tereza\AppData\Local\SquirrelTemp
2020-10-03 10:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-02 09:16 - 2017-01-31 15:25 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\DAEMON Tools Lite
2020-10-02 09:14 - 2020-01-17 04:16 - 000000000 ____D C:\WINDOWS\Minidump
2020-10-01 12:44 - 2015-08-24 10:47 - 000000000 ____D C:\Users\Tereza\AppData\Local\ElevatedDiagnostics
2020-10-01 12:30 - 2019-11-04 21:23 - 000000000 ____D C:\Users\Tereza
2020-09-29 20:24 - 2019-07-04 13:28 - 000000000 ____D C:\Users\Tereza\Desktop\filmy
2020-09-27 12:41 - 2015-07-01 13:29 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-09-24 08:31 - 2020-04-21 12:25 - 000517648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2020-09-24 08:29 - 2019-11-04 21:12 - 000466688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-23 23:29 - 2015-09-13 20:21 - 000000000 ____D C:\Users\Tereza\Desktop\school
2020-09-23 23:27 - 2019-10-30 16:37 - 000000000 ____D C:\Users\Tereza\Desktop\logika
2020-09-21 19:27 - 2018-02-13 18:08 - 000000000 ___RD C:\Users\Tereza\3D Objects
2020-09-21 19:27 - 2015-07-01 02:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-09-20 22:48 - 2015-07-03 17:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-20 22:37 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-09-20 22:37 - 2015-07-03 17:52 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-20 22:22 - 2019-11-04 21:31 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
==================== Files in the root of some directories ========
2017-03-02 14:26 - 2017-03-02 14:26 - 000000000 _____ () C:\Program Files (x86)\metadata
2020-10-05 11:22 - 2020-10-05 11:22 - 000000124 _____ () C:\Users\Tereza\AppData\Roaming\debug.log
2018-10-01 19:51 - 2018-10-01 19:51 - 000000000 _____ () C:\Users\Tereza\AppData\Local\oobelibMkey.log
2016-04-19 11:31 - 2016-04-19 11:31 - 000000000 _____ () C:\Users\Tereza\AppData\Local\{43CC2DB6-C910-4B5B-9112-5E75706FB958}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by Tereza (administrator) on TERKA-PC (LENOVO INVALID) (09-10-2020 12:47:15)
Running from C:\Users\Tereza\Desktop
Loaded Profiles: Tereza
Platform: Windows 10 Home Version 1903 18362.1082 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\Antanna\Application\chrome.exe" "%1"
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe <2>
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Atheros) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\afwServ.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupUI.exe <2>
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <7>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Huawei Software Technologies Co., LTD. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe
(Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\Lenovo Transition\TransitionServer.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo (Beijing) Limited -> Lenovo) C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
(LENOVO -> LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Tereza\AppData\Local\Microsoft\Teams\current\Teams.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12009.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20082.10421.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Power Software Limited -> Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5175568 2016-09-03] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [AutoStartTransition] => C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe [294672 2015-02-12] (Lenovo (Beijing) Limited -> )
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10841584 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [156808 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [2614840 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
HKLM-x32\...\Run: [vProt] => "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [84008696 2019-12-08] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [413888 2020-02-09] (Power Software Limited -> Power Software Ltd)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [Spotify] => C:\Users\Tereza\AppData\Roaming\Spotify\Spotify.exe [23412456 2020-09-24] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [30870200 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Tereza\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-10-04] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: E - "E:\PXRoute.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: H - "H:\setup.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: {ee7d36a9-615d-11ea-83c5-d0534960e580} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Providers\8gfhpci5: C:\Program Files (x86)\Prdather Configuration\local64spl.dll <==== ATTENTION
HKLM\...\Print\Monitors\4700PSeries PCL6 Language Monitor: C:\WINDOWS\system32\KOBJZJ_L.dll [17408 2017-03-20] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.75\Installer\chrmstp.exe [2020-10-09] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-02-26] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-02-26] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG Secure VPN.lnk [2017-05-09]
ShortcutTarget: AVG Secure VPN.lnk -> C:\Program Files (x86)\AVG\Secure VPN\Vpn.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
BootExecute: autocheck autochk * icarus_rvrt.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {020439DA-609C-4250-840F-B64AD6F15C9D} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {093349ED-761F-43AD-A4D5-38E4F31E5B32} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [33536 2014-05-22] (LENOVO -> )
Task: {0B8BF5AC-2C8A-49D5-B9F6-A14E1D662619} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {0BA61507-8735-4DF2-8060-CA5FEE850F5B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {0F3F5609-D8F2-47D9-A814-147092A4E067} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {15447A40-1D5D-48BB-9074-B9374FDF1B26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {15E7687A-C3B1-4866-A323-88DC7610FE71} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {168F1968-A5C3-4DC7-8402-2FE0F00B4757} - System32\Tasks\{375C4476-8551-416E-933C-CA5F3DD86441} => C:\windows\system32\pcalua.exe -a C:\Users\Tereza\Desktop\hp2\system\Game.exe -d E:\crack -c E:\crack\Game.exe
Task: {1BB22087-3123-4C22-BF6A-3B9FDD73D0F8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {2420CFD3-C575-4407-89BF-C2F6D00AE7AE} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-tereza.blahova@outlook.cz => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {26619C70-DEA2-46B9-8744-653845D30585} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2A8069F8-9EDD-4C63-86F8-3D2780DCFAF8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {32D30842-D8A2-4B73-AE45-9EC50921937D} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-20] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {3475D498-8B77-470B-BB25-4354830FF69D} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {366ACB17-F67E-4F11-9407-29264323EB24} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [332800 2020-09-20] (Microsoft Windows -> Microsoft Corporation)
Task: {3D869F6F-F593-41E4-B7F9-CA7603C7FD93} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b313ccf52e91 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {47D224C4-B29B-445E-919B-98736C2152F6} - System32\Tasks\GoogleUpdateTaskMachineCore1d0b313cccfe52d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {5016C5F7-37D2-4DD5-85C6-588DB437E7E2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4011448 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {57E47C81-D872-46EC-BEF8-E317D6307E5D} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {609545C4-98B1-4687-92F5-7DC25595CDDF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {665C2D5D-1A87-4CF0-89C9-754F5CFFCC4B} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [332800 2020-09-20] (Microsoft Windows -> Microsoft Corporation)
Task: {685D5CF0-FC92-4717-AECE-97CFDD6DD98C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {699CA3EC-35C4-47A1-A8D9-6FA3C6D3369C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A8CB1F5-68A8-4DBF-9B6F-70ECDCE57F8A} - \WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001 -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6F6B3A0D-C74E-44BE-AC77-5777FAD7914E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {71648C36-98B4-46B1-B1CA-DE1AAD3DA09B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {747BFD47-DCB9-4925-81B9-4065F33751CB} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {77501555-8F1E-45CB-9B2E-F82D01CA3CEB} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {78CA6D58-0264-44C5-A043-9B570A178783} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {7BE7F0B0-2FDF-4007-BF60-E778A7A9179B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {85456F8F-BD42-470E-86E9-AA8EF967008D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8890B5E7-1F43-4BC9-8037-6269CAEB3993} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17184 2014-05-30] (LENOVO -> Lenovo)
Task: {8E12D3A5-7D71-4043-BB6A-97B225DFDDC6} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b31319f66a18 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {9533572D-500F-499A-9E4F-D9BA64CF76F3} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [336952 2020-02-06] (Adobe Inc. -> Adobe)
Task: {974CB924-9CC4-4F73-A137-F3D57D1845BD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {97BD4E19-08A1-493A-827A-550DE54ECF79} - System32\Tasks\Prdather Configuration => C:\Program Files (x86)\Daletictain\cuuph.exe [1016752 2017-01-31] (Glarysoft LTD -> Glarysoft Ltd)
Task: {994591F7-2272-4139-B9B8-5B6138124AED} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {9CC9F1AA-B5F8-4B00-BC2A-46F292C4DF03} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4011448 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4FB906B-5704-4635-98C7-DC1CD4190593} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A6279069-2816-466D-B083-CABB1B1C19A3} - System32\Tasks\AVG EUpdate Task => C:\Program Files (x86)\AVG\Setup\avgsetupx.exe [4072504 2018-06-22] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
Task: {A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {AD5ADFCA-8780-4DFC-8428-3C21DEA12A83} - System32\Tasks\AVG\AVG TuneUp Update BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [2812656 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {AE1AA9BE-D8BB-4A1F-BA5A-A10D2CDED6CE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B00B279E-A535-47A8-B7F7-0E5F4C0E3521} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {B1504F69-8600-4346-BEAA-1FB1116B2B82} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B1D08757-3EAC-4C74-9399-ED733EEBF2B9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B4BB6857-698E-4C07-9C20-0A5D7566996C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {B5403EEE-9266-46DB-AF19-9095BEEB3DB2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117584 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {BCC8B832-3390-4217-96C9-BC531822083D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C656CAE4-42D4-4599-BF0D-67A6158B8960} - System32\Tasks\{5140B943-8CC7-4365-8048-11FD9D0E6A0B} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Harry Potter a Tajemná komnata\system\Game.exe" -d C:\PROGRA~2\EAGAME~1\HARRYP~1
Task: {C6C0A02F-4DEF-41AF-82A7-DA138B1D892D} - System32\Tasks\{4499C407-8224-4494-8BD9-F74401EDD645} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\GameforgeLive\Games\CZE_ces\4Story\unins000.exe"
