Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
sekajú streamy
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
sekajú streamy
prosím o kontrolu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03.03.2019 01
Ran by saullerist (administrator) on DESKTOP-3SMP07F (05-03-2019 14:14:48)
Running from C:\Users\saullerist\Downloads
Loaded Profiles: saullerist (Available Profiles: saullerist)
Platform: Windows 10 Home Version 1809 17763.316 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.71.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20453.0_x64__8wekyb3d8bbwe\YourPhone.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19021.10411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.71.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.71.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_2.26.28001.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46504696 2018-12-07] (Google Inc -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe [2019-03-05] (Google LLC -> Google Inc.)
Startup: C:\Users\saullerist\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odoslanie do aplikácie OneNote.lnk [2018-01-25]
ShortcutTarget: Odoslanie do aplikácie OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6f775dc0-2278-405d-8f3d-3e457ae63af2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7244c322-f1af-4106-b553-eab76454f908}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{996f449f-9a9e-4b6b-b51f-abdf64df7f30}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{9dfcf0d8-e52f-4e05-8126-662ce4070db5}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-1796023744-1759536030-3900380101-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-11-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 1rbvxtvy.default-1488821519198-1549379021480
FF ProfilePath: C:\Users\saullerist\AppData\Roaming\Mozilla\Firefox\Profiles\1rbvxtvy.default-1488821519198-1549379021480 [2019-03-05]
FF Homepage: Mozilla\Firefox\Profiles\1rbvxtvy.default-1488821519198-1549379021480 -> www.google.sk
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-09-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-03-05]
CHR Extension: (Prezentácie) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-17]
CHR Extension: (Magio GO) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\anoiechkjklgabdfompidjolhpfdpjdd [2019-03-05]
CHR Extension: (Dokumenty) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-17]
CHR Extension: (Disk Google) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-17]
CHR Extension: (YouTube) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-17]
CHR Extension: (Tabuľky) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-17]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-29]
CHR Extension: (VisualOn Chrome Plugin Helper) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\icnlblaamineciagcjhkkgeinkpiebhe [2019-03-05]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-04-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05]
CHR Extension: (Gmail) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-17]
CHR Extension: (Chrome Media Router) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-17]
CHR HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [icnlblaamineciagcjhkkgeinkpiebhe] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [255472 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11013280 2019-02-07] (Microsoft Corporation -> Microsoft Corporation)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-08-23] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-05-04] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 a016bus; C:\WINDOWS\System32\drivers\a016bus.sys [109096 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 a016mgmt; C:\WINDOWS\System32\drivers\a016mgmt.sys [130600 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 a016obex; C:\WINDOWS\System32\drivers\a016obex.sys [125480 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21648880 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [674288 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 FwLnk; C:\WINDOWS\System32\drivers\FwLnk.sys [9216 2009-07-07] (Microsoft Windows Hardware Compatibility Publisher -> TOSHIBA Corporation)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2018-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2018-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [121344 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Co., Ltd.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [274416 2019-03-05] (Malwarebytes Corporation -> Malwarebytes)
R3 rtl8192se; C:\WINDOWS\System32\drivers\rtl8192se.sys [1222656 2018-09-15] (Microsoft Windows -> Realtek Semiconductor Corporation )
S3 s0016bus; C:\WINDOWS\System32\drivers\s0016bus.sys [115240 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016mgmt; C:\WINDOWS\System32\drivers\s0016mgmt.sys [137256 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016obex; C:\WINDOWS\System32\drivers\s0016obex.sys [136744 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016unic; C:\WINDOWS\System32\drivers\s0016unic.sys [151592 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017bus; C:\WINDOWS\System32\drivers\s0017bus.sys [113704 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017mgmt; C:\WINDOWS\System32\drivers\s0017mgmt.sys [133160 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017obex; C:\WINDOWS\System32\drivers\s0017obex.sys [128552 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017unic; C:\WINDOWS\System32\drivers\s0017unic.sys [145960 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018bus; C:\WINDOWS\System32\drivers\s1018bus.sys [113704 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018mgmt; C:\WINDOWS\System32\drivers\s1018mgmt.sys [133160 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018obex; C:\WINDOWS\System32\drivers\s1018obex.sys [128552 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018unic; C:\WINDOWS\System32\drivers\s1018unic.sys [146472 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029bus; C:\WINDOWS\System32\drivers\s1029bus.sys [116264 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029mgmt; C:\WINDOWS\System32\drivers\s1029mgmt.sys [139304 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029obex; C:\WINDOWS\System32\drivers\s1029obex.sys [135208 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029unic; C:\WINDOWS\System32\drivers\s1029unic.sys [151592 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039mgmt; C:\WINDOWS\System32\drivers\s1039mgmt.sys [141424 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039obex; C:\WINDOWS\System32\drivers\s1039obex.sys [137328 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039unic; C:\WINDOWS\System32\drivers\s1039unic.sys [158320 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916bus; C:\WINDOWS\System32\drivers\s916bus.sys [108072 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916mgmt; C:\WINDOWS\System32\drivers\s916mgmt.sys [130088 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916obex; C:\WINDOWS\System32\drivers\s916obex.sys [124968 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 se3ebus; C:\WINDOWS\System32\drivers\se3ebus.sys [107784 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 se3emgmt; C:\WINDOWS\System32\drivers\se3emgmt.sys [126216 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 se3eobex; C:\WINDOWS\System32\drivers\se3eobex.sys [123144 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [42184 2015-06-12] (Synaptics Incorporated -> Synaptics Incorporated)
S3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [51392 2016-11-23] (Synaptics Incorporated -> Synaptics Incorporated)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [45728 2015-10-07] (TOSHIBA CORPORATION -> Toshiba Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [333792 2019-02-22] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-22] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-03-05 14:14 - 2019-03-05 14:16 - 000020361 _____ C:\Users\saullerist\Downloads\FRST.txt
2019-03-05 14:14 - 2019-03-05 14:14 - 002434560 _____ (Farbar) C:\Users\saullerist\Downloads\FRST64.exe
2019-03-05 14:14 - 2019-03-05 14:14 - 000000000 ____D C:\FRST
2019-03-01 10:44 - 2019-03-05 13:33 - 000274416 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-03-01 10:44 - 2019-03-01 10:44 - 000001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-03-01 10:44 - 2019-03-01 10:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-03-01 10:44 - 2019-02-01 11:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-03-01 10:44 - 2019-01-08 15:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-03-01 10:43 - 2019-03-01 10:43 - 000000000 ____D C:\Program Files\Malwarebytes
2019-02-13 21:29 - 2019-03-01 10:43 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-02-13 10:10 - 2019-02-13 10:10 - 026807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 023439360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 020812288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 019284480 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 019023872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 008875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 007897088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 007724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 006070272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 005584864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 005440008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 005112792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 004885504 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 004688896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 003922944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002469648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002392576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002278448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001309184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001282640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001259024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-02-13 10:10 - 2019-02-13 10:10 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000762272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000522312 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-02-13 10:10 - 2019-02-13 10:10 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000421904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-02-13 10:10 - 2019-02-13 10:10 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2019-02-13 10:10 - 2019-02-13 10:10 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-02-13 10:10 - 2019-02-13 10:10 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlahc.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMon.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 006540424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 005565952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 005205464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 004526080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 004019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 002927120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 002776920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 002702528 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 002626592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 002072728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001969680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001700864 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001696936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-02-13 10:09 - 2019-02-13 10:09 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001671864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001467560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001467384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 001446400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001341584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-02-13 10:09 - 2019-02-13 10:09 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001271608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001178344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 001168384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 000982032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000726208 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000652320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000649272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000588304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000496872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000475152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-02-13 10:09 - 2019-02-13 10:09 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000277536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000262672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000146888 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000121872 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000091424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nslookup.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-02-13 10:08 - 2019-02-13 10:09 - 022111856 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 009683984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 005561856 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 005527552 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 004991096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 004702704 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 004298752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 003386368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002992640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002766136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002721280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002187264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002149368 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002085376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001700880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001604096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001533440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001331744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 001221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 001209360 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001054200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000982576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000970256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000864056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000850968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000822448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000806560 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-02-13 10:08 - 2019-02-13 10:08 - 000806560 _____ C:\WINDOWS\system32\locale.nls
