Scribd Logo
Upload

Welcome to Scribd!

  • 139 views

    FRST

    Uploaded by

    Anonymous gVWK2Vnqcn
    The document provides the results of a scan using the Farbar Recovery Scan Tool (FRST) on a Windows 10 system, including active processes, registry entries, and browser extensions and plugins. The scan found several Realtek and NVIDIA audio and graphics programs running, as well as Adobe, Microsoft Office, Java, and other commonly used software. The browser extensions included plugins for Microsoft SharePoint, Adobe, Java, and other programs.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd

    FRST

    Uploaded by

    Anonymous gVWK2Vnqcn
    139 views25 pages
    The document provides the results of a scan using the Farbar Recovery Scan Tool (FRST) on a Windows 10 system, including active processes, registry entries, and browser extensions and plugins. The scan found several Realtek and NVIDIA audio and graphics programs running, as well as Adobe, Microsoft Office, Java, and other commonly used software. The browser extensions included plugins for Microsoft SharePoint, Adobe, Java, and other programs.

    Original Description:

    ...

    Original Title

    Frst

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    The document provides the results of a scan using the Farbar Recovery Scan Tool (FRST) on a Windows 10 system, including active processes, registry entries, and browser extensions and plugins. The scan found several Realtek and NVIDIA audio and graphics programs running, as well as Adobe, Microsoft Office, Java, and other commonly used software. The browser extensions included plugins for Microsoft SharePoint, Adobe, Java, and other programs.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Download as txt, pdf, or txt
    139 views25 pages

    FRST

    Uploaded by

    Anonymous gVWK2Vnqcn
    The document provides the results of a scan using the Farbar Recovery Scan Tool (FRST) on a Windows 10 system, including active processes, registry entries, and browser extensions and plugins. The scan found several Realtek and NVIDIA audio and graphics programs running, as well as Adobe, Microsoft Office, Java, and other commonly used software. The browser extensions included plugins for Microsoft SharePoint, Adobe, Java, and other programs.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Download as txt, pdf, or txt
    of 25

    Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02.01.

    2018
    Ran by z800 (administrator) on DESKTOP-MHOIG45 (08-01-2018 19:24:17)
    Running from C:\Users\z800\Desktop
    Loaded Profiles: z800 (Available Profiles: z800)
    Platform: Windows 10 Pro Version 1703 15063.850 (X64) Language: Čeština (Česká
    republika)
    Internet Explorer Version 11 (Default browser: Chrome)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool:
    http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-
    recovery-scan-tool/

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will
    not be moved.)

    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe


    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA
    Corporation\NvTelemetry\NvTelemetryContainer.exe
    (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe
    Desktop Common\ElevationManager\AdobeUpdateService.exe
    (Adobe Systems, Incorporated) C:\Program Files (x86)\Common
    Files\Adobe\AdobeGCClient\AGSService.exe
    (Microsoft Corporation) C:\ProgramData\Microsoft\Windows
    Defender\Platform\4.12.17007.17123-0\MsMpEng.exe
    (WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
    (Microsoft Corporation) C:\ProgramData\Microsoft\Windows
    Defender\Platform\4.12.17007.17123-0\NisSrv.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
    (Google Inc.) C:\Program Files
    (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
    () C:\Program
    Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeHost.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA
    Corporation\Display.NvContainer\NVDisplay.Container.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA
    Corporation\NvContainer\nvcontainer.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA
    Corporation\Display.NvContainer\NVDisplay.Container.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA
    Corporation\NvContainer\nvcontainer.exe
    (Adobe Systems Incorporated) C:\Program Files (x86)\Common
    Files\Adobe\ARM\1.0\AdobeARM.exe
    (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
    (Microsoft Corporation) C:\Program
    Files\WindowsApps\Microsoft.WindowsStore_11711.1001.5.0_x64__8wekyb3d8bbwe\WinStore
    .App.exe
    () C:\Program
    Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Mi
    crosoft.Photos.exe
    (Microsoft Corporation) C:\Windows\System32\MusNotification.exe
    (Microsoft Corporation) C:\Windows\System32\MusNotificationUx.exe
    (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
    () C:\Program
    Files\WindowsApps\Microsoft.WindowsCalculator_10.1709.2703.0_x64__8wekyb3d8bbwe\Cal
    culator.exe
    ==================== Registry (Whitelisted) ===========================

    (If an entry is included in the fixlist, the registry item will be restored to
    default or removed. The file will not be moved.)

    HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe


    [629152 2017-03-18] (Microsoft Corporation)
    HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe"
    C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
    HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common
    Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe
    Systems Incorporated)
    HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    [18381792 2017-06-29] (Realtek Semiconductor)
    HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe
    Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems
    Incorporated)
    HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common
    Files\Java\Java Update\jusched.exe [597040 2015-12-22] (Oracle Corporation)
    HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <====
    ATTENTION
    HKU\S-1-5-21-1659209470-3749154899-3382556166-1001\...\Run: [uTorrent] =>
    C:\Users\z800\AppData\Roaming\uTorrent\uTorrent.exe [1981624 2018-01-08]
    (BitTorrent Inc.)
    HKU\S-1-5-21-1659209470-3749154899-3382556166-1001\...\Run: [GoogleDriveSync] =>
    C:\Program Files (x86)\Google\Drive\googledrivesync.exe [41061856 2017-11-20] ()
    HKU\S-1-5-21-1659209470-3749154899-3382556166-1001\...\RunOnce: [Application
    Restart #1] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664
    2018-01-03] (Google Inc.)
    HKU\S-1-5-21-1659209470-3749154899-3382556166-1001\...\MountPoints2: {cb0be9d1-
    98ce-11e7-89a1-806e6f6e6963} - "H:\DVDSetup.exe"
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter
    Control Center.lnk [2017-10-23]
    ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files
    (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG)

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed


    or restored to default.)

    Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 10.158.1.10


    Tcpip\..\Interfaces\{8fa226a9-b8c6-4f4e-bddd-2c853fcf811d}: [DhcpNameServer]
    62.129.50.20 10.158.1.10

    Internet Explorer:
    ==================
    BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} ->
    C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft
    Corporation)
    BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-
    ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-
    31] (Microsoft Corporation)
    BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-
    2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
    [2015-07-31] (Microsoft Corporation)
    BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} ->
    C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll [2017-10-23] (Oracle
    Corporation)
    BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-
    A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL
    [2015-07-31] (Microsoft Corporation)
    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} ->
    C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll [2017-10-23] (Oracle
    Corporation)
    Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program
    Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
    Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program
    Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft
    Corporation)
    Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program
    Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
    Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files
    (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)

    FireFox:
    ========
    FF Plugin: @microsoft.com/SharePoint,version=14.0 ->
    C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
    FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative
    Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems)
    FF Plugin-x32: @java.com/DTPlugin,version=11.72.2 -> C:\Program Files
    (x86)\Java\jre1.8.0_72\bin\dtplugin\npDeployJava1.dll [2017-10-23] (Oracle
    Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=11.72.2 -> C:\Program Files
    (x86)\Java\jre1.8.0_72\bin\plugin2\npjp2.dll [2017-10-23] (Oracle Corporation)
    FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla
    Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 ->
    C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
    FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D
    Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation)
    FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA
    Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files
    (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files
    (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
    FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files
    (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
    FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader
    DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
    FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe
    Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems)