Task: {CB731DEB-96F9-46CE-8210-AA53CF903B3C} - System32\Tasks\AVG Secure VPN Update => C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe [1071512 2020-10-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF9A11E0-F0BE-4502-8DCE-14EAF08519D5} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {DBECC934-51C2-4BC0-A5D4-561D0717F9E4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {DC0E7D48-9301-449A-B6E2-7B84BA2B47B9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DD158EA7-E62F-4827-BECE-4CD6ECFEFE81} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {DF348033-6E46-448E-91BC-24AFA900877E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E62DD62F-5E35-4848-BEB7-993431981AFD} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3897992 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {EB5AB23A-FA27-4BB5-9A28-D724BE084B55} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {FA4A9457-3FFD-4B05-AFD4-FCED57C081A1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1153928 2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC3B72B9-76A6-40A4-9E02-0CCA494A4D15} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\61313397-2BDF-49EC-89AB-788AE7B144C3\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [551424 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {FCA11D92-B76A-4F22-8294-3741D316F8F0} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [5151368 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0b31319f66a18.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4df83cd8-099b-42eb-a952-84fbbf807bed}: [DhcpNameServer] 172.168.130.2
Tcpip\..\Interfaces\{5b6c1477-195b-4d12-9e05-430d94c004e7}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{748dd2bd-d8c1-4e14-ae81-8db328008947}: [NameServer] 77.234.40.79
Edge:
======
Edge Profile: C:\Users\Tereza\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-09]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-10-06] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-30] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-30] (Adobe Systems Incorporated -> )
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-10-09] <==== ATTENTION
CHR Notifications: ChromeDefaultData -> hxxps://www.fotor.com; hxxps://www.myguidequeenstown.com; hxxps://www.slevomat.cz
CHR HomePage: ChromeDefaultData -> hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.ourluckysites.com/?type=hp&ts=14948 ... XXW763LL91"
CHR Extension: (Prezentace) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-31]
CHR Extension: (Dokumenty) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-31]
CHR Extension: (Disk Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-12]
CHR Extension: (YouTube) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-31]
CHR Extension: (uBlock Origin) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-10-08]
CHR Extension: (Tabulky) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-06]
CHR Extension: (Gmail) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-28]
CHR Extension: (Chrome Media Router) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-07]
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default [2020-10-02]
CHR Extension: (Prezentace Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-30]
CHR Extension: (Dokumenty Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-30]
CHR Extension: (Disk Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Tabulky Google) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AdBlock) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-01-31]
CHR Extension: (Shopicks) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\iadhdfmpolpbdekneiekahmibhcbgjcj [2017-01-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-30]
CHR Extension: (Chrome Media Router) - C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-17]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn]
CHR HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Antanna\Application\chrome.exe <==== ATTENTION
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [336952 2020-02-06] (Adobe Inc. -> Adobe)
S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [358432 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [1097752 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [7871424 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [110608 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [12978896 2020-09-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8943496 2020-09-24] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-04-11] (Huawei Software Technologies Co., LTD. -> )
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-22] (LENOVO -> LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [953544 2020-10-02] (McAfee, LLC -> McAfee, LLC)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [6053312 2016-08-22] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 SecureVpn; C:\Program Files (x86)\AVG\Secure VPN\VpnSvc.exe [7025728 2020-10-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\NisSrv.exe [3285864 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MsMpEng.exe [103168 2020-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ymc; C:\ProgramData\LenovoTransition\Server\x64\ymc.exe [33040 2015-02-12] (Lenovo (Beijing) Limited -> Lenovo)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-26] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206456 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [235648 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [195712 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61056 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16320 2020-07-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42832 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175256 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [517648 2020-09-24] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109336 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84912 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851664 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469944 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [217392 2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgTap; C:\WINDOWS\System32\drivers\avgTap.sys [54888 2016-12-09] (AVG Technologies CZ, s.r.o. -> The OpenVPN Project)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [326488 2020-09-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 phidmice; C:\WINDOWS\system32\DRIVERS\phidmice.sys [33048 2016-07-11] (WDKTestCert idd,131110062695071623 -> )
S3 pmouself; C:\WINDOWS\system32\DRIVERS\pmouself.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 pvendrlf; C:\WINDOWS\system32\DRIVERS\pvendrlf.sys [15032 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [28624 2020-02-18] () [File not signed]
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Apple, Inc.) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376544 2020-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-09 12:42 - 2020-10-09 12:42 - 109483117 _____ C:\Users\Tereza\Downloads\OneDrive_2020-10-09.zip
2020-10-09 12:04 - 2020-10-09 12:05 - 026247073 _____ C:\Users\Tereza\Downloads\Psychologie.zip
2020-10-08 14:31 - 2020-10-08 14:31 - 008414384 _____ (Malwarebytes) C:\Users\Tereza\Desktop\adwcleaner_8.0.7.exe
2020-10-08 13:52 - 2020-10-08 14:08 - 070353223 _____ C:\Users\Tereza\Downloads\video (20).mp4
2020-10-07 09:51 - 2020-10-09 12:50 - 000041700 _____ C:\Users\Tereza\Desktop\FRST.txt
2020-10-07 09:51 - 2020-10-07 10:13 - 000055608 _____ C:\Users\Tereza\Desktop\Addition.txt
2020-10-07 09:30 - 2020-10-09 12:49 - 000000000 ____D C:\FRST
2020-10-07 09:26 - 2020-10-07 09:26 - 002299392 _____ (Farbar) C:\Users\Tereza\Desktop\FRST64.exe
2020-10-06 12:50 - 2020-10-06 12:50 - 000223855 _____ C:\Users\Tereza\Downloads\3. cvičení (1).pdf
2020-10-06 12:50 - 2020-10-06 12:50 - 000215593 _____ C:\Users\Tereza\Downloads\4. cvičení (1).pdf
2020-10-06 12:49 - 2020-10-06 12:50 - 127700129 _____ C:\Users\Tereza\Downloads\Handouts_2cv_řešení_roušky.pptx
2020-10-05 12:36 - 2020-10-05 12:36 - 000052457 _____ C:\Users\Tereza\Downloads\Word_procvičování-20201005.zip
2020-10-05 09:42 - 2020-10-05 09:43 - 000733497 _____ C:\Users\Tereza\Downloads\eduroam-cs_CZ.kml
2020-10-04 21:29 - 2020-10-04 21:31 - 253991975 _____ C:\Users\Tereza\Downloads\video.mp4
2020-10-04 21:06 - 2020-10-04 21:06 - 000002419 _____ C:\Users\Tereza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-10-04 21:06 - 2020-10-04 21:06 - 000002411 _____ C:\Users\Tereza\Desktop\Microsoft Teams.lnk
2020-10-04 21:00 - 2020-10-04 21:01 - 101284632 _____ (Microsoft Corporation) C:\Users\Tereza\Downloads\Teams_windows_x64.exe
2020-10-04 20:58 - 2020-10-04 20:58 - 000002467 _____ C:\Users\Tereza\Desktop\Access.lnk
2020-10-04 20:58 - 2020-10-04 20:58 - 000002446 _____ C:\Users\Tereza\Desktop\OneNote.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002504 _____ C:\Users\Tereza\Desktop\Word.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002503 _____ C:\Users\Tereza\Desktop\PowerPoint.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002466 _____ C:\Users\Tereza\Desktop\Excel.lnk
2020-10-04 20:57 - 2020-10-04 20:57 - 000002460 _____ C:\Users\Tereza\Desktop\Outlook.lnk
2020-10-04 20:20 - 2020-10-04 20:20 - 000687104 _____ C:\Users\Tereza\Downloads\A Cv. 4, Rozvaha, VZZ, CF, studenti,2020-21.ppt
2020-10-04 20:20 - 2020-10-04 20:20 - 000173260 _____ C:\Users\Tereza\Downloads\A cv. 5 - 6, Náklady, 2020-2021, studenti.pptx
2020-10-04 20:10 - 2020-10-04 20:10 - 000223855 _____ C:\Users\Tereza\Downloads\3. cvičení.pdf
2020-10-04 20:10 - 2020-10-04 20:10 - 000215593 _____ C:\Users\Tereza\Downloads\4. cvičení.pdf
2020-10-04 19:27 - 2020-10-04 19:28 - 072523626 _____ C:\Users\Tereza\Downloads\the-business-2-0-intermediate-b1.pdf
2020-10-02 09:36 - 2020-10-02 09:37 - 000000000 ____D C:\rsit
2020-10-02 09:36 - 2020-10-02 09:36 - 001222144 _____ C:\Users\Tereza\Downloads\RSITx64.exe
2020-10-02 09:36 - 2020-10-02 09:36 - 000000000 ____D C:\Program Files\trend micro
2020-10-02 09:08 - 2020-10-08 20:19 - 000002236 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-10-02 09:07 - 2020-10-08 20:19 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-02 09:07 - 2020-10-02 09:07 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-02 09:07 - 2020-10-02 09:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-10-02 09:07 - 2020-10-02 09:07 - 000000000 ____D C:\Program Files\CCleaner
2020-10-02 09:06 - 2020-10-02 09:06 - 029069888 _____ (Piriform Software Ltd) C:\Users\Tereza\Downloads\ccsetup572.exe
2020-10-01 16:25 - 2020-10-01 16:25 - 000000000 ____D C:\Program Files (x86)\World of Warcraft Cataclysm 4.3.4
2020-10-01 16:17 - 2020-10-01 16:17 - 008193829 _____ C:\Users\Tereza\Downloads\WoW434_mini.zip
2020-10-01 13:18 - 2020-10-01 13:18 - 000534354 _____ C:\Users\Tereza\Downloads\c_1-4.pdf
2020-10-01 09:00 - 2020-10-01 09:01 - 409574760 _____ C:\Users\Tereza\Downloads\Handouts_2cv_řešení_videa.pptx
2020-09-30 23:49 - 2020-09-30 23:49 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2020-09-30 23:49 - 2020-09-10 18:14 - 000905528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2020-09-30 23:49 - 2020-09-10 18:14 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2020-09-30 10:56 - 2020-10-01 12:02 - 000672768 _____ C:\Users\Tereza\Downloads\A1 Cv. 3, Rozvaha-studenti, 2020-2021 (1).ppt
2020-09-29 13:09 - 2020-09-29 13:09 - 000035329 _____ C:\Users\Tereza\Downloads\Zadost_o_ubytovaci_stipendium.pdf
2020-09-29 10:37 - 2020-09-29 10:37 - 000446982 _____ C:\Users\Tereza\Downloads\PrednaskaExcelPrazdna.xlsx
2020-09-29 08:42 - 2020-09-29 08:42 - 000621818 _____ C:\Users\Tereza\Downloads\Cvičení-20200929.zip
2020-09-29 08:38 - 2020-09-29 08:38 - 000804864 _____ C:\Users\Tereza\Downloads\A1 Cv. 3, Rozvaha-studenti, 2020-2021.ppt
2020-09-29 08:31 - 2020-09-29 08:31 - 069513199 _____ C:\Users\Tereza\Downloads\Př-2.mkv
2020-09-29 08:29 - 2020-09-29 08:29 - 000445964 _____ C:\Users\Tereza\Downloads\Cvičení (návody a další samostatná práce)-20200929.zip
2020-09-23 23:12 - 2020-10-06 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-09-23 23:12 - 2020-09-23 23:12 - 000002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002504 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-09-23 23:12 - 2020-09-23 23:12 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2020-09-23 19:32 - 2020-09-23 19:33 - 006228616 _____ (Microsoft Corporation) C:\Users\Tereza\Downloads\OfficeSetup.exe
2020-09-22 20:22 - 2020-09-22 21:04 - 000000000 ____D C:\World of Warcraft - 3.3.5a (12340) - enUS (No Install)_CZhra_CZquesty
2020-09-21 22:11 - 2020-09-21 22:11 - 002749688 _____ C:\Users\Tereza\Downloads\cvicebnice-matematika-a-gencev-ekf-vsb.pdf