2019-02-13 10:08 - 2019-02-13 10:08 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000765960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000752136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000651304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000629576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000612368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000604552 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000419128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000408800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000353488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000298296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000276488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTF.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000203280 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MTF.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000148480 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000132104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000114856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000097592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000047136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2019-02-13 10:07 - 2019-02-13 10:08 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-02-11 20:46 - 2019-02-12 13:38 - 000000000 ____D C:\WINDOWS\Minidump
2019-02-05 16:03 - 2019-03-05 12:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-02-05 16:03 - 2019-03-05 12:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-02-05 16:03 - 2019-03-01 09:47 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-02-05 12:23 - 2019-02-05 16:04 - 000000000 ____D C:\Users\saullerist\AppData\Roaming\Opera Software
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-03-05 14:09 - 2016-11-15 19:57 - 000000000 ____D C:\Users\saullerist\AppData\LocalLow\Mozilla
2019-03-05 14:06 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-05 13:32 - 2018-10-04 11:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-03-05 13:32 - 2018-10-04 11:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-03-05 12:43 - 2018-10-04 10:21 - 000000000 ____D C:\Users\saullerist
2019-03-05 11:00 - 2017-06-19 16:37 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-04 11:20 - 2017-10-18 09:41 - 000000000 ____D C:\Users\saullerist\AppData\Local\Packages
2019-03-02 11:57 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-03-02 10:37 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-03-01 10:44 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-03-01 10:01 - 2016-01-12 10:47 - 000000000 ___RD C:\Users\saullerist\Disk Google
2019-02-28 14:48 - 2018-09-15 07:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-02-27 10:18 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-02-22 18:49 - 2018-03-01 10:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-02-15 13:19 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-02-15 13:17 - 2016-11-18 19:49 - 000000000 ____D C:\Program Files\Microsoft Office
2019-02-14 13:16 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-02-13 10:40 - 2018-10-04 11:16 - 008633114 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-02-13 10:40 - 2016-11-28 17:10 - 005907070 _____ C:\WINDOWS\system32\perfh01B.dat
2019-02-13 10:40 - 2016-11-28 17:10 - 001760776 _____ C:\WINDOWS\system32\perfc01B.dat
2019-02-13 10:34 - 2017-07-15 16:50 - 000000000 ___RD C:\Users\saullerist\3D Objects
2019-02-13 10:34 - 2016-01-05 16:03 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-02-13 10:33 - 2018-10-04 11:02 - 000437632 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-02-13 10:31 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-02-13 10:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-02-13 10:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-02-13 10:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-02-13 10:14 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-02-13 09:56 - 2016-11-18 18:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-02-13 09:53 - 2016-11-28 16:54 - 129330784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-02-08 13:34 - 2018-07-19 08:34 - 000000000 ____D C:\ProgramData\Packages
2019-02-07 21:49 - 2018-09-16 16:02 - 000000000 ____D C:\Program Files\CCleaner
2019-02-05 16:05 - 2017-05-12 12:30 - 000000000 ____D C:\Users\saullerist\AppData\Local\Opera Software
2019-02-04 11:28 - 2018-10-04 08:33 - 000000000 ___DC C:\WINDOWS\Panther
2019-02-04 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
==================== Files in the root of some directories =======
2017-07-31 10:22 - 2017-07-31 10:22 - 000029696 _____ () C:\Users\saullerist\AppData\Local\MSGBOX.EXE
2017-10-18 09:16 - 2018-12-05 20:23 - 000007597 _____ () C:\Users\saullerist\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
2019-03-01 10:42 - 2019-03-01 10:43 - 062158736 _____ (Malwarebytes ) C:\Users\saullerist\AppData\Local\Temp\mb3-setup-adwc.adwc1003.7.1.2839-1.0.538-1.0.9430.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03.03.2019 01
Ran by saullerist (administrator) on DESKTOP-3SMP07F (05-03-2019 14:14:48)
Running from C:\Users\saullerist\Downloads
Loaded Profiles: saullerist (Available Profiles: saullerist)
Platform: Windows 10 Home Version 1809 17763.316 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.71.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20453.0_x64__8wekyb3d8bbwe\YourPhone.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19021.10411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.71.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.71.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_2.26.28001.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46504696 2018-12-07] (Google Inc -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe [2019-03-05] (Google LLC -> Google Inc.)
Startup: C:\Users\saullerist\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odoslanie do aplikácie OneNote.lnk [2018-01-25]
ShortcutTarget: Odoslanie do aplikácie OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6f775dc0-2278-405d-8f3d-3e457ae63af2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7244c322-f1af-4106-b553-eab76454f908}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{996f449f-9a9e-4b6b-b51f-abdf64df7f30}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{9dfcf0d8-e52f-4e05-8126-662ce4070db5}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-1796023744-1759536030-3900380101-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-11-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-04] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 1rbvxtvy.default-1488821519198-1549379021480
FF ProfilePath: C:\Users\saullerist\AppData\Roaming\Mozilla\Firefox\Profiles\1rbvxtvy.default-1488821519198-1549379021480 [2019-03-05]
FF Homepage: Mozilla\Firefox\Profiles\1rbvxtvy.default-1488821519198-1549379021480 -> www.google.sk
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-09-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-03-05]
CHR Extension: (Prezentácie) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-17]
CHR Extension: (Magio GO) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\anoiechkjklgabdfompidjolhpfdpjdd [2019-03-05]
CHR Extension: (Dokumenty) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-17]
CHR Extension: (Disk Google) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-17]
CHR Extension: (YouTube) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-17]
CHR Extension: (Tabuľky) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-17]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-29]
CHR Extension: (VisualOn Chrome Plugin Helper) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\icnlblaamineciagcjhkkgeinkpiebhe [2019-03-05]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-04-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05]
CHR Extension: (Gmail) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-17]
CHR Extension: (Chrome Media Router) - C:\Users\saullerist\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-17]
CHR HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [icnlblaamineciagcjhkkgeinkpiebhe] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [255472 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11013280 2019-02-07] (Microsoft Corporation -> Microsoft Corporation)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-08-23] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-05-04] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 a016bus; C:\WINDOWS\System32\drivers\a016bus.sys [109096 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 a016mgmt; C:\WINDOWS\System32\drivers\a016mgmt.sys [130600 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 a016obex; C:\WINDOWS\System32\drivers\a016obex.sys [125480 2008-01-18] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21648880 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [674288 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 FwLnk; C:\WINDOWS\System32\drivers\FwLnk.sys [9216 2009-07-07] (Microsoft Windows Hardware Compatibility Publisher -> TOSHIBA Corporation)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2018-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2018-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [121344 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Co., Ltd.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [274416 2019-03-05] (Malwarebytes Corporation -> Malwarebytes)
R3 rtl8192se; C:\WINDOWS\System32\drivers\rtl8192se.sys [1222656 2018-09-15] (Microsoft Windows -> Realtek Semiconductor Corporation )
S3 s0016bus; C:\WINDOWS\System32\drivers\s0016bus.sys [115240 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016mgmt; C:\WINDOWS\System32\drivers\s0016mgmt.sys [137256 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016obex; C:\WINDOWS\System32\drivers\s0016obex.sys [136744 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016unic; C:\WINDOWS\System32\drivers\s0016unic.sys [151592 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017bus; C:\WINDOWS\System32\drivers\s0017bus.sys [113704 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017mgmt; C:\WINDOWS\System32\drivers\s0017mgmt.sys [133160 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017obex; C:\WINDOWS\System32\drivers\s0017obex.sys [128552 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017unic; C:\WINDOWS\System32\drivers\s0017unic.sys [145960 2008-10-21] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018bus; C:\WINDOWS\System32\drivers\s1018bus.sys [113704 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018mgmt; C:\WINDOWS\System32\drivers\s1018mgmt.sys [133160 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018obex; C:\WINDOWS\System32\drivers\s1018obex.sys [128552 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018unic; C:\WINDOWS\System32\drivers\s1018unic.sys [146472 2009-03-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029bus; C:\WINDOWS\System32\drivers\s1029bus.sys [116264 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029mgmt; C:\WINDOWS\System32\drivers\s1029mgmt.sys [139304 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029obex; C:\WINDOWS\System32\drivers\s1029obex.sys [135208 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1029unic; C:\WINDOWS\System32\drivers\s1029unic.sys [151592 2009-05-25] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039mgmt; C:\WINDOWS\System32\drivers\s1039mgmt.sys [141424 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039obex; C:\WINDOWS\System32\drivers\s1039obex.sys [137328 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039unic; C:\WINDOWS\System32\drivers\s1039unic.sys [158320 2010-03-15] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916bus; C:\WINDOWS\System32\drivers\s916bus.sys [108072 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916mgmt; C:\WINDOWS\System32\drivers\s916mgmt.sys [130088 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s916obex; C:\WINDOWS\System32\drivers\s916obex.sys [124968 2007-11-02] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 se3ebus; C:\WINDOWS\System32\drivers\se3ebus.sys [107784 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 se3emgmt; C:\WINDOWS\System32\drivers\se3emgmt.sys [126216 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 se3eobex; C:\WINDOWS\System32\drivers\se3eobex.sys [123144 2007-04-10] (MCCI Corporation -> MCCI Corporation)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [42184 2015-06-12] (Synaptics Incorporated -> Synaptics Incorporated)