    Chrome:
    =======
    CHR HomePage: Default -> hxxp://www.google.com/
    CHR StartupUrls: Default ->
    "hxxp://google.cz/","hxxp://mystart.incredibar.com/mb205?
    a=6OyZ2OtfMo&i=26","hxxp://search.conduit.com/?
    ctid=CT3220468&SearchSource=48","hxxp://www.delta-search.com/?
    affID=119529&tt=3412_4&babsrc=HP_ss&mntrId=fad5015700000000000000ffd1b24bf8","hxxp:
    //search.certified-toolbar.com?si=41460&st=home&tid=2938","hxxp://searchou.com/?
    id=fad50157000000000000b0487a8d0a61","hxxp://websearch.searchingissme.info/?
    unqvl=23","hxxp://websearch.simplesearches.info/?
    pid=964&r=2013/08/17&hid=352569494&lg=EN&cc=CZ&unqvl=31","hxxp://websearch.searchis
    easy.info/?
    pid=964&r=2013/08/28&hid=13477326475369779142&lg=EN&cc=CZ&unqvl=33","hxxp://www.goo
    gle.com/","hxxp://www.search.ask.com/?o=APN10640A&gct=hp&d=473-103&v=n8883-
    90&t=4","hxxp://www.yessearches.com/?
    mode=nnnb&ptid=cos&uid=DEB8C9B6D936DB223F411502D65163D5&v=20160301&ts=AHEpBnAsCHAtA
    U..","hxxp://www.aveart.cz/"
    CHR Profile: C:\Users\z800\AppData\Local\Google\Chrome\User Data\Default [2018-01-
    08]
    CHR Extension: (Prezentace) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
    CHR Extension: (BIODIGITAL HUMAN) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2017-09-16]
    CHR Extension: (Dokumenty) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
    CHR Extension: (Disk Google) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-16]
    CHR Extension: (Chatterbox for Periscope) -
    C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\bdgkofekoejgkpjbjmdhmmdfckgfgigg [2017-09-16]
    CHR Extension: (YouTube) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-16]
    CHR Extension: (Facebook) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2017-09-16]
    CHR Extension: (Fun Switcher) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ddeoimiimmmfddbiggnbipkjomlalanb [2017-09-16]
    CHR Extension: (Sumo Paint) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\dpgjihldbpodlmnjolekemlfbcajnmod [2017-09-16]
    CHR Extension: (Tabulky) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
    CHR Extension: (Google Analytics Opt-out Add-on (by Google)) -
    C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2017-09-16]
    CHR Extension: (PDF Compressor - Smallpdf.com) -
    C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\gealeehfjeflamgnohlhabaefbfjfjgc [2017-09-16]
    CHR Extension: (Dokumenty Google offline) -
    C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-18]
    CHR Extension: (AdBlock) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-12-07]
    CHR Extension: (Project Ignite) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\kdianbbadiljfpmmidcppmngpjkbgaag [2017-09-16]
    CHR Extension: (EasyHome Homestyler) -
    C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2017-09-16]
    CHR Extension: (Application Launcher for Drive (by Google)) -
    C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-09-16]
    CHR Extension: (Platby Internetového obchodu Chrome) -
    C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-16]
    CHR Extension: (Televize Online) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\pcfeebemepipakkhapnhljbcdkagkloh [2017-09-16]
    CHR Extension: (Psykopaint) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2017-09-16]
    CHR Extension: (Gmail) - C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-16]
    CHR Extension: (Chrome Media Router) -
    C:\Users\z800\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-29]
    CHR HKU\S-1-5-21-1659209470-3749154899-3382556166-
    1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension:
    [lmjegmlicamnimmfhcmpkclmigmmcbeh] -
    hxxps://clients2.google.com/service/update2/crx

    ==================== Services (Whitelisted) ====================

    (If an entry is included in the fixlist, it will be removed from the registry. The
    file will not be moved unless listed separately.)

    R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop


    Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems
    Incorporated)
    R2 AGSService; C:\Program Files (x86)\Common
    Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems,
    Incorporated)
    R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
    [324608 2017-06-29] (Realtek Semiconductor)
    S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe
    [3913064 2017-03-20] (Microsoft Corporation)
    R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-
    0\NisSrv.exe [356176 2017-12-07] (Microsoft Corporation)
    R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-
    0\MsMpEng.exe [105792 2017-12-07] (Microsoft Corporation)
    R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA
    Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f
    "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA
    Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
    S3 NvContainerNetworkService; "C:\Program Files\NVIDIA
    Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f
    "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program
    Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
    R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA
    Corporation\Display.NvContainer\NVDisplay.Container.exe" -s
    NVDisplay.ContainerLocalSystem -f
    "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program
    Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
    R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA
    Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f
    "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files
    (x86)\NVIDIA Corporation\NvTelemetry\plugin"

    ===================== Drivers (Whitelisted) ======================

    (If an entry is included in the fixlist, it will be removed from the registry. The
    file will not be moved unless listed separately.)

    R3 athur; C:\Windows\System32\drivers\athuw8x.sys [2919936 2013-06-02] (Qualcomm


    Atheros Communications, Inc.)
    R1 MpKsl5a6a5b8c; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\
    {277313E8-FB23-4F2F-BA17-F13C534D5982}\MpKsl5a6a5b8c.sys [58120 2018-01-08]
    (Microsoft Corporation)
    R3 nvlddmkm;
    C:\Windows\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe1
    6d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation)
    S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
    [29240 2017-04-01] (NVIDIA Corporation)
    R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [66608 2017-04-
    01] (NVIDIA Corporation)
    R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [76840 2017-04-01] (NVIDIA
    Corporation)
    S3 SDFRd; C:\Windows\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
    S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46072 2017-12-07] (Microsoft
    Corporation)
    R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [288848 2017-12-07]
    (Microsoft Corporation)
    R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [129616 2017-12-07]
    (Microsoft Corporation)
    S3 NTIOLib_1_0_C; \??\H:\NTIOLib_X64.sys [X]

    ==================== NetSvcs (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The
    file will not be moved unless listed separately.)

    ==================== One Month Created files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2018-01-08 19:24 - 2018-01-08 19:24 - 000017321 _____