2020-09-21 20:49 - 2020-09-21 20:49 - 000285730 _____ C:\Users\Tereza\Downloads\c_1-1.pdf
2020-09-20 22:26 - 2020-09-20 22:26 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 005503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 004309504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 002494752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 002315472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 002138264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001491160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001247744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001151808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001108384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 001039872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000928768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000748384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000738072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000709632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000682752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFSR.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000666288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-20 22:26 - 2020-09-20 22:26 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000420168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSE.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOVER.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUTILITY.dll
2020-09-20 22:26 - 2020-09-20 22:26 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-09-20 22:26 - 2020-09-20 22:26 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSERES.dll
2020-09-20 22:25 - 2020-09-20 22:26 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 032928920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 022642176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 007761408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 007284736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 006304256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 005907456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 005767744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004605952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 004538368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 003501568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 002259680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001459200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001421392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 001326592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001218424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000783496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000671560 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000299072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnscmmc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnscmmc.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhuxgraphics.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys
2020-09-20 22:25 - 2020-09-20 22:25 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tar.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NAPCRYPT.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tar.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wslapi.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-09-20 22:25 - 2020-09-20 22:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106n.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd101.DLL
2020-09-20 22:25 - 2020-09-20 22:25 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-09-20 22:25 - 2020-09-20 22:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-09-20 22:24 - 2020-09-20 22:24 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 006069360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005848848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005041152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 005003832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 003740456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002585032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002565120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001957552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001750016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001704960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001698816 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001664696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001653792 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001369088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001307464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001246208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001141048 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001124864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001054160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 001009200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000892728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000867328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000844088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000823752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000768504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000675032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000667312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000628400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000572208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000544336 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000466352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000356160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000285056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000260408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000224064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000165184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000146640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000090944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000089344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000063296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2020-09-20 22:24 - 2020-09-20 22:24 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe
2020-09-20 22:24 - 2020-09-20 22:24 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDJPN.DLL
2020-09-20 22:24 - 2020-09-20 22:24 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106n.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd101.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-09-20 22:24 - 2020-09-20 22:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 009926456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 007910152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007845080 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007582768 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 007271232 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 006170624 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 005284328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 004048384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003805696 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 003547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003371176 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003265024 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003136000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002772616 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002711552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002697536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 002483712 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002454904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002260824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002090280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 002073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001930752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001670144 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 001485824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001480520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 001399216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001260752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001170960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 001008952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000944680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000893104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000858928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000716304 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000661832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-09-20 22:23 - 2020-09-20 22:23 - 000460192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000372536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000363128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000273208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000254776 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000213824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000205640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000146248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000079576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000066872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000057888 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000047008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-20 22:23 - 2020-09-20 22:23 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-09-20 22:23 - 2020-09-20 22:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-09-20 22:22 - 2020-09-20 22:23 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 003714048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 002291712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001942016 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001784832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001767424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001746232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000981320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000978232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000555320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000250680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000224072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000208712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000200008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapistub.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000142152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-20 22:22 - 2020-09-20 22:22 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-09-20 22:22 - 2020-09-20 22:22 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
2020-09-20 22:22 - 2020-09-20 22:22 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe
2020-09-20 21:41 - 2020-08-15 07:25 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-09-20 21:41 - 2020-08-15 07:15 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-09-20 21:31 - 2020-09-20 21:42 - 000242698 _____ C:\Users\Tereza\Desktop\odstoupeni-od-smlouvy.pdf
2020-09-12 20:46 - 2020-09-12 20:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-2380088464-113028033-3958389239-1001
2020-09-10 16:07 - 2020-09-10 16:07 - 000157252 _____ C:\Users\Tereza\Downloads\2020_2021_UVOD DO STUDIA.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-09 12:51 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-09 12:49 - 2018-02-12 22:56 - 000000000 ____D C:\Users\Tereza\AppData\Local\Packages
2020-10-09 12:27 - 2016-04-02 21:28 - 000000000 ____D C:\ProgramData\Avg
2020-10-09 12:27 - 2016-04-02 21:28 - 000000000 ____D C:\Program Files (x86)\AVG