S3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [51392 2016-11-23] (Synaptics Incorporated -> Synaptics Incorporated)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [45728 2015-10-07] (TOSHIBA CORPORATION -> Toshiba Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [333792 2019-02-22] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-22] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-03-05 14:14 - 2019-03-05 14:16 - 000020361 _____ C:\Users\saullerist\Downloads\FRST.txt
2019-03-05 14:14 - 2019-03-05 14:14 - 002434560 _____ (Farbar) C:\Users\saullerist\Downloads\FRST64.exe
2019-03-05 14:14 - 2019-03-05 14:14 - 000000000 ____D C:\FRST
2019-03-01 10:44 - 2019-03-05 13:33 - 000274416 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-03-01 10:44 - 2019-03-01 10:44 - 000001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-03-01 10:44 - 2019-03-01 10:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-03-01 10:44 - 2019-02-01 11:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-03-01 10:44 - 2019-01-08 15:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-03-01 10:43 - 2019-03-01 10:43 - 000000000 ____D C:\Program Files\Malwarebytes
2019-02-13 21:29 - 2019-03-01 10:43 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-02-13 10:10 - 2019-02-13 10:10 - 026807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 023439360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 020812288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 019284480 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 019023872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 008875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 007897088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 007724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 006070272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 005584864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 005440008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 005112792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 004885504 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 004688896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 003922944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002469648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002392576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 002278448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001309184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001282640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001259024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-02-13 10:10 - 2019-02-13 10:10 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000762272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000522312 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-02-13 10:10 - 2019-02-13 10:10 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000421904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-02-13 10:10 - 2019-02-13 10:10 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2019-02-13 10:10 - 2019-02-13 10:10 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-02-13 10:10 - 2019-02-13 10:10 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlahc.dll
2019-02-13 10:10 - 2019-02-13 10:10 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMon.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 006540424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 005565952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 005205464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 004526080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 004019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 002927120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 002776920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 002702528 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 002626592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 002072728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001969680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001700864 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001696936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-02-13 10:09 - 2019-02-13 10:09 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001671864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001467560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001467384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 001446400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001341584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-02-13 10:09 - 2019-02-13 10:09 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001271608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001178344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 001168384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 000982032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000726208 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000652320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000649272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000588304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000496872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000475152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-02-13 10:09 - 2019-02-13 10:09 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000277536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000262672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-02-13 10:09 - 2019-02-13 10:09 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000146888 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000121872 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000091424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nslookup.exe
2019-02-13 10:09 - 2019-02-13 10:09 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-02-13 10:09 - 2019-02-13 10:09 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-02-13 10:08 - 2019-02-13 10:09 - 022111856 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 009683984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 005561856 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 005527552 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 004991096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 004702704 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 004298752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 003386368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002992640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002766136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002721280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002187264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002149368 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002085376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001700880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001604096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001533440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001331744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 001221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 001209360 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001054200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000982576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000970256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000864056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000850968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000822448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000806560 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-02-13 10:08 - 2019-02-13 10:08 - 000806560 _____ C:\WINDOWS\system32\locale.nls
2019-02-13 10:08 - 2019-02-13 10:08 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000765960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000752136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000651304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000629576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000612368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000604552 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000419128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000408800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000353488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000298296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000276488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTF.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000203280 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MTF.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000148480 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000132104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000114856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000097592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000047136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-02-13 10:08 - 2019-02-13 10:08 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2019-02-13 10:08 - 2019-02-13 10:08 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-02-13 10:08 - 2019-02-13 10:08 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2019-02-13 10:07 - 2019-02-13 10:08 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-02-11 20:46 - 2019-02-12 13:38 - 000000000 ____D C:\WINDOWS\Minidump
2019-02-05 16:03 - 2019-03-05 12:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-02-05 16:03 - 2019-03-05 12:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-02-05 16:03 - 2019-03-01 09:47 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-02-05 12:23 - 2019-02-05 16:04 - 000000000 ____D C:\Users\saullerist\AppData\Roaming\Opera Software
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-03-05 14:09 - 2016-11-15 19:57 - 000000000 ____D C:\Users\saullerist\AppData\LocalLow\Mozilla
2019-03-05 14:06 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-05 13:32 - 2018-10-04 11:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-03-05 13:32 - 2018-10-04 11:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-03-05 12:43 - 2018-10-04 10:21 - 000000000 ____D C:\Users\saullerist
2019-03-05 11:00 - 2017-06-19 16:37 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-04 11:20 - 2017-10-18 09:41 - 000000000 ____D C:\Users\saullerist\AppData\Local\Packages
2019-03-02 11:57 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-03-02 10:37 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-03-01 10:44 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-03-01 10:01 - 2016-01-12 10:47 - 000000000 ___RD C:\Users\saullerist\Disk Google
2019-02-28 14:48 - 2018-09-15 07:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-02-27 10:18 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-02-22 18:49 - 2018-03-01 10:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-02-15 13:19 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-02-15 13:17 - 2016-11-18 19:49 - 000000000 ____D C:\Program Files\Microsoft Office
2019-02-14 13:16 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-02-13 10:40 - 2018-10-04 11:16 - 008633114 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-02-13 10:40 - 2016-11-28 17:10 - 005907070 _____ C:\WINDOWS\system32\perfh01B.dat
2019-02-13 10:40 - 2016-11-28 17:10 - 001760776 _____ C:\WINDOWS\system32\perfc01B.dat
2019-02-13 10:34 - 2017-07-15 16:50 - 000000000 ___RD C:\Users\saullerist\3D Objects