    C:\Users\z800\Desktop\FRST.txt
    2018-01-08 19:17 - 2018-01-08 19:17 - 000000545 _____ C:\Users\z800\Desktop\JRT.txt
    2018-01-08 19:13 - 2018-01-08 19:13 - 000006945 _____
    C:\Users\z800\Desktop\AdwCleaner[S0].txt
    2018-01-08 19:09 - 2018-01-08 19:11 - 000000000 ____D C:\AdwCleaner
    2018-01-08 19:09 - 2018-01-08 19:09 - 001790024 _____ (Malwarebytes)
    C:\Users\z800\Desktop\JRT.exe
    2018-01-08 19:08 - 2018-01-08 19:08 - 008198432 _____ (Malwarebytes)
    C:\Users\z800\Desktop\adwcleaner_7.0.6.0.exe
    2018-01-08 19:02 - 2018-01-08 19:23 - 000000000 ____D
    C:\Windows\system32\Drivers\wd
    2018-01-08 19:02 - 2018-01-08 19:02 - 000000004 ____H C:\ProgramData\cm-lock
    2018-01-08 15:49 - 2018-01-08 17:25 - 000003020 _____
    C:\Windows\System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1659209470-
    3749154899-3382556166-1001
    2018-01-08 14:44 - 2018-01-08 14:44 - 000689885 _____
    C:\Users\z800\Desktop\Statistika_PR_Bc a Mgr programy_pro AR 2017-18.pdf
    2018-01-08 12:22 - 2018-01-08 12:22 - 006819686 _____ C:\Users\z800\Desktop\zaves
    textura.psd
    2018-01-08 12:18 - 2018-01-08 12:18 - 000000000 ____D
    C:\Users\z800\AppData\Local\Tempzxpsign9c43f4c10bb3937a
    2018-01-08 12:00 - 2018-01-08 12:00 - 000000000 ____D
    C:\Users\z800\AppData\Local\Tempzxpsignd4f196e47fdbe7c1
    2018-01-08 12:00 - 2018-01-08 12:00 - 000000000 ____D
    C:\Users\z800\AppData\Local\Tempzxpsignae9c8ab6148eb775
    2018-01-08 11:49 - 2018-01-08 13:00 - 1092449732 _____
    C:\Users\z800\Downloads\Lidský rozměr.mp4
    2018-01-08 09:10 - 2018-01-08 10:21 - 1076888552 _____
    C:\Users\z800\Downloads\Garbage Warrior, Architekt odpadu (2007, UK, czdab) EA.mp4
    2018-01-08 08:58 - 2018-01-01 07:03 - 000891904 _____ (Microsoft Corporation)
    C:\Windows\system32\Spectrum.exe
    2018-01-08 08:58 - 2018-01-01 03:27 - 000074648 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vpci.sys
    2018-01-08 08:58 - 2018-01-01 03:26 - 000107416 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vmbus.sys
    2018-01-08 08:58 - 2018-01-01 03:24 - 000135576 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\ksecdd.sys
    2018-01-08 08:58 - 2018-01-01 03:24 - 000102808 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\disk.sys
    2018-01-08 08:58 - 2018-01-01 03:24 - 000052632 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\pcw.sys
    2018-01-08 08:58 - 2018-01-01 03:22 - 001239448 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\ndis.sys
    2018-01-08 08:58 - 2018-01-01 03:22 - 001194784 _____ (Microsoft Corporation)
    C:\Windows\system32\rpcrt4.dll
    2018-01-08 08:58 - 2018-01-01 03:22 - 000181912 _____ (Microsoft Corporation)
    C:\Windows\system32\sspicli.dll
    2018-01-08 08:58 - 2018-01-01 03:22 - 000119704 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\tdx.sys
    2018-01-08 08:58 - 2018-01-01 03:21 - 000587160 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\spaceport.sys
    2018-01-08 08:58 - 2018-01-01 03:20 - 000036760 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\storvsc.sys
    2018-01-08 08:58 - 2018-01-01 03:19 - 000730008 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vhdmp.sys
    2018-01-08 08:58 - 2018-01-01 03:19 - 000164760 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\wfplwfs.sys
    2018-01-08 08:58 - 2018-01-01 03:19 - 000047512 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vmstorfl.sys
    2018-01-08 08:58 - 2018-01-01 03:19 - 000027456 _____ (Microsoft Corporation)
    C:\Windows\system32\vmbuspipe.dll
    2018-01-08 08:58 - 2018-01-01 03:18 - 000110600 _____ (Microsoft Corporation)
    C:\Windows\system32\rmclient.dll
    2018-01-08 08:58 - 2018-01-01 03:18 - 000057752 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\netbios.sys
    2018-01-08 08:58 - 2018-01-01 03:16 - 002672024 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\tcpip.sys
    2018-01-08 08:58 - 2018-01-01 03:16 - 000610712 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\afd.sys
    2018-01-08 08:58 - 2018-01-01 03:15 - 000083352 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\volmgr.sys
    2018-01-08 08:58 - 2018-01-01 03:09 - 000070224 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\WindowsTrustedRT.sys
    2018-01-08 08:58 - 2018-01-01 03:07 - 000583688 _____ (Microsoft Corporation)
    C:\Windows\system32\msvcp110_win.dll
    2018-01-08 08:58 - 2018-01-01 03:03 - 000627584 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\fontdrvhost.exe
    2018-01-08 08:58 - 2018-01-01 03:03 - 000311704 _____ (Adobe Systems Incorporated)
    C:\Windows\SysWOW64\atmfd.dll
    2018-01-08 08:58 - 2018-01-01 02:52 - 000195768 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\wscapi.dll
    2018-01-08 08:58 - 2018-01-01 02:50 - 000787704 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\rpcrt4.dll
    2018-01-08 08:58 - 2018-01-01 02:49 - 000267112 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
    2018-01-08 08:58 - 2018-01-01 02:48 - 005828768 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\windows.storage.dll
    2018-01-08 08:58 - 2018-01-01 02:48 - 002167320 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\iertutil.dll
    2018-01-08 08:58 - 2018-01-01 02:48 - 000073896 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\wwapi.dll
    2018-01-08 08:58 - 2018-01-01 02:47 - 001998416 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\msxml6.dll
    2018-01-08 08:58 - 2018-01-01 02:47 - 000433888 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\WWanAPI.dll
    2018-01-08 08:58 - 2018-01-01 02:47 - 000186520 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\logoncli.dll
    2018-01-08 08:58 - 2018-01-01 02:47 - 000016592 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\wshhyperv.dll
    2018-01-08 08:58 - 2018-01-01 02:46 - 000702032 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\winhttp.dll
    2018-01-08 08:58 - 2018-01-01 02:46 - 000087352 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\rmclient.dll
    2018-01-08 08:58 - 2018-01-01 02:45 - 020374424 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\shell32.dll
    2018-01-08 08:58 - 2018-01-01 02:45 - 000988160 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\ole32.dll
    2018-01-08 08:58 - 2018-01-01 02:43 - 000558080 _____ (Microsoft Corporation)
    C:\Windows\system32\ieui.dll
    2018-01-08 08:58 - 2018-01-01 02:42 - 000480912 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\advapi32.dll
    2018-01-08 08:58 - 2018-01-01 02:42 - 000099840 _____ (Microsoft Corporation)
    C:\Windows\system32\utcutil.dll
    2018-01-08 08:58 - 2018-01-01 02:41 - 000059392 _____ (Microsoft Corporation)
    C:\Windows\system32\PimIndexMaintenanceClient.dll
    2018-01-08 08:58 - 2018-01-01 02:41 - 000010240 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vmgid.sys
    2018-01-08 08:58 - 2018-01-01 02:40 - 000378880 _____ (Microsoft Corporation)
    C:\Windows\system32\MusNotification.exe
    2018-01-08 08:58 - 2018-01-01 02:40 - 000130560 _____ (Microsoft Corporation)
    C:\Windows\splwow64.exe
    2018-01-08 08:58 - 2018-01-01 02:40 - 000118784 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\netvsc.sys
    2018-01-08 08:58 - 2018-01-01 02:40 - 000110592 _____ (Microsoft Corporation)
    C:\Windows\system32\Chakradiag.dll
    2018-01-08 08:58 - 2018-01-01 02:40 - 000082944 _____ (Microsoft Corporation)
    C:\Windows\system32\tdc.ocx
    2018-01-08 08:58 - 2018-01-01 02:40 - 000079872 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\storqosflt.sys
    2018-01-08 08:58 - 2018-01-01 02:40 - 000065536 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\ndisuio.sys
    2018-01-08 08:58 - 2018-01-01 02:40 - 000064512 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\Synth3dVsc.sys
    2018-01-08 08:58 - 2018-01-01 02:40 - 000052736 _____ (Microsoft Corporation)
    C:\Windows\system32\musdialoghandlers.dll
    2018-01-08 08:58 - 2018-01-01 02:40 - 000047104 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\dmvsc.sys
    2018-01-08 08:58 - 2018-01-01 02:40 - 000040960 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\RfxVmt.sys
    2018-01-08 08:58 - 2018-01-01 02:40 - 000037376 _____ (Microsoft Corporation)
    C:\Windows\system32\rfxvmt.dll
    2018-01-08 08:58 - 2018-01-01 02:40 - 000026624 _____ (Microsoft Corporation)
    C:\Windows\system32\LicenseManagerSvc.dll
    2018-01-08 08:58 - 2018-01-01 02:39 - 000217088 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\winnat.sys
    2018-01-08 08:58 - 2018-01-01 02:39 - 000204800 _____ (Microsoft Corporation)
    C:\Windows\system32\MusNotificationUx.exe
    2018-01-08 08:58 - 2018-01-01 02:39 - 000043520 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\nsiproxy.sys
    2018-01-08 08:58 - 2018-01-01 02:38 - 000739840 _____ (Microsoft Corporation)
    C:\Windows\system32\MusUpdateHandlers.dll
    2018-01-08 08:58 - 2018-01-01 02:38 - 000417280 _____ (Microsoft Corporation)