2020-10-09 12:26 - 2019-11-04 21:55 - 000003668 _____ C:\WINDOWS\system32\Tasks\AVG EUpdate Task
2020-10-09 12:16 - 2015-06-30 11:00 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-10-09 11:56 - 2019-11-04 21:55 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-10-09 11:51 - 2019-11-04 21:55 - 000004278 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-10-09 11:49 - 2019-11-04 21:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-09 00:15 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-09 00:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-09 00:14 - 2020-08-05 01:22 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-09 00:14 - 2020-08-05 01:22 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-08 20:19 - 2020-08-05 01:21 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-08 20:19 - 2020-08-05 01:21 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-08 20:19 - 2019-11-04 21:55 - 000004940 _____ C:\WINDOWS\system32\Tasks\Prdather Configuration
2020-10-08 20:19 - 2019-11-04 21:55 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-10-08 20:19 - 2019-11-04 21:55 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2380088464-113028033-3958389239-1001
2020-10-08 20:19 - 2019-11-04 21:55 - 000002814 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-tereza.blahova@outlook.cz
2020-10-08 20:19 - 2019-11-04 21:55 - 000002750 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2380088464-113028033-3958389239-1001
2020-10-08 20:19 - 2019-11-04 21:55 - 000002318 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2380088464-113028033-3958389239-500
2020-10-08 20:19 - 2019-11-04 21:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-10-08 15:21 - 2019-11-04 21:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-10-08 15:20 - 2019-10-06 23:30 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-10-08 15:19 - 2015-07-03 23:06 - 000000000 ____D C:\Users\Tereza\AppData\Local\Spotify
2020-10-08 15:18 - 2015-07-03 23:06 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\Spotify
2020-10-08 15:14 - 2015-06-30 10:36 - 000000000 __SHD C:\Users\Tereza\IntelGraphicsProfiles
2020-10-08 14:42 - 2019-11-04 21:35 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-08 14:42 - 2019-03-19 13:55 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-08 14:42 - 2019-03-19 13:55 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-08 14:42 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-10-08 14:38 - 2019-11-04 21:55 - 000003986 _____ C:\WINDOWS\system32\Tasks\AVG Secure VPN Update
2020-10-08 14:38 - 2019-11-04 21:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-08 14:38 - 2015-09-24 19:08 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-10-08 14:37 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-10-08 14:36 - 2020-01-17 22:24 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\Lavasoft
2020-10-08 14:36 - 2020-01-17 22:24 - 000000000 ____D C:\Users\Tereza\AppData\Local\Lavasoft
2020-10-08 14:36 - 2020-01-17 22:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2020-10-08 14:36 - 2020-01-17 22:24 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2020-10-08 14:36 - 2020-01-17 22:23 - 000000000 ____D C:\ProgramData\Lavasoft
2020-10-08 14:34 - 2017-02-17 21:32 - 000000000 ____D C:\WINDOWS\system32\log
2020-10-08 14:34 - 2017-01-31 15:52 - 000000000 ____D C:\AdwCleaner
2020-10-08 13:55 - 2015-07-01 13:05 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\vlc
2020-10-06 22:37 - 2018-05-20 23:45 - 000000000 ____D C:\Users\Tereza\AppData\Local\PlaceholderTileLogoFolder
2020-10-06 22:07 - 2018-09-13 20:09 - 000000000 ____D C:\Users\Tereza\AppData\Local\CrashDumps
2020-10-06 16:06 - 2015-02-12 10:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-10-04 21:06 - 2020-02-13 10:26 - 000000000 ____D C:\Users\Tereza\AppData\Local\SquirrelTemp
2020-10-03 10:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-02 09:16 - 2017-01-31 15:25 - 000000000 ____D C:\Users\Tereza\AppData\Roaming\DAEMON Tools Lite
2020-10-02 09:14 - 2020-01-17 04:16 - 000000000 ____D C:\WINDOWS\Minidump
2020-10-01 12:44 - 2015-08-24 10:47 - 000000000 ____D C:\Users\Tereza\AppData\Local\ElevatedDiagnostics
2020-10-01 12:30 - 2019-11-04 21:23 - 000000000 ____D C:\Users\Tereza
2020-09-29 20:24 - 2019-07-04 13:28 - 000000000 ____D C:\Users\Tereza\Desktop\filmy
2020-09-27 12:41 - 2015-07-01 13:29 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-09-24 08:31 - 2020-04-21 12:25 - 000517648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2020-09-24 08:29 - 2019-11-04 21:12 - 000466688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-23 23:29 - 2015-09-13 20:21 - 000000000 ____D C:\Users\Tereza\Desktop\school
2020-09-23 23:27 - 2019-10-30 16:37 - 000000000 ____D C:\Users\Tereza\Desktop\logika
2020-09-21 19:27 - 2018-02-13 18:08 - 000000000 ___RD C:\Users\Tereza\3D Objects
2020-09-21 19:27 - 2015-07-01 02:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-21 00:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-09-20 22:48 - 2015-07-03 17:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-20 22:37 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-09-20 22:37 - 2015-07-03 17:52 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-20 22:22 - 2019-11-04 21:31 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
==================== Files in the root of some directories ========
2017-03-02 14:26 - 2017-03-02 14:26 - 000000000 _____ () C:\Program Files (x86)\metadata
2020-10-05 11:22 - 2020-10-05 11:22 - 000000124 _____ () C:\Users\Tereza\AppData\Roaming\debug.log
2018-10-01 19:51 - 2018-10-01 19:51 - 000000000 _____ () C:\Users\Tereza\AppData\Local\oobelibMkey.log
2016-04-19 11:31 - 2016-04-19 11:31 - 000000000 _____ () C:\Users\Tereza\AppData\Local\{43CC2DB6-C910-4B5B-9112-5E75706FB958}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Re: Preventivka
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-10-2020
Ran by Tereza (09-10-2020 12:56:00)
Running from C:\Users\Tereza\Desktop
Windows 10 Home Version 1903 18362.1082 (X64) (2019-11-04 19:57:04)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2380088464-113028033-3958389239-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2380088464-113028033-3958389239-503 - Limited - Disabled)
Guest (S-1-5-21-2380088464-113028033-3958389239-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2380088464-113028033-3958389239-1003 - Limited - Enabled)
Tereza (S-1-5-21-2380088464-113028033-3958389239-1001 - Administrator - Enabled) => C:\Users\Tereza
WDAGUtilityAccount (S-1-5-21-2380088464-113028033-3958389239-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 17.00 beta (HKLM-x32\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.216 - Adobe)
Adobe Premiere (HKLM\...\{C1CB876C-A08E-4692-B525-42848BD154D7}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 20.7.3140 - AVG Technologies)
AVG Secure VPN (HKLM\...\{078F51FA-D92F-419A-9E69-08BC59265F7E}_is1) (Version: 1.1.588.0 - AVG)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.9.626 - AVG Technologies)
CCleaner (HKLM\...\CCleaner) (Version: 5.72 - Piriform)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1152 - Disc Soft Ltd)
Dependency Package Update (HKLM\...\{0788641D-D31A-478D-BB34-C41564AE9F93}) (Version: 1.6.32.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.25.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Energy Manager (HKLM-x32\...\{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.20 - Lenovo) Hidden
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.20 - Lenovo)
Gameforge Live 2.0.13 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.13 - Gameforge)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.2.0 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.75 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Harry Potter a Fénixův řád™ (HKLM-x32\...\{B69F28DF-CBB1-41B7-008A-210E4D0518FC}) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Language, Proof and Logic (HKLM-x32\...\{6BB2714B-397C-4135-91D5-137D07BC30A5}) (Version: 12.10 - The Openproof Project, CSLI, Stanford University)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.25.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10260 - Realtek Semiconductor Corp.)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Hidden
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.)
Lenovo Transition (HKLM\...\Lenovo Transition) (Version: 2.1.14.1221 - Lenovo)
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0001.00 - Lenovo Group Limited) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.13231.20262 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.70 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft OneDrive (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\OneDriveSetup.exe) (Version: 20.143.0716.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Teams) (Version: 1.3.00.26064 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.28.0 - Nikon Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.6 - Power Software Ltd)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7188 - Realtek Semiconductor Corp.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Spotify) (Version: 1.1.42.622.gbd112320 - Spotify AB)
Star Stable 2 (HKLM-x32\...\{6DD86DE9-1AE7-41B0-9326-1A90E32BAE88}) (Version: 1.00.0000 - Stabenfeldt)
Star Stable Online 2.4.0 (HKLM-x32\...\8c663ade-0de5-52b6-812d-f5cd25f943ac) (Version: 2.4.0 - Star Stable Entertainment AB)
Starshine 1.díl (HKLM-x32\...\{73B3C57B-3ED7-40DB-A554-32EB5D35F84E}) (Version: 1.00.000 - )
Starshine 2.díl (HKLM-x32\...\{2FA1102F-DE05-4E79-8CED-E5BAABFC2FEF}) (Version: 1.00.000 - )
Starshine 3.díl (HKLM-x32\...\{A7123032-A8DA-48AC-9F5D-0A3B14698375}) (Version: 1.00.000 - )
Starshine 4.díl (HKLM-x32\...\{C4ECF493-29C4-4CB7-903E-90C28F3D0C00}) (Version: 1.00.000 - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.34161 - Microsoft Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.2.2756 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Vegas Pro 13.0 (64-bit) (HKLM-x32\...\Vegas Pro 13.0 (64-bit)) (Version: 13.0 (64-bit) - Exµs ™)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.154 - McAfee, LLC)
Windows Driver Package - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
youndoo - Uninstall (HKLM-x32\...\{3A9A11F8-6F05-47EF-B1C3-87FBD42441D7}) (Version: - ) <==== ATTENTION
Packages:
=========
Camera Man -> C:\Program Files\WindowsApps\E0469640.CameraMan_1.0.1929.30229_x86__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-30] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.25.9091.0_x86__q4d96b2w5wcc2 [2020-06-30] (Evernote)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-09-16] (Facebook Inc)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa [2020-09-22] (Apple Inc.) [Startup Task]
KONICA MINOLTA Print Experience -> C:\Program Files\WindowsApps\KONICAMINOLTAINC.KONICAMINOLTAPrintExperience_1.4.0.4_neutral__s63fsn2sety0r [2020-03-30] (KONICA MINOLTA INC)
Lenovo Recommends -> C:\Program Files\WindowsApps\E0469640.LenovoRecommends_1.5.14.117_x64__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2019-04-01] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2009.18.0_x64__k1h2ywk1493x8 [2020-09-27] (LENOVO INC.)
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2019-04-01] (FilmOn TV Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.11.6020.0_x64__8wekyb3d8bbwe [2020-06-17] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-09-07] (Microsoft Studios) [MS Ad]
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-30] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Phone Companion -> C:\Program Files\WindowsApps\E0469640.DeviceCollaboration_2.0.0.9_x64__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Svátky pro Windows 8 -> C:\Program Files\WindowsApps\9AABFA2B.Svtky_1.3.0.0_x64__grzn081tst3he [2019-04-01] (bezysoftware s.r.o.)
The Weather Channel for Lenovo -> C:\Program Files\WindowsApps\Weather.TheWeatherChannelforLenovo_2015.1013.1.0_x64__t3yemqpq4kp7p [2019-04-01] (The Weather Channel.)