2019-02-13 10:34 - 2016-01-05 16:03 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-02-13 10:33 - 2018-10-04 11:02 - 000437632 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-02-13 10:31 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-02-13 10:31 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-02-13 10:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-02-13 10:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-02-13 10:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-02-13 10:14 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-02-13 09:56 - 2016-11-18 18:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-02-13 09:53 - 2016-11-28 16:54 - 129330784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-02-08 13:34 - 2018-07-19 08:34 - 000000000 ____D C:\ProgramData\Packages
2019-02-07 21:49 - 2018-09-16 16:02 - 000000000 ____D C:\Program Files\CCleaner
2019-02-05 16:05 - 2017-05-12 12:30 - 000000000 ____D C:\Users\saullerist\AppData\Local\Opera Software
2019-02-04 11:28 - 2018-10-04 08:33 - 000000000 ___DC C:\WINDOWS\Panther
2019-02-04 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
==================== Files in the root of some directories =======
2017-07-31 10:22 - 2017-07-31 10:22 - 000029696 _____ () C:\Users\saullerist\AppData\Local\MSGBOX.EXE
2017-10-18 09:16 - 2018-12-05 20:23 - 000007597 _____ () C:\Users\saullerist\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
2019-03-01 10:42 - 2019-03-01 10:43 - 062158736 _____ (Malwarebytes ) C:\Users\saullerist\AppData\Local\Temp\mb3-setup-adwc.adwc1003.7.1.2839-1.0.538-1.0.9430.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
Re: sekajú streamy
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03.03.2019 01
Ran by saullerist (05-03-2019 14:17:25)
Running from C:\Users\saullerist\Downloads
Windows 10 Home Version 1809 17763.316 (X64) (2018-10-04 10:24:35)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1796023744-1759536030-3900380101-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1796023744-1759536030-3900380101-503 - Limited - Disabled)
Guest (S-1-5-21-1796023744-1759536030-3900380101-501 - Limited - Disabled)
saullerist (S-1-5-21-1796023744-1759536030-3900380101-1002 - Administrator - Enabled) => C:\Users\saullerist
WDAGUtilityAccount (S-1-5-21-1796023744-1759536030-3900380101-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AIDA64 Extreme v5.99 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.99 - FinalWire Ltd.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Backup and Sync from Google (HKLM\...\{693CADB0-962B-4AC1-A939-9524B258C997}) (Version: 3.43.2448.9071 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.121 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 8.0.1.302 - )
Malwarebytes verzia 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft Office 365 ProPlus - sk-sk (HKLM\...\O365ProPlusRetail - sk-sk) (Version: 16.0.11231.20174 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Mozilla Firefox 65.0.2 (x64 sk) (HKLM\...\Mozilla Firefox 65.0.2 (x64 sk)) (Version: 65.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11231.20174 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11231.20174 - Microsoft Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.4.3.38 - Synaptics Incorporated)
voBrowserPluginHelper (HKLM-x32\...\{48DD7952-08CD-46F8-B16C-7E12ABB6F3C3}) (Version: 3.28.0.10679 - VisualOn Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-12-07] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-12-07] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-12-07] (Google Inc -> Google)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-12-07] (Google Inc -> Google)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-12-07] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {18A87355-DA4B-476A-9FC2-8444D7DE2989} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {374F947A-FBA2-4B5E-BAE8-0ADFE8C0BE0F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {4E4BC9AB-F8B5-4EE6-97E0-E4504CC77ACA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {54B32A2C-7E16-45A3-9C06-A0171763CE7F} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {6993FBA3-652D-466B-A9FF-F563C33F95C4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {6A903E35-3FFD-40C0-BA18-8F03354421CA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {74EC5F89-8846-4F96-8B56-1E93C9AEF8D4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {83CE6C76-3F28-489E-A7C6-794989F68298} - System32\Tasks\S-1-5-21-1796023744-1759536030-3900380101-1002\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {98FD79B0-0614-4C60-BB9D-250D90C0B32D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {A338625E-1691-4ED7-910B-AD98FD08BD24} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {C10A3D40-8349-4AD6-8A7A-62AF3C4F0E0A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {E8680A00-8DC1-4A02-ADCB-AC2C332C29A7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {E99763FC-A988-457A-B703-875254274089} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {EAAC6B81-6FE8-427E-8E36-28AB4B6527C5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {F0E02523-8B5F-4444-80BA-32B79292258F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {F27A7126-AF31-4AFD-B274-79BC292B7A81} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\saullerist\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) ==============
2018-08-23 13:42 - 2018-08-23 13:42 - 000190784 _____ (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2019-01-23 21:10 - 2019-01-23 21:10 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM\e4447920f93e9b6882cdca38f614dbd9\MOM.ni.exe
2019-02-13 15:54 - 2019-02-13 15:54 - 000391680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\abfacb68b49cc8fcb5627970753a9b37\MOM.Implementation.ni.dll
2019-02-13 15:51 - 2019-02-13 15:51 - 000131584 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\ebd57a1113b0e0f875e2f234df225a25\LOG.Foundation.ni.dll
2019-02-13 15:07 - 2019-02-13 15:07 - 000146432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\3e05a7bc83178f562d2bacbec56406b9\LOG.Foundation.Private.ni.dll
2019-02-13 15:54 - 2019-02-13 15:54 - 000289792 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\dd060e6b82097097e0788603f9030cc3\LOG.Foundation.Implementation.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\d95ee0ba8dbe862a8b54afb24cec9266\MOM.Foundation.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\d37c91722dca681a3656648182c9dc28\LOG.Foundation.Implementation.Private.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000199168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\c26f86980f2762a4cca4a05a692a921e\CCC.Implementation.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\4a3e4f82cec9c105e1afb5833d305de1\NEWAEM.Foundation.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC\8e2347fa4e75bbef76849516085f8c11\CCC.ni.exe
2019-02-13 15:52 - 2019-02-13 15:52 - 000295424 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\ea240799b401890077fa511a8fae7c0d\CLI.Foundation.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000060928 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\803bcb0423dd9e50412aab0861cfff91\CLI.Foundation.XManifest.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000228352 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\60d96a008b9e4948a02974f9e7e1be92\CLI.Component.Runtime.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000149504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\a6a23f33211b0b74364eee35d553ecfe\CLI.Component.Runtime.Shared.Private.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\b073b89a6911ee5bdfe6a55319e38f9d\CLI.Foundation.Private.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\750ef3d68ea6421037665e32660217a8\CLI.Component.Runtime.Shared.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000122368 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\326cea1fbdd2a157acc4d049522b2925\ATICCCom.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\d2f63a425e49f2cba42da9f2ab392d24\AEM.Server.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000890368 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\befd4e5f17dd355c35bfaa295fa758a9\ADL.Foundation.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\3d5e4f14c1c70b714156766f00ff5b9f\AEM.Server.Shared.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000275456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\da2b5fd861dcbb192a4625625cf9b691\AEM.Plugin.Source.Kit.Server.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000090624 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\8352d5e1d5519f16c1a008d399da8182\CLI.Foundation.CoreAudioAPI.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\d088ed91fcf65288c73d8f0addf79bec\AEM.Plugin.Hotkeys.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\efd11645b1ae4e211dd89ffd90daf41d\AEM.Plugin.WinMessages.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000117248 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\d3e74857c3818a14e86f6103ee0d7163\DEM.Graphics.I0601.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\10989caf4046f704acdda094bf370d29\DEM.Foundation.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000015872 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\b2ac88b04e0f781ac4f9c432a09bee41\DEM.Graphics.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000036352 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\a8a43edb324bfa7940bdfca74b11302f\DEM.Graphics.I1010.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 003187712 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\59c6bcc491f4b3a9c5423a5e3ef8ea97\CLI.Caste.Graphics.Runtime.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 002786304 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\4bf6a36321bbb0cc6168df47e7a0bf86\CLI.Caste.Graphics.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\a757dcd0f88e10772b06eade5ec3c6d0\AEM.Plugin.GD.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\4b595116057b875a6edcb44ad552a345\AEM.Actions.CCAA.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000083456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\10bcc2a89c57857811ec8b910534b3ac\DEM.Graphics.I0709.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\dc22b415879327328de2681407282a7e\ResourceManagement.Foundation.Private.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000018944 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\e4c106a19634f76e392bcaceab4c0f6a\DEM.Graphics.I0804.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000038400 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\e7672f8c0499bf0edfe25c1b89909de2\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\1f325f5f72cf6bb57a8202c33e1ff184\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000451584 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\fec6402a49e592fe88587cf0fb566bf3\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000206336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\c87b8e499f4c4af834d415506fbd85c7\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000014848 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\ed2fe119ab433e6511ee7abc99723963\DEM.Graphics.I0912.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\37ab395d1835accaf8b6fa0474e55c6b\DEM.Graphics.I0706.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\3b9a4257d13adf79969e3b76e980e896\DEM.Graphics.I0712.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000290816 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\7572b825e3f3f579203c129bf7172a92\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 001131008 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\682b937d3e89319866184aa6cde96d96\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\a485e433a6569f0536f539fa63385fdc\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000355840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\be9315527e8a12d2814cc818d575f34d\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000124928 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\a3400ce07aa813f1aecccdf11e5b3c4d\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000011776 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\87c01e9399626f81f28c7f2c8f3e09d5\DEM.Graphics.I0812.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000011264 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\79f11cb834aa0f52c4990a807ff89494\DEM.Graphics.I0805.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000727552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\d4c740951f8a060a7438da5e29135d62\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\2a8e78e877ab3be47b62d587dd71ce47\AEM.Plugin.REG.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000236032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\1c331931189a11337107cd0f8755b7d1\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\69f0a89ede992f4f2852f31c205ca108\DEM.Graphics.I0906.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000130048 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\455f9094dbe1e51be3c50f4f0af8ccfb\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000073216 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\bd00053fe37cdf0797e055ed4335fb35\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\b62d1fca0305add424c211620cc3b3ae\AEM.Plugin.DPPE.Shared.