    C:\Windows\system32\html.iec
    2018-01-08 08:58 - 2018-01-01 02:38 - 000182272 _____ (Microsoft Corporation)
    C:\Windows\system32\PimIndexMaintenance.dll
    2018-01-08 08:58 - 2018-01-01 02:38 - 000030720 _____ (Microsoft Corporation)
    C:\Windows\system32\nsisvc.dll
    2018-01-08 08:58 - 2018-01-01 02:37 - 002953216 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\win32kfull.sys
    2018-01-08 08:58 - 2018-01-01 02:37 - 000473600 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\ieui.dll
    2018-01-08 08:58 - 2018-01-01 02:37 - 000225792 _____ (Microsoft Corporation)
    C:\Windows\system32\ie4uinit.exe
    2018-01-08 08:58 - 2018-01-01 02:37 - 000096768 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\fontsub.dll
    2018-01-08 08:58 - 2018-01-01 02:37 - 000038912 _____ (Adobe Systems)
    C:\Windows\SysWOW64\atmlib.dll
    2018-01-08 08:58 - 2018-01-01 02:36 - 000548864 _____ (Microsoft Corporation)
    C:\Windows\system32\SensorService.dll
    2018-01-08 08:58 - 2018-01-01 02:36 - 000388096 _____ (Microsoft Corporation)
    C:\Windows\system32\iedkcs32.dll
    2018-01-08 08:58 - 2018-01-01 02:36 - 000328704 _____ (Microsoft Corporation)
    C:\Windows\system32\PsmServiceExtHost.dll
    2018-01-08 08:58 - 2018-01-01 02:36 - 000209920 _____ (Microsoft Corporation)
    C:\Windows\system32\P2P.dll
    2018-01-08 08:58 - 2018-01-01 02:35 - 000421888 _____ (Microsoft Corporation)
    C:\Windows\system32\p2psvc.dll
    2018-01-08 08:58 - 2018-01-01 02:35 - 000343040 _____ (Microsoft Corporation)
    C:\Windows\system32\pnrpsvc.dll
    2018-01-08 08:58 - 2018-01-01 02:35 - 000060928 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\usoapi.dll
    2018-01-08 08:58 - 2018-01-01 02:35 - 000049152 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\PimIndexMaintenanceClient.dll
    2018-01-08 08:58 - 2018-01-01 02:35 - 000043008 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\virtdisk.dll
    2018-01-08 08:58 - 2018-01-01 02:34 - 000752640 _____ (Microsoft Corporation)
    C:\Windows\system32\msfeeds.dll
    2018-01-08 08:58 - 2018-01-01 02:34 - 000203264 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\container.dll
    2018-01-08 08:58 - 2018-01-01 02:34 - 000132096 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
    2018-01-08 08:58 - 2018-01-01 02:34 - 000097280 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\WcnApi.dll
    2018-01-08 08:58 - 2018-01-01 02:34 - 000072192 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\tdc.ocx
    2018-01-08 08:58 - 2018-01-01 02:34 - 000049664 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\tetheringclient.dll
    2018-01-08 08:58 - 2018-01-01 02:34 - 000044544 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\jsproxy.dll
    2018-01-08 08:58 - 2018-01-01 02:34 - 000032256 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\rfxvmt.dll
    2018-01-08 08:58 - 2018-01-01 02:34 - 000010752 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\msrating.dll
    2018-01-08 08:58 - 2018-01-01 02:33 - 001627648 _____ (Microsoft Corporation)
    C:\Windows\system32\rdpserverbase.dll
    2018-01-08 08:58 - 2018-01-01 02:33 - 001177600 _____ (Microsoft Corporation)
    C:\Windows\system32\Unistore.dll
    2018-01-08 08:58 - 2018-01-01 02:33 - 000221184 _____ (Microsoft Corporation)
    C:\Windows\system32\PeerDistCleaner.dll
    2018-01-08 08:58 - 2018-01-01 02:33 - 000175104 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\fwpolicyiomgr.dll
    2018-01-08 08:58 - 2018-01-01 02:33 - 000064000 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\MshtmlDac.dll
    2018-01-08 08:58 - 2018-01-01 02:33 - 000063488 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\nlaapi.dll
    2018-01-08 08:58 - 2018-01-01 02:33 - 000048640 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\ssdpapi.dll
    2018-01-08 08:58 - 2018-01-01 02:32 - 002078720 _____ (Microsoft Corporation)
    C:\Windows\system32\inetcpl.cpl
    2018-01-08 08:58 - 2018-01-01 02:32 - 001094656 _____ (Microsoft Corporation)
    C:\Windows\system32\rdpbase.dll
    2018-01-08 08:58 - 2018-01-01 02:32 - 000365056 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\msIso.dll
    2018-01-08 08:58 - 2018-01-01 02:32 - 000340480 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\html.iec
    2018-01-08 08:58 - 2018-01-01 02:32 - 000330240 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\webplatstorageserver.dll
    2018-01-08 08:58 - 2018-01-01 02:32 - 000253952 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\unimdm.tsp
    2018-01-08 08:58 - 2018-01-01 02:32 - 000099328 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\hlink.dll
    2018-01-08 08:58 - 2018-01-01 02:32 - 000080896 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\mshtmled.dll
    2018-01-08 08:58 - 2018-01-01 02:32 - 000069632 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\keyiso.dll
    2018-01-08 08:58 - 2018-01-01 02:32 - 000048640 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\dot3dlg.dll
    2018-01-08 08:58 - 2018-01-01 02:31 - 000934912 _____ (Microsoft Corporation)
    C:\Windows\system32\IKEEXT.DLL
    2018-01-08 08:58 - 2018-01-01 02:31 - 000757760 _____ (Microsoft Corporation)
    C:\Windows\system32\spoolsv.exe
    2018-01-08 08:58 - 2018-01-01 02:31 - 000370688 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\FirewallAPI.dll
    2018-01-08 08:58 - 2018-01-01 02:31 - 000242176 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\dhcpcore6.dll
    2018-01-08 08:58 - 2018-01-01 02:31 - 000232448 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\AppLockerCSP.dll
    2018-01-08 08:58 - 2018-01-01 02:31 - 000173056 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\P2P.dll
    2018-01-08 08:58 - 2018-01-01 02:30 - 020514304 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\edgehtml.dll
    2018-01-08 08:58 - 2018-01-01 02:30 - 019337216 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\mshtml.dll
    2018-01-08 08:58 - 2018-01-01 02:30 - 004719104 _____ (Microsoft Corporation)
    C:\Windows\system32\jscript9.dll
    2018-01-08 08:58 - 2018-01-01 02:30 - 000815616 _____ (Microsoft Corporation)
    C:\Windows\system32\BFE.DLL
    2018-01-08 08:58 - 2018-01-01 02:30 - 000432640 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll
    2018-01-08 08:58 - 2018-01-01 02:30 - 000339968 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\iedkcs32.dll
    2018-01-08 08:58 - 2018-01-01 02:30 - 000304128 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\dhcpcore.dll
    2018-01-08 08:58 - 2018-01-01 02:29 - 002516480 _____ (Microsoft Corporation)
    C:\Windows\system32\diagtrack.dll
    2018-01-08 08:58 - 2018-01-01 02:29 - 001954816 _____ (Microsoft Corporation)
    C:\Windows\system32\PeerDistSvc.dll
    2018-01-08 08:58 - 2018-01-01 02:29 - 001628672 _____ (Microsoft Corporation)
    C:\Windows\system32\UserDataService.dll
    2018-01-08 08:58 - 2018-01-01 02:29 - 000969728 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\Unistore.dll
    2018-01-08 08:58 - 2018-01-01 02:29 - 000664576 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\msfeeds.dll
    2018-01-08 08:58 - 2018-01-01 02:29 - 000497664 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\vbscript.dll
    2018-01-08 08:58 - 2018-01-01 02:29 - 000334848 _____ (Microsoft Corporation)
    C:\Windows\system32\ncbservice.dll
    2018-01-08 08:58 - 2018-01-01 02:28 - 001452544 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\rdpserverbase.dll
    2018-01-08 08:58 - 2018-01-01 02:28 - 000754176 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\kerberos.dll
    2018-01-08 08:58 - 2018-01-01 02:28 - 000522752 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\SyncController.dll
    2018-01-08 08:58 - 2018-01-01 02:28 - 000260096 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\actxprxy.dll
    2018-01-08 08:58 - 2018-01-01 02:27 - 006249472 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\Chakra.dll
    2018-01-08 08:58 - 2018-01-01 02:27 - 000946176 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\rdpbase.dll
    2018-01-08 08:58 - 2018-01-01 02:27 - 000879104 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\inetcomm.dll
    2018-01-08 08:58 - 2018-01-01 02:27 - 000267264 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\ncryptprov.dll
    2018-01-08 08:58 - 2018-01-01 02:26 - 011888640 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\ieframe.dll
    2018-01-08 08:58 - 2018-01-01 02:26 - 005964288 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\Windows.Data.Pdf.dll
    2018-01-08 08:58 - 2018-01-01 02:26 - 000750592 _____ (Microsoft Corporation)
    C:\Windows\system32\StorSvc.dll
    2018-01-08 08:58 - 2018-01-01 02:26 - 000414720 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\srv.sys
    2018-01-08 08:58 - 2018-01-01 02:26 - 000385536 _____ (Microsoft Corporation)
    C:\Windows\system32\SessEnv.dll