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-04] (Microsoft Corporation)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2019-04-01] (TripAdvisor LLC)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-04-01] (Twitter Inc.)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2019-04-01] (Zinio LLC)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\ChromeHTML: -> "C:\Program Files (x86)\Antanna\Application\chrome.exe" "%1" <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{04271989-C4D2-71D3-CD68-494E6C3BF5A6} -> [OneDrive - Stredni skola KOSTKA s.r.o] => C:\Users\Tereza\OneDrive - Stredni skola KOSTKA s.r.o [2016-05-16 18:04]
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Tereza\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Tereza\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {48F04F78-DE45-11E6-8A81-64006A5CFC23} - C:\Users\Tereza\AppData\Roaming\Cligutainqerotain\Devaiedduberch.dll [148992 2017-01-31] () [File not signed] <==== ATTENTION
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2017-01-31 15:26 - 2017-01-31 15:26 - 000148992 _____ () [File not signed] C:\Users\Tereza\AppData\Roaming\Cligutainqerotain\Devaiedduberch.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131525701610402108&GUID=6621E8EC-E6A9-4FD2-9567-5F33119CB5BB
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {ED02269F-0BD1-4EC1-9187-C39A12FDA95C} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-10-02] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-10-02] (McAfee, LLC -> McAfee, LLC)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\sharepoint.com -> hxxps://kostkaskola.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 15:25 - 2019-01-29 11:47 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Lenovo\FusionEngine;C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\QuickTime\QTSystem\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tereza\Desktop\loved\collage\original (4).jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartupApproved\Run: => ""
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0FE93CCE-0EF7-44B0-95B6-5785218839AF}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{1EAEC615-85AF-4C4E-AE9C-74E334C7C041}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{F3914568-15BC-4C15-A8CD-9A57F0B788FB}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{8794EE1C-C5B9-4799-96F6-D7A640A72C7A}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8C854486-491E-4798-AF05-E8F12B6D9772}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{D09FEC78-6988-4DD3-9E48-188314E1B1AA}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{0134EEF9-2780-4673-9E1A-F3CAE7BB2FFF}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{19DEE3B9-5A6D-4F0D-9B5E-038FCF020C65}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{48CA7A2B-03EF-413F-94B1-C2D2510B61AE}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B841FBC7-04BF-4E8F-8FDA-12CC8C0F436B}] => (Allow) C:\WINDOWS\explorer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D889C995-ADCD-4A6C-B875-76401F047FA5}] => (Allow) C:\WINDOWS\system32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{86EA0FE0-6E3E-4A54-BEFF-01C2980A63DB}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe (Gameforge 4D GmbH -> )
FirewallRules: [{65E4E080-CA1D-43AD-B926-E355D7A7F5EF}] => (Allow) C:\Users\Tereza\AppData\Roaming\uTorrent\uTorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{C31B188D-5ADE-418A-9E66-87B7FA14B96A}] => (Allow) C:\Users\Tereza\AppData\Roaming\uTorrent\uTorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{EB556B22-5B3F-41C2-8808-3D325D48BFE0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0CADCC02-D516-4FD3-9005-9C4EAD668BE8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B273E940-C01D-43E4-8BE8-8AFA29988281}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0305C2C3-519E-4006-A9CA-A1194592F3ED}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{06C71D49-2B06-4798-ABC2-31E9D82BA1E1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{15AEAAE5-DC6A-47F7-8BB1-AB98E8CE6C42}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{B88E4EDA-5F51-4ED1-A066-0FE8E2609F57}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{27987EB1-AA2A-4D46-9F29-79F21EE82042}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4F7E9582-42DC-4B6E-A851-37A170C91E33}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5410FF0C-98A7-4B3F-860A-D7F46D9AA31B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5ADB454A-D30F-4FE4-A7A3-81D64AE93266}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.63\opera.exe => No File
FirewallRules: [{E3101E10-D567-48BA-BBD8-EADAE5B694BB}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.104\opera.exe => No File
FirewallRules: [{7F08428C-C0CE-47C1-8D57-42D1DED2DDDB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{40E9EE48-1AFA-4356-BD08-1C97919E91B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{693C5ED7-FBA1-4F7A-B3BC-864F17442BFD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0A6C28E7-4409-4540-8A51-A32B7C78496D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B3BE4F51-B9C5-47C5-84B9-84E963905BB6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A5846C20-C4D4-4EC1-B1C0-F088FD1CF123}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A46E1523-74EA-4104-AE96-D547AF8EBCF3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F36DF6D8-5CAE-4D0A-9079-8DC70BEDFAD3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{887C0D10-00F1-4D1C-BF50-691DDBC22547}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6EA37137-81A7-4995-8772-637C29711FD3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{114409AF-6108-4896-9675-043E9A19371B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{13905A5C-CF4D-481A-A1D0-3E011A904902}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0EAA187A-B3B8-4EED-8B30-BC2A68F66AD5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DA39EF01-EF87-49B1-82B4-31C5F740B04C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
30-09-2020 20:29:00 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
Name: AVG TAP Adapter v3
Description: AVG TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: avgTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/09/2020 12:46:28 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11788,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/09/2020 12:34:19 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (17812,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/09/2020 12:26:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2828,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/09/2020 12:10:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Microsoft.Photos.exe verze 2020.20090.1002.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 45c4
Čas spuštění: 01d69e24399bfb8c
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20090.1002.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
ID hlášení: 86b38d0d-93b2-4b64-930d-4741d09d8b8f
Úplný název balíčku s chybou: Microsoft.Windows.Photos_2020.20090.1002.0_x64__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Cross-thread
Error: (10/09/2020 11:59:00 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (18360,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/09/2020 12:21:38 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (17380,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/08/2020 06:50:30 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16212,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/08/2020 06:44:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12880,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
System errors:
=============
Error: (10/09/2020 11:55:20 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby AGMService bylo dosaženo časového limitu (30000 ms).
Error: (10/09/2020 11:50:48 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Error: (10/09/2020 11:50:48 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Error: (10/09/2020 11:50:48 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Error: (10/09/2020 11:50:47 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Error: (10/08/2020 07:49:15 PM) (Source: DCOM) (EventID: 10010) (User: TERKA-PC)
Description: Server {D18705BE-FC2F-44C8-AEFF-1CD49AEA8FC1} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/08/2020 07:33:40 PM) (Source: DCOM) (EventID: 10010) (User: TERKA-PC)
Description: Server Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/08/2020 06:45:38 PM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Windows Defender:
===================================
Date: 2020-02-29 15:56:20.914
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {A6C49F06-1383-4389-876B-7D6687014B5E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-02-21 19:58:33.252
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-21 19:57:36.229
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-21 19:56:17.951
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: Terka-PC\Tereza
Název procesu: C:\Program Files (x86)\PowerISO\PowerISO.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-20 17:05:30.479
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {81A28959-5268-4A20-8995-02222265E764}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-03-17 02:24:30.928
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.926
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.925
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.901
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.897
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
CodeIntegrity:
===================================
Date: 2020-10-09 12:44:38.078
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:44:00.968
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:55.299
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:51.007
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:48.486
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:44.830
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:41.344
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:33.832
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO A3CN31WW 07/25/2014
Motherboard: LENOVO Lenovo Flex 2-14
Processor: Intel(R) Pentium(R) CPU N3530 @ 2.16GHz
Percentage of memory in use: 80%
Total physical RAM: 3979.49 MB
Available physical RAM: 792.15 MB
Total Virtual: 6795.49 MB
Available Virtual: 1377.3 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:424.27 GB) (Free:176.1 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:9.7 GB) NTFS
\\?\Volume{f14a7205-da0a-48c3-aff6-bc8fd08afb78}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.67 GB) NTFS
\\?\Volume{492deddb-3ab3-4df7-b1fd-8ba949b22fcb}\ (PBR_DRV) (Fixed) (Total:14.16 GB) (Free:4.58 GB) NTFS
\\?\Volume{fbfac45b-043f-4cd4-a8e3-9afad87181f2}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 05905877)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by Tereza (09-10-2020 12:56:00)
Running from C:\Users\Tereza\Desktop
Windows 10 Home Version 1903 18362.1082 (X64) (2019-11-04 19:57:04)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2380088464-113028033-3958389239-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2380088464-113028033-3958389239-503 - Limited - Disabled)
Guest (S-1-5-21-2380088464-113028033-3958389239-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2380088464-113028033-3958389239-1003 - Limited - Enabled)
Tereza (S-1-5-21-2380088464-113028033-3958389239-1001 - Administrator - Enabled) => C:\Users\Tereza
WDAGUtilityAccount (S-1-5-21-2380088464-113028033-3958389239-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 17.00 beta (HKLM-x32\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.216 - Adobe)
Adobe Premiere (HKLM\...\{C1CB876C-A08E-4692-B525-42848BD154D7}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 20.7.3140 - AVG Technologies)
AVG Secure VPN (HKLM\...\{078F51FA-D92F-419A-9E69-08BC59265F7E}_is1) (Version: 1.1.588.0 - AVG)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.9.626 - AVG Technologies)
CCleaner (HKLM\...\CCleaner) (Version: 5.72 - Piriform)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1152 - Disc Soft Ltd)
Dependency Package Update (HKLM\...\{0788641D-D31A-478D-BB34-C41564AE9F93}) (Version: 1.6.32.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.25.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Energy Manager (HKLM-x32\...\{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.20 - Lenovo) Hidden
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.20 - Lenovo)
Gameforge Live 2.0.13 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.13 - Gameforge)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.2.0 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.75 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Harry Potter a Fénixův řád™ (HKLM-x32\...\{B69F28DF-CBB1-41B7-008A-210E4D0518FC}) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Language, Proof and Logic (HKLM-x32\...\{6BB2714B-397C-4135-91D5-137D07BC30A5}) (Version: 12.10 - The Openproof Project, CSLI, Stanford University)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.25.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10260 - Realtek Semiconductor Corp.)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Hidden
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.)
Lenovo Transition (HKLM\...\Lenovo Transition) (Version: 2.1.14.1221 - Lenovo)
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0001.00 - Lenovo Group Limited) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.13231.20262 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.70 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft OneDrive (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\OneDriveSetup.exe) (Version: 20.143.0716.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Teams) (Version: 1.3.00.26064 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.28.0 - Nikon Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.6 - Power Software Ltd)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7188 - Realtek Semiconductor Corp.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Spotify) (Version: 1.1.42.622.gbd112320 - Spotify AB)
Star Stable 2 (HKLM-x32\...\{6DD86DE9-1AE7-41B0-9326-1A90E32BAE88}) (Version: 1.00.0000 - Stabenfeldt)
Star Stable Online 2.4.0 (HKLM-x32\...\8c663ade-0de5-52b6-812d-f5cd25f943ac) (Version: 2.4.0 - Star Stable Entertainment AB)
Starshine 1.díl (HKLM-x32\...\{73B3C57B-3ED7-40DB-A554-32EB5D35F84E}) (Version: 1.00.000 - )
Starshine 2.díl (HKLM-x32\...\{2FA1102F-DE05-4E79-8CED-E5BAABFC2FEF}) (Version: 1.00.000 - )
Starshine 3.díl (HKLM-x32\...\{A7123032-A8DA-48AC-9F5D-0A3B14698375}) (Version: 1.00.000 - )
Starshine 4.díl (HKLM-x32\...\{C4ECF493-29C4-4CB7-903E-90C28F3D0C00}) (Version: 1.00.000 - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.34161 - Microsoft Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.2.2756 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Vegas Pro 13.0 (64-bit) (HKLM-x32\...\Vegas Pro 13.0 (64-bit)) (Version: 13.0 (64-bit) - Exµs ™)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.154 - McAfee, LLC)
Windows Driver Package - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
youndoo - Uninstall (HKLM-x32\...\{3A9A11F8-6F05-47EF-B1C3-87FBD42441D7}) (Version: - ) <==== ATTENTION
Packages:
=========
Camera Man -> C:\Program Files\WindowsApps\E0469640.CameraMan_1.0.1929.30229_x86__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-30] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.25.9091.0_x86__q4d96b2w5wcc2 [2020-06-30] (Evernote)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-09-16] (Facebook Inc)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa [2020-09-22] (Apple Inc.) [Startup Task]
KONICA MINOLTA Print Experience -> C:\Program Files\WindowsApps\KONICAMINOLTAINC.KONICAMINOLTAPrintExperience_1.4.0.4_neutral__s63fsn2sety0r [2020-03-30] (KONICA MINOLTA INC)
Lenovo Recommends -> C:\Program Files\WindowsApps\E0469640.LenovoRecommends_1.5.14.117_x64__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2019-04-01] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2009.18.0_x64__k1h2ywk1493x8 [2020-09-27] (LENOVO INC.)