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000046592 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\5bb7fbb960c67e135990c98273b20b0d\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000104448 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\1dc16b0c51bbf0efad07e54a02e83fe9\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\3d9d7280a75d5881b64aeb49c5220931\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\3f95518e52f26511cb80790bed0672e7\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000062976 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\dd3435025ef76c8efd25a2d3ce2c4126\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000050176 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\49b81515b866d1425819f6a2ab868472\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 001144320 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\8312516c551bdd09e1d94a6d8fec9be9\Localization.Foundation.Private.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000056320 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\7f4dde3cf8b8da5ba5d8e4adb1f33bed\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\f8d8a13b537d9a96348d3a2f55627cca\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000304640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\7e477c5ecc33f795ec249e8ba7066fd5\CLI.Caste.Fuel.Runtime.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\e1a0baf5a6151704493b2c17c1c725b0\CLI.Caste.Fuel.Shared.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\aaef41ee247dc5ab2f3b80f408967d5d\Fuel.Foundation.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000043520 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\45f468314ac3365b3f9f2f9741a74e3b\CLI.Caste.Platform.Runtime.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\ea58c1f6c390eb9d73e1a8a89fdfab9b\CLI.Caste.Platform.Shared.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\40cadbfad9c90c6b2f36d6951e228c94\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000337408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\37569c668c0d50b2dc313d4f0f109ded\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\d3ad2e867889abb1ebe85fae372c7928\CLI.Caste.HydraVision.Runtime.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\f2830673053361c52f6a0ec38b9177ec\CLI.Caste.HydraVision.Shared.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\e9020fe76348ab6b94e1aaa71e1dadd9\CLI.Caste.A4.Runtime.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\890de27bf8e2654882a3bd8e352cb65f\CLI.Caste.A4.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000032256 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\4ca2c4be1404f99551bb4fc186aa6fe8\A4.Foundation.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000250368 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\8970dcc96f08ee7b056f2d0fb6900731\APM.Server.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000056320 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\eb4a87a2ad021c37d914d2b9e405fc12\APM.Foundation.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\233048c5cd666e11028f9bf6ff6fa3ad\CLI.Component.Runtime.Extension.EEU.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\fddea5e4ffe7b145c4f2490e2f4c4a9d\AEM.Plugin.EEU.Shared.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000910336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\a41065a831121183bd91657909f3c6b1\CLI.Component.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000133632 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\c1fe1e8d2bb695d341177c1809d10ec5\CLI.Component.Client.Shared.Private.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000019968 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\f604373f8a10224fdd13b02f8d7ad3ca\CLI.Component.Client.Shared.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000086016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\a1235958f1c44714e1db622d78491b97\CLI.Component.Dashboard.Shared.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 001605632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\65078e6d3002dd5b50118eaa29a66b54\CLI.Component.Dashboard.Shared.Private.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000884736 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\9371246e4f491474a9ce117cd3bb7ac8\CLI.Component.Systemtray.ni.dll
2019-02-13 15:54 - 2019-02-13 15:54 - 000242688 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\887241491263c2d0195573df7b5bc55c\ResourceManagement.Foundation.Implementation.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000259584 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\25efa7be660b7a7a00d4730e152c0bae\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000574976 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\021415a5b42072af1a2be4ec1c9fbca7\CLI.Caste.Graphics.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 001537536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\b8e8ad9e99703aa437047c65191980de\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000090112 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\8281303f77f29bc8766fc6d525b104d6\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000270848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\250d5237bb3e99520926b1ef0ec73335\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 007986176 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\05795abc7d0ffa91802f124e6a9e194f\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000446464 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\ec23542522e333a583cc2c249d7745fc\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000066560 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\3a7fb58cbc805869c7846a64016657c8\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 006323200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\4443ff50bb6502eee71ba21bac9a54ea\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 003282432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\9acbea23789c41dc140438576f617e3d\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000665600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\b498181d018c2df98889b2cdedb3f1f5\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000073728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\aacb4f95d60c494d6a020aa2818b112f\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000152064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\9780d4aea97810827777ef4690787eef\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\21bdc9e83bc3e1f77ed0f5bf382516e1\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\f9733584482bc9b66b25668e2ed83829\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000027648 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\236d6667a48b046452855d26a7a22d4a\CLI.Caste.Fuel.Dashboard.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\34b2f455abac237d452eabdf42e90f9f\CLI.Caste.Platform.Dashboard.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\3ac227a735f141209479e46db9093e45\CLI.Caste.HydraVision.Dashboard.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000027648 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\e7718d1bb2e9d551c248e4b4d083d66c\CLI.Caste.A4.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 001052672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\9c151d7237b480dcf1d4a3146bc013c9\CLI.Foundation.Client.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000168960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\56983457feaa0e4d3a5a3fdad2f0f84b\CLI.Component.Dashboard.ProfileManager2.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 002497536 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\02998222aee1c0637b4e20fbf66bee7f\Microsoft.WindowsAPICodePack.Shell.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000332800 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\524e976483563118dbb68fb6c5ab3e5c\Microsoft.WindowsAPICodePack.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 001642496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\16d5f1c0e20434bcc8913904d835c3e5\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-03-01 10:43 - 2019-02-01 09:55 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000035328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-11-18 16:42 - 2017-03-13 16:31 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\saullerist\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run32: => "WindowsDefender"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\StartupFolder: => "Odoslanie do aplikácie OneNote.lnk"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Uninstall C:\Users\saullerist\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_DDAEB60A3A4C412D731C2E4868511E36"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Application Restart #0"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{555B18A4-FD32-4392-91BA-7A9AC7988FCA}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{70A3771C-9012-49BA-9728-7E51FB4E53E7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{96F24225-AD4A-4AFF-8D3A-363187479AAE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5CC367C7-F3B6-4B38-9AC5-424BD661C98D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0DE43B69-CCFB-451D-BA81-BF6C888E57D7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{3761C488-F5D5-4F97-9691-A30BC8D877A8}C:\programdata\visualon\browserpluginhelper\browserpluginhelper.exe] => (Allow) C:\programdata\visualon\browserpluginhelper\browserpluginhelper.exe () [File not signed]
FirewallRules: [UDP Query User{410F752C-E358-46C7-80A9-9BC4D686DEC3}C:\programdata\visualon\browserpluginhelper\browserpluginhelper.exe] => (Allow) C:\programdata\visualon\browserpluginhelper\browserpluginhelper.exe () [File not signed]
FirewallRules: [{FEE2D03D-AC6C-4F0C-8B4F-0E999206BC50}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CC524643-1988-4C66-B367-92E56128E8FC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D62B1B3B-92D9-4A09-BCE8-6053DB009ECC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
==================== Restore Points =========================
22-02-2019 11:28:40 Scheduled Checkpoint
03-03-2019 14:49:13 Scheduled Checkpoint
05-03-2019 13:37:30 Removed voBrowserPluginHelper
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/05/2019 12:45:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: RuntimeBroker.exe, verzia: 10.0.17763.1, časová značka: 0xd42c5158
Názov chybujúceho modulu: SettingsEnvironment.Desktop.dll, verzia: 10.0.17763.292, časová značka: 0x5dd554e2
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000027be9
Identifikácia chybujúceho procesu: 0x12bc
Čas spustenia chybujúcej aplikácie: 0x01d4d348bdb9389a
Cesta chybujúcej aplikácie: C:\Windows\System32\RuntimeBroker.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\SettingsEnvironment.Desktop.dll
Identifikácia hlásenia: 706241d7-f60c-46cb-b778-bad4e555f8ad
Celé meno chybujúceho balíka: Microsoft.Windows.ShellExperienceHost_10.0.17763.1_neutral_neutral_cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: runtimebroker07f4358a809ac99a64a67c1
Error: (03/05/2019 11:00:34 AM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/05/2019 10:57:31 AM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/05/2019 10:57:29 AM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/04/2019 10:33:05 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/04/2019 10:33:05 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/04/2019 10:33:05 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/04/2019 10:33:04 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
System errors:
=============
Error: (03/05/2019 02:11:34 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 02:10:18 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 02:10:18 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 02:00:51 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 02:00:51 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 01:36:38 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 01:35:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscDataProtection
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 01:35:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Windows Defender:
===================================
Date: 2019-03-02 11:12:01.771
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {87C497C2-7A96-4D66-83C6-649A8A2240D2}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-23 21:00:38.996
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {F1E40BF1-FE0D-41EB-98AB-B40E1C2D2EC2}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-23 19:36:09.074
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {865919AE-A810-4EEF-B6C6-0C209332C925}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-22 12:51:24.072
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {80FD1861-D8F7-47A4-8EA6-C3BF71709CFC}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-20 22:52:21.300
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {47A010CA-F2B8-4337-896F-4EBAE76B14C0}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-27 10:22:59.838
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.289.21.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15700.9
Error code: 0x80240438
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.