    2018-01-08 08:58 - 2018-01-01 02:26 - 000183296 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\rdpdr.sys
    2018-01-08 08:58 - 2018-01-01 02:26 - 000081408 _____ (Microsoft Corporation)
    C:\Windows\system32\rdvvmtransport.dll
    2018-01-08 08:58 - 2018-01-01 02:26 - 000027136 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\rdpbus.sys
    2018-01-08 08:58 - 2018-01-01 02:25 - 002010112 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\inetcpl.cpl
    2018-01-08 08:58 - 2018-01-01 02:24 - 003651072 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\jscript9.dll
    2018-01-08 08:58 - 2018-01-01 02:24 - 002859520 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\wininet.dll
    2018-01-08 08:58 - 2018-01-01 02:24 - 000658944 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\jscript.dll
    2018-01-08 08:58 - 2018-01-01 02:23 - 001627136 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\urlmon.dll
    2018-01-08 08:58 - 2018-01-01 02:23 - 000078848 _____ (Microsoft Corporation)
    C:\Windows\system32\offreg.dll
    2018-01-08 08:58 - 2018-01-01 02:22 - 000367616 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\taskcomp.dll
    2018-01-08 08:58 - 2018-01-01 02:21 - 000337920 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\SessEnv.dll
    2018-01-08 08:58 - 2018-01-01 02:21 - 000066560 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\rdvvmtransport.dll
    2018-01-08 08:58 - 2018-01-01 02:20 - 000708096 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\msdtcprx.dll
    2018-01-08 08:58 - 2018-01-01 02:20 - 000052224 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\xolehlp.dll
    2018-01-08 08:58 - 2018-01-01 02:19 - 000011776 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\wscproxystub.dll
    2018-01-08 08:58 - 2018-01-01 02:18 - 000057856 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\offreg.dll
    2018-01-08 08:58 - 2018-01-01 02:18 - 000048128 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\fdPnp.dll
    2018-01-08 08:58 - 2018-01-01 02:18 - 000025088 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\wmiprop.dll
    2018-01-08 08:58 - 2018-01-01 02:18 - 000025088 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\fdWNet.dll
    2018-01-08 08:57 - 2018-01-01 03:27 - 001021336 _____ (Microsoft Corporation)
    C:\Windows\system32\hvax64.exe
    2018-01-08 08:57 - 2018-01-01 03:27 - 000751576 _____ (Microsoft Corporation)
    C:\Windows\system32\fontdrvhost.exe
    2018-01-08 08:57 - 2018-01-01 03:27 - 000544152 _____ (Microsoft Corporation)
    C:\Windows\system32\securekernel.exe
    2018-01-08 08:57 - 2018-01-01 03:27 - 000382864 _____ (Adobe Systems Incorporated)
    C:\Windows\system32\atmfd.dll
    2018-01-08 08:57 - 2018-01-01 03:27 - 000264536 _____ (Microsoft Corporation)
    C:\Windows\system32\LsaIso.exe
    2018-01-08 08:57 - 2018-01-01 03:27 - 000074648 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\hvservice.sys
    2018-01-08 08:57 - 2018-01-01 03:27 - 000066712 _____ (Microsoft Corporation)
    C:\Windows\system32\iumcrypt.dll
    2018-01-08 08:57 - 2018-01-01 03:27 - 000022800 _____ (Microsoft Corporation)
    C:\Windows\system32\iumbase.dll
    2018-01-08 08:57 - 2018-01-01 03:27 - 000022208 _____ (Microsoft Corporation)
    C:\Windows\system32\IumSdk.dll
    2018-01-08 08:57 - 2018-01-01 03:27 - 000020376 _____ (Microsoft Corporation)
    C:\Windows\system32\kdhvcom.dll
    2018-01-08 08:57 - 2018-01-01 03:27 - 000015632 _____ (Microsoft Corporation)
    C:\Windows\system32\iumdll.dll
    2018-01-08 08:57 - 2018-01-01 03:25 - 001065608 _____ (Microsoft Corporation)
    C:\Windows\system32\winresume.efi
    2018-01-08 08:57 - 2018-01-01 03:25 - 000900880 _____ (Microsoft Corporation)
    C:\Windows\system32\winresume.exe
    2018-01-08 08:57 - 2018-01-01 03:24 - 008345496 _____ (Microsoft Corporation)
    C:\Windows\system32\ntoskrnl.exe
    2018-01-08 08:57 - 2018-01-01 03:24 - 002327448 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\ntfs.sys
    2018-01-08 08:57 - 2018-01-01 03:24 - 001188544 _____ (Microsoft Corporation)
    C:\Windows\system32\winload.exe
    2018-01-08 08:57 - 2018-01-01 03:24 - 000229888 _____ (Microsoft Corporation)
    C:\Windows\system32\wscapi.dll
    2018-01-08 08:57 - 2018-01-01 03:24 - 000105880 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\mountmgr.sys
    2018-01-08 08:57 - 2018-01-01 03:24 - 000033688 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\fs_rec.sys
    2018-01-08 08:57 - 2018-01-01 03:23 - 000456088 _____ (Microsoft Corporation)
    C:\Windows\system32\hal.dll
    2018-01-08 08:57 - 2018-01-01 03:23 - 000386456 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\fltMgr.sys
    2018-01-08 08:57 - 2018-01-01 03:22 - 000503704 _____ (Microsoft Corporation)
    C:\Windows\system32\pcasvc.dll
    2018-01-08 08:57 - 2018-01-01 03:21 - 000328616 _____ (Microsoft Corporation)
    C:\Windows\system32\Windows.Storage.ApplicationData.dll
    2018-01-08 08:57 - 2018-01-01 03:21 - 000063896 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\fsdepends.sys
    2018-01-08 08:57 - 2018-01-01 03:20 - 007319912 _____ (Microsoft Corporation)
    C:\Windows\system32\windows.storage.dll
    2018-01-08 08:57 - 2018-01-01 03:20 - 002647216 _____ (Microsoft Corporation)
    C:\Windows\system32\iertutil.dll
    2018-01-08 08:57 - 2018-01-01 03:20 - 000524760 _____ (Microsoft Corporation)
    C:\Windows\system32\WWanAPI.dll
    2018-01-08 08:57 - 2018-01-01 03:20 - 000459160 _____ (Microsoft Corporation)
    C:\Windows\system32\wifitask.exe
    2018-01-08 08:57 - 2018-01-01 03:19 - 002466392 _____ (Microsoft Corporation)
    C:\Windows\system32\msxml6.dll
    2018-01-08 08:57 - 2018-01-01 03:19 - 000870896 _____ (Microsoft Corporation)
    C:\Windows\system32\winhttp.dll
    2018-01-08 08:57 - 2018-01-01 03:19 - 000714648 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\fvevol.sys
    2018-01-08 08:57 - 2018-01-01 03:19 - 000643704 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\cng.sys
    2018-01-08 08:57 - 2018-01-01 03:19 - 000546712 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\storport.sys
    2018-01-08 08:57 - 2018-01-01 03:19 - 000282520 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\rdyboost.sys
    2018-01-08 08:57 - 2018-01-01 03:19 - 000247472 _____ (Microsoft Corporation)
    C:\Windows\system32\logoncli.dll
    2018-01-08 08:57 - 2018-01-01 03:19 - 000184728 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\appid.sys
    2018-01-08 08:57 - 2018-01-01 03:19 - 000123800 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\mup.sys
    2018-01-08 08:57 - 2018-01-01 03:19 - 000118680 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\hvsocket.sys
    2018-01-08 08:57 - 2018-01-01 03:19 - 000082328 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vmbkmcl.sys
    2018-01-08 08:57 - 2018-01-01 03:19 - 000054168 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vdrvroot.sys
    2018-01-08 08:57 - 2018-01-01 03:19 - 000031640 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\winhv.sys
    2018-01-08 08:57 - 2018-01-01 03:19 - 000018672 _____ (Microsoft Corporation)
    C:\Windows\system32\wshhyperv.dll
    2018-01-08 08:57 - 2018-01-01 03:18 - 021354736 _____ (Microsoft Corporation)
    C:\Windows\system32\shell32.dll
    2018-01-08 08:57 - 2018-01-01 03:18 - 001146776 _____ (Microsoft Corporation)
    C:\Windows\system32\hvix64.exe
    2018-01-08 08:57 - 2018-01-01 03:18 - 000966040 _____ (Microsoft Corporation)
    C:\Windows\system32\hvloader.efi
    2018-01-08 08:57 - 2018-01-01 03:18 - 000822680 _____ (Microsoft Corporation)
    C:\Windows\system32\hvloader.exe
    2018-01-08 08:57 - 2018-01-01 03:18 - 000316240 _____ (Microsoft Corporation)
    C:\Windows\system32\wow64.dll
    2018-01-08 08:57 - 2018-01-01 03:18 - 000175800 _____ (Microsoft Corporation)
    C:\Windows\system32\skci.dll
    2018-01-08 08:57 - 2018-01-01 03:18 - 000059800 _____ (Microsoft Corporation)
    C:\Windows\system32\hvhostsvc.dll
    2018-01-08 08:57 - 2018-01-01 03:17 - 000154520 _____ (Microsoft Corporation)
    C:\Windows\system32\consent.exe
    2018-01-08 08:57 - 2018-01-01 03:16 - 001107352 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\http.sys
    2018-01-08 08:57 - 2018-01-01 03:15 - 001396680 _____ (Microsoft Corporation)
    C:\Windows\system32\winload.efi
    2018-01-08 08:57 - 2018-01-01 03:15 - 000644696 _____ (Microsoft Corporation)
    C:\Windows\system32\advapi32.dll
    2018-01-08 08:57 - 2018-01-01 03:14 - 000159640 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\partmgr.sys
    2018-01-08 08:57 - 2018-01-01 03:10 - 000100800 _____ (Microsoft Corporation)
    C:\Windows\system32\wwapi.dll
    2018-01-08 08:57 - 2018-01-01 03:09 - 000434072 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\rdbss.sys
    2018-01-08 08:57 - 2018-01-01 03:09 - 000142744 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\wcifs.sys