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2019-04-01] (FilmOn TV Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.11.6020.0_x64__8wekyb3d8bbwe [2020-06-17] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-09-07] (Microsoft Studios) [MS Ad]
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-30] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2019-04-01] (Microsoft Corporation) [MS Ad]
Phone Companion -> C:\Program Files\WindowsApps\E0469640.DeviceCollaboration_2.0.0.9_x64__5grkq8ppsgwt4 [2019-04-01] (LENOVO INC)
Svátky pro Windows 8 -> C:\Program Files\WindowsApps\9AABFA2B.Svtky_1.3.0.0_x64__grzn081tst3he [2019-04-01] (bezysoftware s.r.o.)
The Weather Channel for Lenovo -> C:\Program Files\WindowsApps\Weather.TheWeatherChannelforLenovo_2015.1013.1.0_x64__t3yemqpq4kp7p [2019-04-01] (The Weather Channel.)
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-04] (Microsoft Corporation)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2019-04-01] (TripAdvisor LLC)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-04-01] (Twitter Inc.)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2019-04-01] (Zinio LLC)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\ChromeHTML: -> "C:\Program Files (x86)\Antanna\Application\chrome.exe" "%1" <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{04271989-C4D2-71D3-CD68-494E6C3BF5A6} -> [OneDrive - Stredni skola KOSTKA s.r.o] => C:\Users\Tereza\OneDrive - Stredni skola KOSTKA s.r.o [2016-05-16 18:04]
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Tereza\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Tereza\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {48F04F78-DE45-11E6-8A81-64006A5CFC23} - C:\Users\Tereza\AppData\Roaming\Cligutainqerotain\Devaiedduberch.dll [148992 2017-01-31] () [File not signed] <==== ATTENTION
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-18] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-09-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2017-01-31 15:26 - 2017-01-31 15:26 - 000148992 _____ () [File not signed] C:\Users\Tereza\AppData\Roaming\Cligutainqerotain\Devaiedduberch.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131525701610402108&GUID=6621E8EC-E6A9-4FD2-9567-5F33119CB5BB
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {ED02269F-0BD1-4EC1-9187-C39A12FDA95C} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-10-02] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-09-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-10-02] (McAfee, LLC -> McAfee, LLC)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\sharepoint.com -> hxxps://kostkaskola.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 15:25 - 2019-01-29 11:47 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Lenovo\FusionEngine;C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\QuickTime\QTSystem\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tereza\Desktop\loved\collage\original (4).jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartupApproved\Run: => ""
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0FE93CCE-0EF7-44B0-95B6-5785218839AF}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{1EAEC615-85AF-4C4E-AE9C-74E334C7C041}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{F3914568-15BC-4C15-A8CD-9A57F0B788FB}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{8794EE1C-C5B9-4799-96F6-D7A640A72C7A}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8C854486-491E-4798-AF05-E8F12B6D9772}C:\users\tereza\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\tereza\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{D09FEC78-6988-4DD3-9E48-188314E1B1AA}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{0134EEF9-2780-4673-9E1A-F3CAE7BB2FFF}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{19DEE3B9-5A6D-4F0D-9B5E-038FCF020C65}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{48CA7A2B-03EF-413F-94B1-C2D2510B61AE}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B841FBC7-04BF-4E8F-8FDA-12CC8C0F436B}] => (Allow) C:\WINDOWS\explorer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D889C995-ADCD-4A6C-B875-76401F047FA5}] => (Allow) C:\WINDOWS\system32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{86EA0FE0-6E3E-4A54-BEFF-01C2980A63DB}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe (Gameforge 4D GmbH -> )
FirewallRules: [{65E4E080-CA1D-43AD-B926-E355D7A7F5EF}] => (Allow) C:\Users\Tereza\AppData\Roaming\uTorrent\uTorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{C31B188D-5ADE-418A-9E66-87B7FA14B96A}] => (Allow) C:\Users\Tereza\AppData\Roaming\uTorrent\uTorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{EB556B22-5B3F-41C2-8808-3D325D48BFE0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0CADCC02-D516-4FD3-9005-9C4EAD668BE8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B273E940-C01D-43E4-8BE8-8AFA29988281}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0305C2C3-519E-4006-A9CA-A1194592F3ED}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{06C71D49-2B06-4798-ABC2-31E9D82BA1E1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{15AEAAE5-DC6A-47F7-8BB1-AB98E8CE6C42}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{B88E4EDA-5F51-4ED1-A066-0FE8E2609F57}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{27987EB1-AA2A-4D46-9F29-79F21EE82042}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4F7E9582-42DC-4B6E-A851-37A170C91E33}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5410FF0C-98A7-4B3F-860A-D7F46D9AA31B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5ADB454A-D30F-4FE4-A7A3-81D64AE93266}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.63\opera.exe => No File
FirewallRules: [{E3101E10-D567-48BA-BBD8-EADAE5B694BB}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.104\opera.exe => No File
FirewallRules: [{7F08428C-C0CE-47C1-8D57-42D1DED2DDDB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{40E9EE48-1AFA-4356-BD08-1C97919E91B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{693C5ED7-FBA1-4F7A-B3BC-864F17442BFD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0A6C28E7-4409-4540-8A51-A32B7C78496D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B3BE4F51-B9C5-47C5-84B9-84E963905BB6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A5846C20-C4D4-4EC1-B1C0-F088FD1CF123}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A46E1523-74EA-4104-AE96-D547AF8EBCF3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F36DF6D8-5CAE-4D0A-9079-8DC70BEDFAD3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{887C0D10-00F1-4D1C-BF50-691DDBC22547}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6EA37137-81A7-4995-8772-637C29711FD3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{114409AF-6108-4896-9675-043E9A19371B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{13905A5C-CF4D-481A-A1D0-3E011A904902}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0EAA187A-B3B8-4EED-8B30-BC2A68F66AD5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DA39EF01-EF87-49B1-82B4-31C5F740B04C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
30-09-2020 20:29:00 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
Name: AVG TAP Adapter v3
Description: AVG TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: avgTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/09/2020 12:46:28 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11788,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/09/2020 12:34:19 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (17812,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/09/2020 12:26:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2828,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/09/2020 12:10:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Microsoft.Photos.exe verze 2020.20090.1002.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 45c4
Čas spuštění: 01d69e24399bfb8c
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20090.1002.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
ID hlášení: 86b38d0d-93b2-4b64-930d-4741d09d8b8f
Úplný název balíčku s chybou: Microsoft.Windows.Photos_2020.20090.1002.0_x64__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Cross-thread
Error: (10/09/2020 11:59:00 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (18360,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/09/2020 12:21:38 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (17380,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/08/2020 06:50:30 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16212,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (10/08/2020 06:44:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12880,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
System errors:
=============
Error: (10/09/2020 11:55:20 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby AGMService bylo dosaženo časového limitu (30000 ms).
Error: (10/09/2020 11:50:48 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Error: (10/09/2020 11:50:48 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Error: (10/09/2020 11:50:48 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Error: (10/09/2020 11:50:47 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Error: (10/08/2020 07:49:15 PM) (Source: DCOM) (EventID: 10010) (User: TERKA-PC)
Description: Server {D18705BE-FC2F-44C8-AEFF-1CD49AEA8FC1} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/08/2020 07:33:40 PM) (Source: DCOM) (EventID: 10010) (User: TERKA-PC)
Description: Server Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/08/2020 06:45:38 PM) (Source: NetBT) (EventID: 4319) (User: )
Description: V síti TCP byl zjištěn duplicitní název. Adresa IP počítače, který zprávu odeslal,
je uvedena v datech. Zadáte-li na příkazovém řádku příkaz nbtstat -n,
zjistíte, který název je v konfliktním stavu.