CodeIntegrity:
===================================
Date: 2019-02-13 21:31:05.903
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:05.867
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:05.609
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:05.560
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:05.470
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:05.428
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:01.531
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:01.332
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz
Percentage of memory in use: 69%
Total physical RAM: 3958.85 MB
Available physical RAM: 1227.1 MB
Total Virtual: 4726.85 MB
Available Virtual: 1578.31 MB
==================== Drives ================================
Drive c: (WINDOWS) (Fixed) (Total:296.96 GB) (Free:255.88 GB) NTFS
Drive d: (Data) (Fixed) (Total:297.92 GB) (Free:293.6 GB) NTFS
\\?\Volume{18c6abd2-0000-0000-0000-100000000000}\ (SYSTEM) (Fixed) (Total:0.39 GB) (Free:0.18 GB) NTFS
\\?\Volume{18c6abd2-0000-0000-0000-a0564a000000}\ () (Fixed) (Total:0.89 GB) (Free:0.35 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 18C6ABD2)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=297 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=915 MB) - (Type=27)
Partition 4: (Not Active) - (Size=297.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Ran by saullerist (05-03-2019 14:17:25)
Running from C:\Users\saullerist\Downloads
Windows 10 Home Version 1809 17763.316 (X64) (2018-10-04 10:24:35)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1796023744-1759536030-3900380101-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1796023744-1759536030-3900380101-503 - Limited - Disabled)
Guest (S-1-5-21-1796023744-1759536030-3900380101-501 - Limited - Disabled)
saullerist (S-1-5-21-1796023744-1759536030-3900380101-1002 - Administrator - Enabled) => C:\Users\saullerist
WDAGUtilityAccount (S-1-5-21-1796023744-1759536030-3900380101-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AIDA64 Extreme v5.99 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.99 - FinalWire Ltd.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Backup and Sync from Google (HKLM\...\{693CADB0-962B-4AC1-A939-9524B258C997}) (Version: 3.43.2448.9071 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.121 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 8.0.1.302 - )
Malwarebytes verzia 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft Office 365 ProPlus - sk-sk (HKLM\...\O365ProPlusRetail - sk-sk) (Version: 16.0.11231.20174 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Mozilla Firefox 65.0.2 (x64 sk) (HKLM\...\Mozilla Firefox 65.0.2 (x64 sk)) (Version: 65.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11231.20174 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11231.20174 - Microsoft Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.4.3.38 - Synaptics Incorporated)
voBrowserPluginHelper (HKLM-x32\...\{48DD7952-08CD-46F8-B16C-7E12ABB6F3C3}) (Version: 3.28.0.10679 - VisualOn Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-12-07] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-12-07] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-12-07] (Google Inc -> Google)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-12-07] (Google Inc -> Google)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-12-07] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {18A87355-DA4B-476A-9FC2-8444D7DE2989} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {374F947A-FBA2-4B5E-BAE8-0ADFE8C0BE0F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {4E4BC9AB-F8B5-4EE6-97E0-E4504CC77ACA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {54B32A2C-7E16-45A3-9C06-A0171763CE7F} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {6993FBA3-652D-466B-A9FF-F563C33F95C4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {6A903E35-3FFD-40C0-BA18-8F03354421CA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {74EC5F89-8846-4F96-8B56-1E93C9AEF8D4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {83CE6C76-3F28-489E-A7C6-794989F68298} - System32\Tasks\S-1-5-21-1796023744-1759536030-3900380101-1002\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {98FD79B0-0614-4C60-BB9D-250D90C0B32D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {A338625E-1691-4ED7-910B-AD98FD08BD24} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {C10A3D40-8349-4AD6-8A7A-62AF3C4F0E0A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {E8680A00-8DC1-4A02-ADCB-AC2C332C29A7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {E99763FC-A988-457A-B703-875254274089} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {EAAC6B81-6FE8-427E-8E36-28AB4B6527C5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {F0E02523-8B5F-4444-80BA-32B79292258F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {F27A7126-AF31-4AFD-B274-79BC292B7A81} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\saullerist\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) ==============
2018-08-23 13:42 - 2018-08-23 13:42 - 000190784 _____ (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2019-01-23 21:10 - 2019-01-23 21:10 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM\e4447920f93e9b6882cdca38f614dbd9\MOM.ni.exe
2019-02-13 15:54 - 2019-02-13 15:54 - 000391680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\abfacb68b49cc8fcb5627970753a9b37\MOM.Implementation.ni.dll
2019-02-13 15:51 - 2019-02-13 15:51 - 000131584 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\ebd57a1113b0e0f875e2f234df225a25\LOG.Foundation.ni.dll
2019-02-13 15:07 - 2019-02-13 15:07 - 000146432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\3e05a7bc83178f562d2bacbec56406b9\LOG.Foundation.Private.ni.dll
2019-02-13 15:54 - 2019-02-13 15:54 - 000289792 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\dd060e6b82097097e0788603f9030cc3\LOG.Foundation.Implementation.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\d95ee0ba8dbe862a8b54afb24cec9266\MOM.Foundation.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\d37c91722dca681a3656648182c9dc28\LOG.Foundation.Implementation.Private.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000199168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\c26f86980f2762a4cca4a05a692a921e\CCC.Implementation.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\4a3e4f82cec9c105e1afb5833d305de1\NEWAEM.Foundation.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC\8e2347fa4e75bbef76849516085f8c11\CCC.ni.exe
2019-02-13 15:52 - 2019-02-13 15:52 - 000295424 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\ea240799b401890077fa511a8fae7c0d\CLI.Foundation.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000060928 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\803bcb0423dd9e50412aab0861cfff91\CLI.Foundation.XManifest.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000228352 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\60d96a008b9e4948a02974f9e7e1be92\CLI.Component.Runtime.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000149504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\a6a23f33211b0b74364eee35d553ecfe\CLI.Component.Runtime.Shared.Private.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\b073b89a6911ee5bdfe6a55319e38f9d\CLI.Foundation.Private.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\750ef3d68ea6421037665e32660217a8\CLI.Component.Runtime.Shared.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000122368 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\326cea1fbdd2a157acc4d049522b2925\ATICCCom.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\d2f63a425e49f2cba42da9f2ab392d24\AEM.Server.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000890368 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\befd4e5f17dd355c35bfaa295fa758a9\ADL.Foundation.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\3d5e4f14c1c70b714156766f00ff5b9f\AEM.Server.Shared.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000275456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\da2b5fd861dcbb192a4625625cf9b691\AEM.Plugin.Source.Kit.Server.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000090624 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\8352d5e1d5519f16c1a008d399da8182\CLI.Foundation.CoreAudioAPI.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\d088ed91fcf65288c73d8f0addf79bec\AEM.Plugin.Hotkeys.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\efd11645b1ae4e211dd89ffd90daf41d\AEM.Plugin.WinMessages.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000117248 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\d3e74857c3818a14e86f6103ee0d7163\DEM.Graphics.I0601.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\10989caf4046f704acdda094bf370d29\DEM.Foundation.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000015872 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\b2ac88b04e0f781ac4f9c432a09bee41\DEM.Graphics.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000036352 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\a8a43edb324bfa7940bdfca74b11302f\DEM.Graphics.I1010.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 003187712 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\59c6bcc491f4b3a9c5423a5e3ef8ea97\CLI.Caste.Graphics.Runtime.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 002786304 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\4bf6a36321bbb0cc6168df47e7a0bf86\CLI.Caste.Graphics.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\a757dcd0f88e10772b06eade5ec3c6d0\AEM.Plugin.GD.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\4b595116057b875a6edcb44ad552a345\AEM.Actions.CCAA.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000083456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\10bcc2a89c57857811ec8b910534b3ac\DEM.Graphics.I0709.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\dc22b415879327328de2681407282a7e\ResourceManagement.Foundation.Private.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000018944 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\e4c106a19634f76e392bcaceab4c0f6a\DEM.Graphics.I0804.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000038400 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\e7672f8c0499bf0edfe25c1b89909de2\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\1f325f5f72cf6bb57a8202c33e1ff184\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000451584 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\fec6402a49e592fe88587cf0fb566bf3\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000206336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\c87b8e499f4c4af834d415506fbd85c7\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000014848 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\ed2fe119ab433e6511ee7abc99723963\DEM.Graphics.I0912.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\37ab395d1835accaf8b6fa0474e55c6b\DEM.Graphics.I0706.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\3b9a4257d13adf79969e3b76e980e896\DEM.Graphics.I0712.