    2018-01-08 08:57 - 2018-01-01 03:09 - 000114584 _____ (Microsoft Corporation)
    C:\Windows\system32\icfupgd.dll
    2018-01-08 08:57 - 2018-01-01 03:08 - 001325960 _____ (Microsoft Corporation)
    C:\Windows\system32\ole32.dll
    2018-01-08 08:57 - 2018-01-01 02:52 - 023680512 _____ (Microsoft Corporation)
    C:\Windows\system32\edgehtml.dll
    2018-01-08 08:57 - 2018-01-01 02:44 - 000411184 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\msvcp110_win.dll
    2018-01-08 08:57 - 2018-01-01 02:43 - 003670016 _____ (Microsoft Corporation)
    C:\Windows\system32\win32kfull.sys
    2018-01-08 08:57 - 2018-01-01 02:42 - 000122880 _____ (Microsoft Corporation)
    C:\Windows\system32\fontsub.dll
    2018-01-08 08:57 - 2018-01-01 02:42 - 000083968 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vmbkmclr.sys
    2018-01-08 08:57 - 2018-01-01 02:42 - 000055296 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\winhvr.sys
    2018-01-08 08:57 - 2018-01-01 02:42 - 000047104 _____ (Adobe Systems)
    C:\Windows\system32\atmlib.dll
    2018-01-08 08:57 - 2018-01-01 02:41 - 000120320 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\irda.sys
    2018-01-08 08:57 - 2018-01-01 02:41 - 000087040 _____ (Microsoft Corporation)
    C:\Windows\system32\usoapi.dll
    2018-01-08 08:57 - 2018-01-01 02:41 - 000081408 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\wanarp.sys
    2018-01-08 08:57 - 2018-01-01 02:41 - 000062976 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\ndproxy.sys
    2018-01-08 08:57 - 2018-01-01 02:41 - 000025088 _____ (Microsoft Corporation)
    C:\Windows\system32\sysntfy.dll
    2018-01-08 08:57 - 2018-01-01 02:41 - 000025088 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\VMBusHID.sys
    2018-01-08 08:57 - 2018-01-01 02:41 - 000018944 _____ (Microsoft Corporation)
    C:\Windows\system32\nrpsrv.dll
    2018-01-08 08:57 - 2018-01-01 02:41 - 000017920 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\rasacd.sys
    2018-01-08 08:57 - 2018-01-01 02:41 - 000017408 _____ (Microsoft Corporation)
    C:\Windows\system32\VmApplicationHealthMonitorProxy.dll
    2018-01-08 08:57 - 2018-01-01 02:41 - 000016896 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\hyperkbd.sys
    2018-01-08 08:57 - 2018-01-01 02:41 - 000013824 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vmgencounter.sys
    2018-01-08 08:57 - 2018-01-01 02:41 - 000009216 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vms3cap.sys
    2018-01-08 08:57 - 2018-01-01 02:40 - 000289792 _____ (Microsoft Corporation)
    C:\Windows\system32\container.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000236032 _____ (Microsoft Corporation)
    C:\Windows\system32\url.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000216064 _____ (Microsoft Corporation)
    C:\Windows\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000134656 _____ (Microsoft Corporation)
    C:\Windows\system32\WcnApi.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000133632 _____ (Microsoft Corporation)
    C:\Windows\system32\wificonnapi.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000118784 _____ (Microsoft Corporation)
    C:\Windows\system32\iesysprep.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000111616 _____ (Microsoft Corporation)
    C:\Windows\system32\wcimage.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000096256 _____ (Microsoft Corporation)
    C:\Windows\system32\JavaScriptCollectionAgent.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000096256 _____ (Microsoft Corporation)
    C:\Windows\system32\container_xml.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000081408 _____ (Microsoft Corporation)
    C:\Windows\system32\efslsaext.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000077824 _____ (Microsoft Corporation)
    C:\Windows\system32\iesetup.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000072192 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\wcnfs.sys
    2018-01-08 08:57 - 2018-01-01 02:40 - 000070656 _____ (Microsoft Corporation)
    C:\Windows\system32\EdgeManager.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000066560 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\lltdio.sys
    2018-01-08 08:57 - 2018-01-01 02:40 - 000060416 _____ (Microsoft Corporation)
    C:\Windows\system32\tetheringclient.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000057344 _____ (Microsoft Corporation)
    C:\Windows\system32\efssvc.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000050688 _____ (Microsoft Corporation)
    C:\Windows\system32\virtdisk.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000050688 _____ (Microsoft Corporation)
    C:\Windows\system32\jsproxy.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000047616 _____ (Microsoft Corporation)
    C:\Windows\system32\vmictimeprovider.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000046080 _____ (Microsoft Corporation)
    C:\Windows\system32\iernonce.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000015360 _____ (Microsoft Corporation)
    C:\Windows\system32\msfeedssync.exe
    2018-01-08 08:57 - 2018-01-01 02:40 - 000012288 _____ (Microsoft Corporation)
    C:\Windows\system32\msrating.dll
    2018-01-08 08:57 - 2018-01-01 02:40 - 000008192 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\gpuenergydrv.sys
    2018-01-08 08:57 - 2018-01-01 02:39 - 000215040 _____ (Microsoft Corporation)
    C:\Windows\system32\fwpolicyiomgr.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000200192 _____ (Microsoft Corporation)
    C:\Windows\system32\ScDeviceEnum.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000197120 _____ (Microsoft Corporation)
    C:\Windows\system32\ACPBackgroundManagerPolicy.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000167424 _____ (Microsoft Corporation)
    C:\Windows\system32\iexpress.exe
    2018-01-08 08:57 - 2018-01-01 02:39 - 000150016 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\rmcast.sys
    2018-01-08 08:57 - 2018-01-01 02:39 - 000144896 _____ (Microsoft Corporation)
    C:\Windows\system32\wextract.exe
    2018-01-08 08:57 - 2018-01-01 02:39 - 000142848 _____ (Microsoft Corporation)
    C:\Windows\system32\IEAdvpack.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000124928 _____ (Microsoft Corporation)
    C:\Windows\system32\httpprxm.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000104448 _____ (Microsoft Corporation)
    C:\Windows\system32\rasauto.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000084992 _____ (Microsoft Corporation)
    C:\Windows\system32\MshtmlDac.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000081920 _____ (Microsoft Corporation)
    C:\Windows\system32\SCardDlg.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000080384 _____ (Microsoft Corporation)
    C:\Windows\system32\nlaapi.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000065536 _____ (Microsoft Corporation)
    C:\Windows\system32\pngfilt.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000057856 _____ (Microsoft Corporation)
    C:\Windows\system32\ssdpapi.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000052224 _____ (Microsoft Corporation)
    C:\Windows\system32\imgutil.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000032256 _____ (Microsoft Corporation)
    C:\Windows\system32\licmgr10.dll
    2018-01-08 08:57 - 2018-01-01 02:39 - 000014848 _____ (Microsoft Corporation)
    C:\Windows\system32\mshta.exe
    2018-01-08 08:57 - 2018-01-01 02:38 - 000457728 _____ (Microsoft Corporation)
    C:\Windows\system32\webplatstorageserver.dll
    2018-01-08 08:57 - 2018-01-01 02:38 - 000334336 _____ (Microsoft Corporation)
    C:\Windows\system32\wc_storage.dll
    2018-01-08 08:57 - 2018-01-01 02:38 - 000304640 _____ (Microsoft Corporation)
    C:\Windows\system32\dusmsvc.dll
    2018-01-08 08:57 - 2018-01-01 02:38 - 000293376 _____ (Microsoft Corporation)
    C:\Windows\system32\unimdm.tsp
    2018-01-08 08:57 - 2018-01-01 02:38 - 000283648 _____ (Microsoft Corporation)
    C:\Windows\system32\icsvc.dll
    2018-01-08 08:57 - 2018-01-01 02:38 - 000172032 _____ (Microsoft Corporation)
    C:\Windows\system32\WPTaskScheduler.dll
    2018-01-08 08:57 - 2018-01-01 02:38 - 000165888 _____ (Microsoft Corporation)
    C:\Windows\system32\TimeBrokerServer.dll
    2018-01-08 08:57 - 2018-01-01 02:38 - 000151040 _____ (Microsoft Corporation)
    C:\Windows\system32\ieUnatt.exe
    2018-01-08 08:57 - 2018-01-01 02:38 - 000150528 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\dfsc.sys
    2018-01-08 08:57 - 2018-01-01 02:38 - 000149504 _____ (Microsoft Corporation)
    C:\Windows\system32\dssvc.dll
    2018-01-08 08:57 - 2018-01-01 02:38 - 000115200 _____ (Microsoft Corporation)
    C:\Windows\system32\inseng.dll
    2018-01-08 08:57 - 2018-01-01 02:38 - 000096256 _____ (Microsoft Corporation)
    C:\Windows\system32\mshtmled.dll
    2018-01-08 08:57 - 2018-01-01 02:38 - 000093696 _____ (Microsoft Corporation)