Windows Defender:
===================================
Date: 2020-02-29 15:56:20.914
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {A6C49F06-1383-4389-876B-7D6687014B5E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-02-21 19:58:33.252
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-21 19:57:36.229
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-21 19:56:17.951
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: Terka-PC\Tereza
Název procesu: C:\Program Files (x86)\PowerISO\PowerISO.exe
Verze bezpečnostních informací: AV: 1.309.1426.0, AS: 1.309.1426.0, NIS: 1.309.1426.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3
Date: 2020-02-20 17:05:30.479
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {81A28959-5268-4A20-8995-02222265E764}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-03-17 02:24:30.928
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.926
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.925
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.901
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-03-17 02:24:30.897
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.311.539.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
CodeIntegrity:
===================================
Date: 2020-10-09 12:44:38.078
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:44:00.968
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:55.299
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:51.007
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:48.486
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:44.830
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:41.344
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-09 12:43:33.832
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO A3CN31WW 07/25/2014
Motherboard: LENOVO Lenovo Flex 2-14
Processor: Intel(R) Pentium(R) CPU N3530 @ 2.16GHz
Percentage of memory in use: 80%
Total physical RAM: 3979.49 MB
Available physical RAM: 792.15 MB
Total Virtual: 6795.49 MB
Available Virtual: 1377.3 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:424.27 GB) (Free:176.1 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:9.7 GB) NTFS
\\?\Volume{f14a7205-da0a-48c3-aff6-bc8fd08afb78}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.67 GB) NTFS
\\?\Volume{492deddb-3ab3-4df7-b1fd-8ba949b22fcb}\ (PBR_DRV) (Fixed) (Total:14.16 GB) (Free:4.58 GB) NTFS
\\?\Volume{fbfac45b-043f-4cd4-a8e3-9afad87181f2}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 05905877)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 119395
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivka
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\ChromeHTML: -> "C:\Program Files (x86)\Antanna\Application\chrome.exe" "%1" <==== ATTENTION
ShellExecuteHooks: No Name - {48F04F78-DE45-11E6-8A81-64006A5CFC23} - C:\Users\Tereza\AppData\Roaming\Cligutainqerotain\Devaiedduberch.dll [148992 2017-01-31] () [File not signed] <==== ATTENTION
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {ED02269F-0BD1-4EC1-9187-C39A12FDA95C} URL =
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
FirewallRules: [{5ADB454A-D30F-4FE4-A7A3-81D64AE93266}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.63\opera.exe => No File
FirewallRules: [{E3101E10-D567-48BA-BBD8-EADAE5B694BB}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.104\opera.exe => No File
C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: E - "E:\PXRoute.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: H - "H:\setup.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: {ee7d36a9-615d-11ea-83c5-d0534960e580} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Providers\8gfhpci5: C:\Program Files (x86)\Prdather Configuration\local64spl.dll <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {26619C70-DEA2-46B9-8744-653845D30585} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {609545C4-98B1-4687-92F5-7DC25595CDDF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {685D5CF0-FC92-4717-AECE-97CFDD6DD98C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {6A8CB1F5-68A8-4DBF-9B6F-70ask: {6DECDCE57F8A} - \WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001 -> No File <==== ATTENTION
Task: {6F6B3A0D-C74E-44BE-AC77-5777FAD7914E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {3D869F6F-F593-41E4-B7F9-CA7603C7FD93} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b313ccf52e91 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {7BE7F0B0-2FDF-4007-BF60-E778A7A9179B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {85456F8F-BD42-470E-86E9-AA8EF967008D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A4FB906B-5704-4635-98C7-DC1CD4190593} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {B1504F69-8600-4346-BEAA-1FB1116B2B82} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B1D08757-3EAC-4C74-9399-ED733EEBF2B9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {BCC8B832-3390-4217-96C9-BC531822083D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C656CAE4-42D4-4599-BF0D-67A6158B8960} - System32\Tasks\{5140B943-8CC7-4365-8048-11FD9D0E6A0B} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Harry Potter a Tajemná komnata\system\Game.exe" -d C:\PROGRA~2\EAGAME~1\HARRYP~1
Task: {C6C0A02F-4DEF-41AF-82A7-DA138B1D892D} - System32\Tasks\{4499C407-8224-4494-8BD9-F74401EDD645} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\GameforgeLive\Games\CZE_ces\4Story\unins000.exe"
Task: {DBECC934-51C2-4BC0-A5D4-561D0717F9E4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {DC0E7D48-9301-449A-B6E2-7B84BA2B47B9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DD158EA7-E62F-4827-BECE-4CD6ECFEFE81} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {DF348033-6E46-448E-91BC-24AFA900877E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-10-09] <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Antanna\Application\chrome.exe <==== ATTENTION
C:\Users\Tereza\AppData\Local\{43CC2DB6-C910-4B5B-9112-5E75706FB958}
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivka
Fix result of Farbar Recovery Scan Tool (x64) Version: 11-10-2020
Ran by Tereza (14-10-2020 10:01:34) Run:1
Running from C:\Users\Tereza\Desktop
Loaded Profiles: Tereza
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\ChromeHTML: -> "C:\Program Files (x86)\Antanna\Application\chrome.exe" "%1" <==== ATTENTION
ShellExecuteHooks: No Name - {48F04F78-DE45-11E6-8A81-64006A5CFC23} - C:\Users\Tereza\AppData\Roaming\Cligutainqerotain\Devaiedduberch.dll [148992 2017-01-31] () [File not signed] <==== ATTENTION
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {ED02269F-0BD1-4EC1-9187-C39A12FDA95C} URL =
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
FirewallRules: [{5ADB454A-D30F-4FE4-A7A3-81D64AE93266}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.63\opera.exe => No File
FirewallRules: [{E3101E10-D567-48BA-BBD8-EADAE5B694BB}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.104\opera.exe => No File
C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: E - "E:\PXRoute.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: H - "H:\setup.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: {ee7d36a9-615d-11ea-83c5-d0534960e580} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Providers\8gfhpci5: C:\Program Files (x86)\Prdather Configuration\local64spl.dll <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {26619C70-DEA2-46B9-8744-653845D30585} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {609545C4-98B1-4687-92F5-7DC25595CDDF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {685D5CF0-FC92-4717-AECE-97CFDD6DD98C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {6A8CB1F5-68A8-4DBF-9B6F-70ask: {6DECDCE57F8A} - \WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001 -> No File <==== ATTENTION
Task: {6F6B3A0D-C74E-44BE-AC77-5777FAD7914E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {3D869F6F-F593-41E4-B7F9-CA7603C7FD93} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b313ccf52e91 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {7BE7F0B0-2FDF-4007-BF60-E778A7A9179B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {85456F8F-BD42-470E-86E9-AA8EF967008D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A4FB906B-5704-4635-98C7-DC1CD4190593} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {B1504F69-8600-4346-BEAA-1FB1116B2B82} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B1D08757-3EAC-4C74-9399-ED733EEBF2B9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {BCC8B832-3390-4217-96C9-BC531822083D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C656CAE4-42D4-4599-BF0D-67A6158B8960} - System32\Tasks\{5140B943-8CC7-4365-8048-11FD9D0E6A0B} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Harry Potter a Tajemná komnata\system\Game.exe" -d C:\PROGRA~2\EAGAME~1\HARRYP~1
Task: {C6C0A02F-4DEF-41AF-82A7-DA138B1D892D} - System32\Tasks\{4499C407-8224-4494-8BD9-F74401EDD645} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\GameforgeLive\Games\CZE_ces\4Story\unins000.exe"
Task: {DBECC934-51C2-4BC0-A5D4-561D0717F9E4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {DC0E7D48-9301-449A-B6E2-7B84BA2B47B9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DD158EA7-E62F-4827-BECE-4CD6ECFEFE81} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {DF348033-6E46-448E-91BC-24AFA900877E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-10-09] <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Antanna\Application\chrome.exe <==== ATTENTION
C:\Users\Tereza\AppData\Local\{43CC2DB6-C910-4B5B-9112-5E75706FB958}
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\ChromeHTML => removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{48F04F78-DE45-11E6-8A81-64006A5CFC23}" => removed successfully
HKLM\Software\Classes\CLSID\{48F04F78-DE45-11E6-8A81-64006A5CFC23} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Glary Utilities => removed successfully
HKLM\Software\Classes\CLSID\{B3C418F8-922B-4faf-915E-59BC14448CF7} => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\Glary Utilities => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Glary Utilities => removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
"HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => removed successfully
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ED02269F-0BD1-4EC1-9187-C39A12FDA95C} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully
HKLM\Software\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5ADB454A-D30F-4FE4-A7A3-81D64AE93266}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E3101E10-D567-48BA-BBD8-EADAE5B694BB}" => removed successfully
"C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe" => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Windows\CurrentVersion\Policies\system\\Shell" => removed successfully
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E => not found
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H => not found
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee7d36a9-615d-11ea-83c5-d0534960e580} => not found
HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\8gfhpci5 => removed successfully
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\\order 8gfhpci5" => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{26619C70-DEA2-46B9-8744-653845D30585}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{26619C70-DEA2-46B9-8744-653845D30585}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{609545C4-98B1-4687-92F5-7DC25595CDDF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{609545C4-98B1-4687-92F5-7DC25595CDDF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{685D5CF0-FC92-4717-AECE-97CFDD6DD98C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{685D5CF0-FC92-4717-AECE-97CFDD6DD98C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\Task: {6A8CB1F5-68A8-4DBF-9B6F-70ask: {6DECDCE57F8A} - \WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001 -> No File <==== ATTENTION" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6F6B3A0D-C74E-44BE-AC77-5777FAD7914E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6F6B3A0D-C74E-44BE-AC77-5777FAD7914E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3D869F6F-F593-41E4-B7F9-CA7603C7FD93}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D869F6F-F593-41E4-B7F9-CA7603C7FD93}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0b313ccf52e91 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d0b313ccf52e91" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7BE7F0B0-2FDF-4007-BF60-E778A7A9179B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7BE7F0B0-2FDF-4007-BF60-E778A7A9179B}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{85456F8F-BD42-470E-86E9-AA8EF967008D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{85456F8F-BD42-470E-86E9-AA8EF967008D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A4FB906B-5704-4635-98C7-DC1CD4190593}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4FB906B-5704-4635-98C7-DC1CD4190593}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B1504F69-8600-4346-BEAA-1FB1116B2B82}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1504F69-8600-4346-BEAA-1FB1116B2B82}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1D08757-3EAC-4C74-9399-ED733EEBF2B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1D08757-3EAC-4C74-9399-ED733EEBF2B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BCC8B832-3390-4217-96C9-BC531822083D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCC8B832-3390-4217-96C9-BC531822083D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C656CAE4-42D4-4599-BF0D-67A6158B8960}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C656CAE4-42D4-4599-BF0D-67A6158B8960}" => removed successfully