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000290816 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\7572b825e3f3f579203c129bf7172a92\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 001131008 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\682b937d3e89319866184aa6cde96d96\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\a485e433a6569f0536f539fa63385fdc\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000355840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\be9315527e8a12d2814cc818d575f34d\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000124928 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\a3400ce07aa813f1aecccdf11e5b3c4d\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000011776 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\87c01e9399626f81f28c7f2c8f3e09d5\DEM.Graphics.I0812.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000011264 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\79f11cb834aa0f52c4990a807ff89494\DEM.Graphics.I0805.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000727552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\d4c740951f8a060a7438da5e29135d62\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\2a8e78e877ab3be47b62d587dd71ce47\AEM.Plugin.REG.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000236032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\1c331931189a11337107cd0f8755b7d1\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\69f0a89ede992f4f2852f31c205ca108\DEM.Graphics.I0906.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000130048 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\455f9094dbe1e51be3c50f4f0af8ccfb\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000073216 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\bd00053fe37cdf0797e055ed4335fb35\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\b62d1fca0305add424c211620cc3b3ae\AEM.Plugin.DPPE.Shared.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000046592 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\5bb7fbb960c67e135990c98273b20b0d\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000104448 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\1dc16b0c51bbf0efad07e54a02e83fe9\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\3d9d7280a75d5881b64aeb49c5220931\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\3f95518e52f26511cb80790bed0672e7\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000062976 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\dd3435025ef76c8efd25a2d3ce2c4126\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000050176 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\49b81515b866d1425819f6a2ab868472\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 001144320 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\8312516c551bdd09e1d94a6d8fec9be9\Localization.Foundation.Private.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000056320 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\7f4dde3cf8b8da5ba5d8e4adb1f33bed\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\f8d8a13b537d9a96348d3a2f55627cca\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000304640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\7e477c5ecc33f795ec249e8ba7066fd5\CLI.Caste.Fuel.Runtime.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\e1a0baf5a6151704493b2c17c1c725b0\CLI.Caste.Fuel.Shared.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\aaef41ee247dc5ab2f3b80f408967d5d\Fuel.Foundation.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000043520 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\45f468314ac3365b3f9f2f9741a74e3b\CLI.Caste.Platform.Runtime.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\ea58c1f6c390eb9d73e1a8a89fdfab9b\CLI.Caste.Platform.Shared.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\40cadbfad9c90c6b2f36d6951e228c94\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000337408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\37569c668c0d50b2dc313d4f0f109ded\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\d3ad2e867889abb1ebe85fae372c7928\CLI.Caste.HydraVision.Runtime.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\f2830673053361c52f6a0ec38b9177ec\CLI.Caste.HydraVision.Shared.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\e9020fe76348ab6b94e1aaa71e1dadd9\CLI.Caste.A4.Runtime.ni.dll
2019-01-23 21:07 - 2019-01-23 21:07 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\890de27bf8e2654882a3bd8e352cb65f\CLI.Caste.A4.Shared.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000032256 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\4ca2c4be1404f99551bb4fc186aa6fe8\A4.Foundation.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000250368 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\8970dcc96f08ee7b056f2d0fb6900731\APM.Server.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000056320 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\eb4a87a2ad021c37d914d2b9e405fc12\APM.Foundation.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\233048c5cd666e11028f9bf6ff6fa3ad\CLI.Component.Runtime.Extension.EEU.ni.dll
2019-01-23 21:06 - 2019-01-23 21:06 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\fddea5e4ffe7b145c4f2490e2f4c4a9d\AEM.Plugin.EEU.Shared.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000910336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\a41065a831121183bd91657909f3c6b1\CLI.Component.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000133632 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\c1fe1e8d2bb695d341177c1809d10ec5\CLI.Component.Client.Shared.Private.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000019968 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\f604373f8a10224fdd13b02f8d7ad3ca\CLI.Component.Client.Shared.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000086016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\a1235958f1c44714e1db622d78491b97\CLI.Component.Dashboard.Shared.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 001605632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\65078e6d3002dd5b50118eaa29a66b54\CLI.Component.Dashboard.Shared.Private.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000884736 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\9371246e4f491474a9ce117cd3bb7ac8\CLI.Component.Systemtray.ni.dll
2019-02-13 15:54 - 2019-02-13 15:54 - 000242688 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\887241491263c2d0195573df7b5bc55c\ResourceManagement.Foundation.Implementation.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000259584 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\25efa7be660b7a7a00d4730e152c0bae\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000574976 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\021415a5b42072af1a2be4ec1c9fbca7\CLI.Caste.Graphics.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 001537536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\b8e8ad9e99703aa437047c65191980de\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000090112 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\8281303f77f29bc8766fc6d525b104d6\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000270848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\250d5237bb3e99520926b1ef0ec73335\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 007986176 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\05795abc7d0ffa91802f124e6a9e194f\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000446464 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\ec23542522e333a583cc2c249d7745fc\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000066560 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\3a7fb58cbc805869c7846a64016657c8\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 006323200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\4443ff50bb6502eee71ba21bac9a54ea\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 003282432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\9acbea23789c41dc140438576f617e3d\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000665600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\b498181d018c2df98889b2cdedb3f1f5\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000073728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\aacb4f95d60c494d6a020aa2818b112f\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000152064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\9780d4aea97810827777ef4690787eef\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\21bdc9e83bc3e1f77ed0f5bf382516e1\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\f9733584482bc9b66b25668e2ed83829\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000027648 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\236d6667a48b046452855d26a7a22d4a\CLI.Caste.Fuel.Dashboard.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\34b2f455abac237d452eabdf42e90f9f\CLI.Caste.Platform.Dashboard.ni.dll
2019-01-23 21:09 - 2019-01-23 21:09 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\3ac227a735f141209479e46db9093e45\CLI.Caste.HydraVision.Dashboard.ni.dll
2019-01-23 21:08 - 2019-01-23 21:08 - 000027648 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\e7718d1bb2e9d551c248e4b4d083d66c\CLI.Caste.A4.Dashboard.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 001052672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\9c151d7237b480dcf1d4a3146bc013c9\CLI.Foundation.Client.ni.dll
2019-02-13 15:53 - 2019-02-13 15:53 - 000168960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\56983457feaa0e4d3a5a3fdad2f0f84b\CLI.Component.Dashboard.ProfileManager2.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 002497536 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\02998222aee1c0637b4e20fbf66bee7f\Microsoft.WindowsAPICodePack.Shell.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 000332800 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\524e976483563118dbb68fb6c5ab3e5c\Microsoft.WindowsAPICodePack.ni.dll
2019-02-13 15:52 - 2019-02-13 15:52 - 001642496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\16d5f1c0e20434bcc8913904d835c3e5\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-03-01 10:43 - 2019-02-01 09:55 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2019-03-01 10:43 - 2019-02-01 09:56 - 000035328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-11-18 16:42 - 2017-03-13 16:31 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\saullerist\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run32: => "WindowsDefender"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\StartupFolder: => "Odoslanie do aplikácie OneNote.lnk"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Uninstall C:\Users\saullerist\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_DDAEB60A3A4C412D731C2E4868511E36"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "Application Restart #0"