    C:\Windows\system32\keyiso.dll
    2018-01-08 08:57 - 2018-01-01 02:38 - 000058368 _____ (Microsoft Corporation)
    C:\Windows\system32\dot3dlg.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 023683072 _____ (Microsoft Corporation)
    C:\Windows\system32\mshtml.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000739840 _____ (Microsoft Corporation)
    C:\Windows\system32\PhoneProviders.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000723968 _____ (Microsoft Corporation)
    C:\Windows\system32\NaturalAuth.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000582656 _____ (Microsoft Corporation)
    C:\Windows\system32\SmsRouterSvc.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000434176 _____ (Microsoft Corporation)
    C:\Windows\system32\msIso.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000424960 _____ (Microsoft Corporation)
    C:\Windows\system32\vmrdvcore.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000342528 _____ (Microsoft Corporation)
    C:\Windows\system32\APHostService.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000336384 _____ (Microsoft Corporation)
    C:\Windows\system32\AppLockerCSP.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000305152 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\netbt.sys
    2018-01-08 08:57 - 2018-01-01 02:37 - 000250368 _____ (Microsoft Corporation)
    C:\Windows\system32\SCardSvr.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000250368 _____ (Microsoft Corporation)
    C:\Windows\system32\BrokerLib.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000232960 _____ (Microsoft Corporation)
    C:\Windows\system32\wcmcsp.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000210432 _____ (Microsoft Corporation)
    C:\Windows\system32\tetheringservice.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000209408 _____ (Microsoft Corporation)
    C:\Windows\system32\psmsrv.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000189952 _____ (Microsoft Corporation)
    C:\Windows\system32\certprop.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000140288 _____ (Microsoft Corporation)
    C:\Windows\system32\iepeers.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000138752 _____ (Microsoft Corporation)
    C:\Windows\system32\appinfo.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000099328 _____ (Microsoft Corporation)
    C:\Windows\system32\hlink.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000072704 _____ (Microsoft Corporation)
    C:\Windows\system32\msfeedsbs.dll
    2018-01-08 08:57 - 2018-01-01 02:37 - 000072192 _____ (Microsoft Corporation)
    C:\Windows\system32\adhsvc.dll
    2018-01-08 08:57 - 2018-01-01 02:36 - 000773120 _____ (Microsoft Corporation)
    C:\Windows\system32\PhoneService.dll
    2018-01-08 08:57 - 2018-01-01 02:36 - 000626176 _____ (Microsoft Corporation)
    C:\Windows\system32\Windows.Internal.Bluetooth.dll
    2018-01-08 08:57 - 2018-01-01 02:36 - 000463872 _____ (Microsoft Corporation)
    C:\Windows\system32\wcncsvc.dll
    2018-01-08 08:57 - 2018-01-01 02:36 - 000457728 _____ (Microsoft Corporation)
    C:\Windows\system32\dxtmsft.dll
    2018-01-08 08:57 - 2018-01-01 02:36 - 000310784 _____ (Microsoft Corporation)
    C:\Windows\system32\wifiprofilessettinghandler.dll
    2018-01-08 08:57 - 2018-01-01 02:36 - 000307712 _____ (Microsoft Corporation)
    C:\Windows\system32\icsvcext.dll
    2018-01-08 08:57 - 2018-01-01 02:36 - 000274944 _____ (Microsoft Corporation)
    C:\Windows\system32\dxtrans.dll
    2018-01-08 08:57 - 2018-01-01 02:36 - 000252416 _____ (Microsoft Corporation)
    C:\Windows\system32\dot3svc.dll
    2018-01-08 08:57 - 2018-01-01 02:35 - 000996864 _____ (Microsoft Corporation)
    C:\Windows\system32\iphlpsvc.dll
    2018-01-08 08:57 - 2018-01-01 02:35 - 000847360 _____ (Microsoft Corporation)
    C:\Windows\system32\bisrv.dll
    2018-01-08 08:57 - 2018-01-01 02:35 - 000741376 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\PEAuth.sys
    2018-01-08 08:57 - 2018-01-01 02:35 - 000692736 _____ (Microsoft Corporation)
    C:\Windows\system32\jscript9diag.dll
    2018-01-08 08:57 - 2018-01-01 02:35 - 000538624 _____ (Microsoft Corporation)
    C:\Windows\system32\FirewallAPI.dll
    2018-01-08 08:57 - 2018-01-01 02:35 - 000422912 _____ (Microsoft Corporation)
    C:\Windows\system32\WpAXHolder.dll
    2018-01-08 08:57 - 2018-01-01 02:35 - 000365568 _____ (Microsoft Corporation)
    C:\Windows\system32\dhcpcore.dll
    2018-01-08 08:57 - 2018-01-01 02:35 - 000292352 _____ (Microsoft Corporation)
    C:\Windows\system32\SystemEventsBrokerServer.dll
    2018-01-08 08:57 - 2018-01-01 02:35 - 000278016 _____ (Microsoft Corporation)
    C:\Windows\system32\dhcpcore6.dll
    2018-01-08 08:57 - 2018-01-01 02:35 - 000257024 _____ (Microsoft Corporation)
    C:\Windows\system32\webcheck.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000973312 _____ (Microsoft Corporation)
    C:\Windows\system32\sysmain.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000805888 _____ (Microsoft Corporation)
    C:\Windows\system32\ieproxy.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000620032 _____ (Microsoft Corporation)
    C:\Windows\system32\SyncController.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000585216 _____ (Microsoft Corporation)
    C:\Windows\system32\vbscript.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000399872 _____ (Microsoft Corporation)
    C:\Windows\system32\ncsi.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000239616 _____ (Microsoft Corporation)
    C:\Windows\system32\ssdpsrv.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000233472 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\url.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000148480 _____ (Microsoft Corporation)
    C:\Windows\system32\occache.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000136192 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\wextract.exe
    2018-01-08 08:57 - 2018-01-01 02:34 - 000098304 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\iesysprep.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000080896 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\Chakradiag.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000072704 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000058880 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\EdgeManager.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000037376 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\iernonce.dll
    2018-01-08 08:57 - 2018-01-01 02:34 - 000013824 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\msfeedssync.exe
    2018-01-08 08:57 - 2018-01-01 02:34 - 000013312 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\mshta.exe
    2018-01-08 08:57 - 2018-01-01 02:33 - 003306496 _____ (Microsoft Corporation)
    C:\Windows\system32\wininet.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000877568 _____ (Microsoft Corporation)
    C:\Windows\system32\usermgr.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000799744 _____ (Microsoft Corporation)
    C:\Windows\system32\wcmsvc.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000687616 _____ (Microsoft Corporation)
    C:\Windows\system32\LogonController.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000583168 _____ (Microsoft Corporation)
    C:\Windows\system32\actxprxy.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000365568 _____ (Microsoft Corporation)
    C:\Windows\system32\nlasvc.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000315904 _____ (Microsoft Corporation)
    C:\Windows\system32\ncryptprov.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000152064 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\iexpress.exe
    2018-01-08 08:57 - 2018-01-01 02:33 - 000120320 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\IEAdvpack.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000070144 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\iesetup.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000059392 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\pngfilt.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000039936 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\imgutil.dll
    2018-01-08 08:57 - 2018-01-01 02:33 - 000027136 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\licmgr10.dll
    2018-01-08 08:57 - 2018-01-01 02:32 - 001028608 _____ (Microsoft Corporation)
    C:\Windows\system32\modernexecserver.dll
    2018-01-08 08:57 - 2018-01-01 02:32 - 000970752 _____ (Microsoft Corporation)
    C:\Windows\system32\inetcomm.dll
    2018-01-08 08:57 - 2018-01-01 02:32 - 000922112 _____ (Microsoft Corporation)
    C:\Windows\system32\kerberos.dll
    2018-01-08 08:57 - 2018-01-01 02:32 - 000124928 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\iepeers.dll
    2018-01-08 08:57 - 2018-01-01 02:32 - 000123392 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\ieUnatt.exe