C:\WINDOWS\System32\Tasks\{5140B943-8CC7-4365-8048-11FD9D0E6A0B} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5140B943-8CC7-4365-8048-11FD9D0E6A0B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C6C0A02F-4DEF-41AF-82A7-DA138B1D892D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6C0A02F-4DEF-41AF-82A7-DA138B1D892D}" => removed successfully
C:\WINDOWS\System32\Tasks\{4499C407-8224-4494-8BD9-F74401EDD645} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4499C407-8224-4494-8BD9-F74401EDD645}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DBECC934-51C2-4BC0-A5D4-561D0717F9E4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DBECC934-51C2-4BC0-A5D4-561D0717F9E4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DC0E7D48-9301-449A-B6E2-7B84BA2B47B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DC0E7D48-9301-449A-B6E2-7B84BA2B47B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DD158EA7-E62F-4827-BECE-4CD6ECFEFE81}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD158EA7-E62F-4827-BECE-4CD6ECFEFE81}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DF348033-6E46-448E-91BC-24AFA900877E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF348033-6E46-448E-91BC-24AFA900877E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData => moved successfully
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Clients\StartMenuInternet\ChromeHTML => removed successfully
C:\Users\Tereza\AppData\Local\{43CC2DB6-C910-4B5B-9112-5E75706FB958} => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24445242 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 2702303 B
Edge => 7680 B
Chrome => 1090704 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 29308 B
Users => 29308 B
ProgramData => 29308 B
Public => 29308 B
systemprofile => 29308 B
systemprofile32 => 29308 B
LocalService => 37816 B
NetworkService => 39002 B
Tereza => 6006395 B
RecycleBin => 464512265 B
EmptyTemp: => 486.2 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 10:03:56 ====
Ran by Tereza (14-10-2020 10:01:34) Run:1
Running from C:\Users\Tereza\Desktop
Loaded Profiles: Tereza
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\ChromeHTML: -> "C:\Program Files (x86)\Antanna\Application\chrome.exe" "%1" <==== ATTENTION
ShellExecuteHooks: No Name - {48F04F78-DE45-11E6-8A81-64006A5CFC23} - C:\Users\Tereza\AppData\Roaming\Cligutainqerotain\Devaiedduberch.dll [148992 2017-01-31] () [File not signed] <==== ATTENTION
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE15
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-2380088464-113028033-3958389239-1001 -> {ED02269F-0BD1-4EC1-9187-C39A12FDA95C} URL =
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
FirewallRules: [{5ADB454A-D30F-4FE4-A7A3-81D64AE93266}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.63\opera.exe => No File
FirewallRules: [{E3101E10-D567-48BA-BBD8-EADAE5B694BB}] => (Allow) C:\Users\Tereza\AppData\Local\Programs\Opera\68.0.3618.104\opera.exe => No File
C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: E - "E:\PXRoute.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: H - "H:\setup.exe"
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\MountPoints2: {ee7d36a9-615d-11ea-83c5-d0534960e580} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Providers\8gfhpci5: C:\Program Files (x86)\Prdather Configuration\local64spl.dll <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {26619C70-DEA2-46B9-8744-653845D30585} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {609545C4-98B1-4687-92F5-7DC25595CDDF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {685D5CF0-FC92-4717-AECE-97CFDD6DD98C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {6A8CB1F5-68A8-4DBF-9B6F-70ask: {6DECDCE57F8A} - \WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001 -> No File <==== ATTENTION
Task: {6F6B3A0D-C74E-44BE-AC77-5777FAD7914E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {3D869F6F-F593-41E4-B7F9-CA7603C7FD93} - System32\Tasks\GoogleUpdateTaskMachineUA1d0b313ccf52e91 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {7BE7F0B0-2FDF-4007-BF60-E778A7A9179B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-30] (Google Inc -> Google Inc.)
Task: {85456F8F-BD42-470E-86E9-AA8EF967008D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A4FB906B-5704-4635-98C7-DC1CD4190593} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {B1504F69-8600-4346-BEAA-1FB1116B2B82} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B1D08757-3EAC-4C74-9399-ED733EEBF2B9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {BCC8B832-3390-4217-96C9-BC531822083D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C656CAE4-42D4-4599-BF0D-67A6158B8960} - System32\Tasks\{5140B943-8CC7-4365-8048-11FD9D0E6A0B} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Harry Potter a Tajemná komnata\system\Game.exe" -d C:\PROGRA~2\EAGAME~1\HARRYP~1
Task: {C6C0A02F-4DEF-41AF-82A7-DA138B1D892D} - System32\Tasks\{4499C407-8224-4494-8BD9-F74401EDD645} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\GameforgeLive\Games\CZE_ces\4Story\unins000.exe"
Task: {DBECC934-51C2-4BC0-A5D4-561D0717F9E4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {DC0E7D48-9301-449A-B6E2-7B84BA2B47B9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DD158EA7-E62F-4827-BECE-4CD6ECFEFE81} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {DF348033-6E46-448E-91BC-24AFA900877E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
CHR Profile: C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-10-09] <==== ATTENTION
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Antanna\Application\chrome.exe <==== ATTENTION
C:\Users\Tereza\AppData\Local\{43CC2DB6-C910-4B5B-9112-5E75706FB958}
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-2380088464-113028033-3958389239-1001_Classes\ChromeHTML => removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{48F04F78-DE45-11E6-8A81-64006A5CFC23}" => removed successfully
HKLM\Software\Classes\CLSID\{48F04F78-DE45-11E6-8A81-64006A5CFC23} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Glary Utilities => removed successfully
HKLM\Software\Classes\CLSID\{B3C418F8-922B-4faf-915E-59BC14448CF7} => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\Glary Utilities => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Glary Utilities => removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
"HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => removed successfully
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ED02269F-0BD1-4EC1-9187-C39A12FDA95C} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully
HKLM\Software\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5ADB454A-D30F-4FE4-A7A3-81D64AE93266}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E3101E10-D567-48BA-BBD8-EADAE5B694BB}" => removed successfully
"C:\Users\Tereza\Desktop\ho\HATRED\keygen.exe" => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKU\S-1-5-21-2380088464-113028033-3958389239-1001\Software\Microsoft\Windows\CurrentVersion\Policies\system\\Shell" => removed successfully
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E => not found
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H => not found
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee7d36a9-615d-11ea-83c5-d0534960e580} => not found
HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\8gfhpci5 => removed successfully
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\\order 8gfhpci5" => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{26619C70-DEA2-46B9-8744-653845D30585}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{26619C70-DEA2-46B9-8744-653845D30585}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{609545C4-98B1-4687-92F5-7DC25595CDDF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{609545C4-98B1-4687-92F5-7DC25595CDDF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{685D5CF0-FC92-4717-AECE-97CFDD6DD98C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{685D5CF0-FC92-4717-AECE-97CFDD6DD98C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\Task: {6A8CB1F5-68A8-4DBF-9B6F-70ask: {6DECDCE57F8A} - \WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001 -> No File <==== ATTENTION" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-2380088464-113028033-3958389239-1001" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6F6B3A0D-C74E-44BE-AC77-5777FAD7914E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6F6B3A0D-C74E-44BE-AC77-5777FAD7914E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3D869F6F-F593-41E4-B7F9-CA7603C7FD93}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D869F6F-F593-41E4-B7F9-CA7603C7FD93}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0b313ccf52e91 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d0b313ccf52e91" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7BE7F0B0-2FDF-4007-BF60-E778A7A9179B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7BE7F0B0-2FDF-4007-BF60-E778A7A9179B}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{85456F8F-BD42-470E-86E9-AA8EF967008D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{85456F8F-BD42-470E-86E9-AA8EF967008D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A4FB906B-5704-4635-98C7-DC1CD4190593}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4FB906B-5704-4635-98C7-DC1CD4190593}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6A5555F-0F1F-4DA8-9D00-6DADCD7E853C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B1504F69-8600-4346-BEAA-1FB1116B2B82}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1504F69-8600-4346-BEAA-1FB1116B2B82}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1D08757-3EAC-4C74-9399-ED733EEBF2B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1D08757-3EAC-4C74-9399-ED733EEBF2B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BCC8B832-3390-4217-96C9-BC531822083D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCC8B832-3390-4217-96C9-BC531822083D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C656CAE4-42D4-4599-BF0D-67A6158B8960}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C656CAE4-42D4-4599-BF0D-67A6158B8960}" => removed successfully
C:\WINDOWS\System32\Tasks\{5140B943-8CC7-4365-8048-11FD9D0E6A0B} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5140B943-8CC7-4365-8048-11FD9D0E6A0B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C6C0A02F-4DEF-41AF-82A7-DA138B1D892D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6C0A02F-4DEF-41AF-82A7-DA138B1D892D}" => removed successfully
C:\WINDOWS\System32\Tasks\{4499C407-8224-4494-8BD9-F74401EDD645} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4499C407-8224-4494-8BD9-F74401EDD645}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DBECC934-51C2-4BC0-A5D4-561D0717F9E4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DBECC934-51C2-4BC0-A5D4-561D0717F9E4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DC0E7D48-9301-449A-B6E2-7B84BA2B47B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DC0E7D48-9301-449A-B6E2-7B84BA2B47B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DD158EA7-E62F-4827-BECE-4CD6ECFEFE81}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD158EA7-E62F-4827-BECE-4CD6ECFEFE81}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DF348033-6E46-448E-91BC-24AFA900877E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF348033-6E46-448E-91BC-24AFA900877E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
C:\Users\Tereza\AppData\Local\Google\Chrome\User Data\ChromeDefaultData => moved successfully
HKU\S-1-5-21-2380088464-113028033-3958389239-1001\SOFTWARE\Clients\StartMenuInternet\ChromeHTML => removed successfully
C:\Users\Tereza\AppData\Local\{43CC2DB6-C910-4B5B-9112-5E75706FB958} => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24445242 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 2702303 B
Edge => 7680 B
Chrome => 1090704 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 29308 B
Users => 29308 B
ProgramData => 29308 B
Public => 29308 B
systemprofile => 29308 B
systemprofile32 => 29308 B
LocalService => 37816 B
NetworkService => 39002 B
Tereza => 6006395 B
RecycleBin => 464512265 B
EmptyTemp: => 486.2 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 10:03:56 ====
-
Rudy
- Site Admin
- Příspěvky: 119395
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivka
Smazáno. Zrychlil se NB?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivka
Ano, děkuji moc, je to daleko lepší:)
-
Rudy
- Site Admin
- Příspěvky: 119395
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivka
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?