HKU\S-1-5-21-1796023744-1759536030-3900380101-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{555B18A4-FD32-4392-91BA-7A9AC7988FCA}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{70A3771C-9012-49BA-9728-7E51FB4E53E7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{96F24225-AD4A-4AFF-8D3A-363187479AAE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5CC367C7-F3B6-4B38-9AC5-424BD661C98D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0DE43B69-CCFB-451D-BA81-BF6C888E57D7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{3761C488-F5D5-4F97-9691-A30BC8D877A8}C:\programdata\visualon\browserpluginhelper\browserpluginhelper.exe] => (Allow) C:\programdata\visualon\browserpluginhelper\browserpluginhelper.exe () [File not signed]
FirewallRules: [UDP Query User{410F752C-E358-46C7-80A9-9BC4D686DEC3}C:\programdata\visualon\browserpluginhelper\browserpluginhelper.exe] => (Allow) C:\programdata\visualon\browserpluginhelper\browserpluginhelper.exe () [File not signed]
FirewallRules: [{FEE2D03D-AC6C-4F0C-8B4F-0E999206BC50}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CC524643-1988-4C66-B367-92E56128E8FC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D62B1B3B-92D9-4A09-BCE8-6053DB009ECC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
==================== Restore Points =========================
22-02-2019 11:28:40 Scheduled Checkpoint
03-03-2019 14:49:13 Scheduled Checkpoint
05-03-2019 13:37:30 Removed voBrowserPluginHelper
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/05/2019 12:45:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: RuntimeBroker.exe, verzia: 10.0.17763.1, časová značka: 0xd42c5158
Názov chybujúceho modulu: SettingsEnvironment.Desktop.dll, verzia: 10.0.17763.292, časová značka: 0x5dd554e2
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000027be9
Identifikácia chybujúceho procesu: 0x12bc
Čas spustenia chybujúcej aplikácie: 0x01d4d348bdb9389a
Cesta chybujúcej aplikácie: C:\Windows\System32\RuntimeBroker.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\SettingsEnvironment.Desktop.dll
Identifikácia hlásenia: 706241d7-f60c-46cb-b778-bad4e555f8ad
Celé meno chybujúceho balíka: Microsoft.Windows.ShellExperienceHost_10.0.17763.1_neutral_neutral_cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: runtimebroker07f4358a809ac99a64a67c1
Error: (03/05/2019 11:00:34 AM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/05/2019 10:57:31 AM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/05/2019 10:57:29 AM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/04/2019 10:33:05 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/04/2019 10:33:05 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/04/2019 10:33:05 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (03/04/2019 10:33:04 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
System errors:
=============
Error: (03/05/2019 02:11:34 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 02:10:18 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 02:10:18 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 02:00:51 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 02:00:51 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 01:36:38 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3SMP07F)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-3SMP07F\saullerist SID (S-1-5-21-1796023744-1759536030-3900380101-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 01:35:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscDataProtection
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (03/05/2019 01:35:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Windows Defender:
===================================
Date: 2019-03-02 11:12:01.771
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {87C497C2-7A96-4D66-83C6-649A8A2240D2}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-23 21:00:38.996
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {F1E40BF1-FE0D-41EB-98AB-B40E1C2D2EC2}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-23 19:36:09.074
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {865919AE-A810-4EEF-B6C6-0C209332C925}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-22 12:51:24.072
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {80FD1861-D8F7-47A4-8EA6-C3BF71709CFC}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-20 22:52:21.300
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {47A010CA-F2B8-4337-896F-4EBAE76B14C0}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-27 10:22:59.838
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.289.21.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15700.9
Error code: 0x80240438
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.
CodeIntegrity:
===================================
Date: 2019-02-13 21:31:05.903
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:05.867
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:05.609
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:05.560
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:05.470
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:05.428
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:01.531
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
Date: 2019-02-13 21:31:01.332
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz
Percentage of memory in use: 69%
Total physical RAM: 3958.85 MB
Available physical RAM: 1227.1 MB
Total Virtual: 4726.85 MB
Available Virtual: 1578.31 MB
==================== Drives ================================
Drive c: (WINDOWS) (Fixed) (Total:296.96 GB) (Free:255.88 GB) NTFS
Drive d: (Data) (Fixed) (Total:297.92 GB) (Free:293.6 GB) NTFS
\\?\Volume{18c6abd2-0000-0000-0000-100000000000}\ (SYSTEM) (Fixed) (Total:0.39 GB) (Free:0.18 GB) NTFS
\\?\Volume{18c6abd2-0000-0000-0000-a0564a000000}\ () (Fixed) (Total:0.89 GB) (Free:0.35 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 18C6ABD2)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=297 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=915 MB) - (Type=27)
Partition 4: (Not Active) - (Size=297.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: sekajú streamy
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: sekajú streamy
kontrolu adware cleaner a mban robím aj denne a nič nenašli
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: sekajú streamy
OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\saullerist\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
Task: {74EC5F89-8846-4F96-8B56-1E93C9AEF8D4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {E99763FC-A988-457A-B703-875254274089} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
C:\Users\saullerist\AppData\Local\Temp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: sekajú streamy
nefunguje mi google drive ale, prečo?
už to ide
Fix result of Farbar Recovery Scan Tool (x64) Version: 03.03.2019 01
Ran by saullerist (05-03-2019 22:06:03) Run:1
Running from C:\Users\saullerist\Downloads
Loaded Profiles: saullerist (Available Profiles: saullerist)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {74EC5F89-8846-4F96-8B56-1E93C9AEF8D4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {E99763FC-A988-457A-B703-875254274089} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
C:\Users\saullerist\AppData\Local\Temp
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{74EC5F89-8846-4F96-8B56-1E93C9AEF8D4}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{74EC5F89-8846-4F96-8B56-1E93C9AEF8D4}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E99763FC-A988-457A-B703-875254274089}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E99763FC-A988-457A-B703-875254274089}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\Users\saullerist\AppData\Local\Temp => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8937472 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 80587705 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 7053634 B
Edge => 38318 B
Chrome => 7292402 B
Firefox => 491657556 B
Opera => 17300014 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 6656 B
LocalService => 0 B
NetworkService => 73552 B
NetworkService => 0 B
saullerist => 6087149 B
RecycleBin => 27554300 B
EmptyTemp: => 616.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 22:06:43 ====
už to ide
Fix result of Farbar Recovery Scan Tool (x64) Version: 03.03.2019 01
Ran by saullerist (05-03-2019 22:06:03) Run:1
Running from C:\Users\saullerist\Downloads
Loaded Profiles: saullerist (Available Profiles: saullerist)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {74EC5F89-8846-4F96-8B56-1E93C9AEF8D4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {E99763FC-A988-457A-B703-875254274089} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
C:\Users\saullerist\AppData\Local\Temp
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{74EC5F89-8846-4F96-8B56-1E93C9AEF8D4}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{74EC5F89-8846-4F96-8B56-1E93C9AEF8D4}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E99763FC-A988-457A-B703-875254274089}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E99763FC-A988-457A-B703-875254274089}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\Users\saullerist\AppData\Local\Temp => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8937472 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 80587705 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 7053634 B
Edge => 38318 B
Chrome => 7292402 B
Firefox => 491657556 B
Opera => 17300014 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 6656 B
LocalService => 0 B
NetworkService => 73552 B
NetworkService => 0 B
saullerist => 6087149 B
RecycleBin => 27554300 B
EmptyTemp: => 616.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 22:06:43 ====
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: sekajú streamy
OK, smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: sekajú streamy
všetko funguje ako má len Magio GO TV od Telekomu seká
- nepomohol reinstall ovladačov, routra, prehliadača, prehrávača ani doplnkov
- účet je ok
- na inom zariadení ide tiež ok
- iný stream mi neseká
- nepomohol reinstall ovladačov, routra, prehliadača, prehrávača ani doplnkov
- účet je ok
- na inom zariadení ide tiež ok
- iný stream mi neseká
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: sekajú streamy
Divné, že jenom jeden. Na (např.) www.dsl.cz si změřte datové toky (download/upload) vašeho internetového připojení a porovnejte s údajem ve smlouvě o připojení.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: sekajú streamy
rychlost je ok 77/7,7 v zmluve mam 80/8, zeby aktualizaciou windowsu od MS?
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: sekajú streamy
To je OK, nějaká tolerance tam je. I aktualizací to být může. Musel byste zkusit tu aktualizaci odinstalovat, nebo obnovit systém před datum té aktualizace. Je ale opravdu podivné, že se to projevuje jen na jednom webu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: sekajú streamy
problem routra, riesim s providerom...vdaka za pomoc
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: sekajú streamy
OK, i to je možné.Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.