    2018-01-08 08:57 - 2018-01-01 02:32 - 000097280 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\inseng.dll
    2018-01-08 08:57 - 2018-01-01 02:32 - 000064000 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\msfeedsbs.dll
    2018-01-08 08:57 - 2018-01-01 02:31 - 008188928 _____ (Microsoft Corporation)
    C:\Windows\system32\Chakra.dll
    2018-01-08 08:57 - 2018-01-01 02:31 - 007339520 _____ (Microsoft Corporation)
    C:\Windows\system32\Windows.Data.Pdf.dll
    2018-01-08 08:57 - 2018-01-01 02:31 - 001736704 _____ (Microsoft Corporation)
    C:\Windows\system32\wevtsvc.dll
    2018-01-08 08:57 - 2018-01-01 02:31 - 001398272 _____ (Microsoft Corporation)
    C:\Windows\system32\wwansvc.dll
    2018-01-08 08:57 - 2018-01-01 02:31 - 001355264 _____ (Microsoft Corporation)
    C:\Windows\system32\wifinetworkmanager.dll
    2018-01-08 08:57 - 2018-01-01 02:31 - 000266240 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\dxtrans.dll
    2018-01-08 08:57 - 2018-01-01 02:30 - 012803584 _____ (Microsoft Corporation)
    C:\Windows\system32\ieframe.dll
    2018-01-08 08:57 - 2018-01-01 02:30 - 003206656 _____ (Microsoft Corporation)
    C:\Windows\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
    2018-01-08 08:57 - 2018-01-01 02:30 - 000706560 _____ (Microsoft Corporation)
    C:\Windows\system32\winlogon.exe
    2018-01-08 08:57 - 2018-01-01 02:30 - 000690688 _____ (Microsoft Corporation)
    C:\Windows\system32\usocore.dll
    2018-01-08 08:57 - 2018-01-01 02:30 - 000397824 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\dxtmsft.dll
    2018-01-08 08:57 - 2018-01-01 02:30 - 000397312 _____ (Microsoft Corporation)
    C:\Windows\system32\rascustom.dll
    2018-01-08 08:57 - 2018-01-01 02:30 - 000303104 _____ (Microsoft Corporation)
    C:\Windows\system32\srvsvc.dll
    2018-01-08 08:57 - 2018-01-01 02:29 - 002426368 _____ (Microsoft Corporation)
    C:\Windows\system32\wlansvc.dll
    2018-01-08 08:57 - 2018-01-01 02:29 - 001583616 _____ (Microsoft Corporation)
    C:\Windows\system32\ieapfltr.dll
    2018-01-08 08:57 - 2018-01-01 02:29 - 001460736 _____ (Microsoft Corporation)
    C:\Windows\system32\lsasrv.dll
    2018-01-08 08:57 - 2018-01-01 02:29 - 000972288 _____ (Microsoft Corporation)
    C:\Windows\system32\MPSSVC.dll
    2018-01-08 08:57 - 2018-01-01 02:29 - 000877568 _____ (Microsoft Corporation)
    C:\Windows\system32\schedsvc.dll
    2018-01-08 08:57 - 2018-01-01 02:29 - 000755200 _____ (Microsoft Corporation)
    C:\Windows\system32\jscript.dll
    2018-01-08 08:57 - 2018-01-01 02:29 - 000552960 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\jscript9diag.dll
    2018-01-08 08:57 - 2018-01-01 02:29 - 000358400 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\ieproxy.dll
    2018-01-08 08:57 - 2018-01-01 02:29 - 000272384 _____ (Microsoft Corporation)
    C:\Windows\system32\wkssvc.dll
    2018-01-08 08:57 - 2018-01-01 02:29 - 000126464 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\occache.dll
    2018-01-08 08:57 - 2018-01-01 02:28 - 001802752 _____ (Microsoft Corporation)
    C:\Windows\system32\urlmon.dll
    2018-01-08 08:57 - 2018-01-01 02:28 - 000233472 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\webcheck.dll
    2018-01-08 08:57 - 2018-01-01 02:26 - 000722944 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\srv2.sys
    2018-01-08 08:57 - 2018-01-01 02:26 - 000502272 _____ (Microsoft Corporation)
    C:\Windows\system32\taskcomp.dll
    2018-01-08 08:57 - 2018-01-01 02:25 - 000824832 _____ (Microsoft Corporation)
    C:\Windows\system32\msdtcprx.dll
    2018-01-08 08:57 - 2018-01-01 02:25 - 000062976 _____ (Microsoft Corporation)
    C:\Windows\system32\xolehlp.dll
    2018-01-08 08:57 - 2018-01-01 02:25 - 000010240 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\beep.sys
    2018-01-08 08:57 - 2018-01-01 02:24 - 001463296 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\ieapfltr.dll
    2018-01-08 08:57 - 2018-01-01 02:24 - 000208896 _____ (Microsoft Corporation)
    C:\Windows\system32\wscsvc.dll
    2018-01-08 08:57 - 2018-01-01 02:24 - 000017408 _____ (Microsoft Corporation)
    C:\Windows\system32\wscproxystub.dll
    2018-01-08 08:57 - 2018-01-01 02:23 - 000239616 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\ahcache.sys
    2018-01-08 08:57 - 2018-01-01 02:23 - 000101888 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\bowser.sys
    2018-01-08 08:57 - 2018-01-01 02:23 - 000069120 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\npfs.sys
    2018-01-08 08:57 - 2018-01-01 02:23 - 000059392 _____ (Microsoft Corporation)
    C:\Windows\system32\fdPnp.dll
    2018-01-08 08:57 - 2018-01-01 02:23 - 000045568 _____ (Microsoft Corporation)
    C:\Windows\system32\pcadm.dll
    2018-01-08 08:57 - 2018-01-01 02:23 - 000031744 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\msfs.sys
    2018-01-08 08:57 - 2018-01-01 02:23 - 000029696 _____ (Microsoft Corporation)
    C:\Windows\system32\pcalua.exe
    2018-01-08 08:57 - 2018-01-01 02:23 - 000029696 _____ (Microsoft Corporation)
    C:\Windows\system32\fdWNet.dll
    2018-01-08 08:57 - 2018-01-01 02:23 - 000029184 _____ (Microsoft Corporation)
    C:\Windows\system32\wmiprop.dll
    2018-01-08 08:57 - 2018-01-01 02:23 - 000007680 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\null.sys
    2018-01-08 08:57 - 2018-01-01 02:18 - 000021504 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\perfhost.exe
    2018-01-08 08:43 - 2018-01-08 08:43 - 000000060 _____ C:\Users\z800\Desktop\jackson
    Archicad.pln.lck
    2018-01-08 06:27 - 2018-01-08 06:27 - 000000000 ____D
    C:\Users\z800\AppData\Local\Tempzxpsignae5a3f2978ba2428
    2018-01-08 06:27 - 2018-01-08 06:27 - 000000000 ____D
    C:\Users\z800\AppData\Local\Tempzxpsigna3969db2f5847965
    2018-01-08 06:26 - 2018-01-08 13:34 - 035894684 _____ C:\Users\z800\Desktop\skp
    obyvak verze komplet.skb
    2018-01-08 06:19 - 2018-01-08 14:18 - 035894756 _____ C:\Users\z800\Desktop\skp
    obyvak verze komplet.skp
    2018-01-08 04:45 - 2018-01-08 19:24 - 000000000 ____D C:\FRST
    2018-01-08 04:43 - 2018-01-08 04:44 - 002393088 _____ (Farbar)
    C:\Users\z800\Desktop\FRST64.exe
    2017-12-25 23:20 - 2017-12-25 23:20 - 000000000 ____H
    C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
    2017-12-23 16:21 - 2018-01-08 06:17 - 035479765 _____ C:\Users\z800\Desktop\skp
    obyvak.skb
    2017-12-23 16:14 - 2018-01-08 06:18 - 035503075 _____ C:\Users\z800\Desktop\skp
    obyvak.skp
    2017-12-23 15:50 - 2017-12-23 15:50 - 003861273 _____
    C:\Users\z800\Desktop\sedacka.skp
    2017-12-23 14:48 - 2017-12-23 14:48 - 000490584 _____ C:\Users\z800\Desktop\jackson
    Archicad.3ds
    2017-12-23 13:27 - 2017-12-23 13:33 - 072181344 _____ (GRAPHISOFT SE)
    C:\Users\z800\Downloads\Goodies_Suite-20-CZE-4012-1.0.exe
    2017-12-20 01:02 - 2017-12-20 01:02 - 000000000 ____D
    C:\Users\z800\AppData\Roaming\Trimble Connect for SketchUp
    2017-12-19 19:59 - 2017-12-19 19:59 - 000000000 ____D
    C:\Users\z800\AppData\Roaming\SketchUp
    2017-12-19 19:58 - 2017-12-19 19:58 - 000002235 _____ C:\Users\Public\Desktop\Style
    Builder 2017.lnk
    2017-12-19 19:58 - 2017-12-19 19:58 - 000002149 _____
    C:\Users\Public\Desktop\LayOut 2017.lnk
    2017-12-19 19:58 - 2017-12-19 19:58 - 000002060 _____
    C:\Users\Public\Desktop\SketchUp 2017.lnk
    2017-12-19 19:58 - 2017-12-19 19:58 - 000000000 ____D C:\ProgramData\Reprise
    2017-12-19 19:58 - 2017-12-19 19:58 - 000000000 ____D
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2017
    2017-12-19 19:57 - 2017-12-19 19:57 - 000000000 ____D C:\ProgramData\SketchUp
    2017-12-19 19:57 - 2017-12-19 19:57 - 000000000 ____D C:\Program Files\SketchUp
    2017-12-19 19:54 - 2017-12-19 19:54 - 000000000 ____D
    C:\Users\z800\Downloads\sketchup_install
    2017-12-17 14:24 - 2018-01-08 06:43 - 007449904 _____ C:\Users\z800\Desktop\jackson
    Archicad.pln
    2017-12-17 14:24 - 2017-12-23 21:00 - 007452048 _____ C:\Users\z800\Desktop\jackson
    Archicad.bpn
    2017-12-17 14:08 - 2017-05-06 12:16 - 000000000 ____D
    C:\Users\z800\Downloads\SketchUp Pro 2017 17.2.2555 (x64) + Crack [Kedar_CZ]
    2017-12-17 13:17 - 2017-12-17 13:45 - 254036125 _____
    C:\Users\z800\Downloads\SketchUp Pro 2017 17.2.2555 (64bit) + Crack [Kedar_CZ].rar
    2017-12-14 17:22 - 2017-12-14 17:22 - 032580221 _____ C:\Users\z800\Desktop\moderní
    umění.pptx
    2017-12-14 11:13 - 2017-12-02 03:25 - 000835576 _____ (Adobe Systems Incorporated)
    C:\Windows\SysWOW64\FlashPlayerApp.exe
    2017-12-14 11:13 - 2017-12-02 03:25 - 000177656 _____ (Adobe Systems Incorporated)
    C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2017-12-14 11:10 - 2017-12-14 11:10 - 000000000 ___SD C:\Windows\UpdateAssistantV2
    2017-12-13 17:14 - 2017-11-30 04:33 - 000038808 _____ (Microsoft Corporation)
    C:\Windows\system32\OOBEUpdater.exe
    2017-12-13 17:14 - 2017-11-30 04:23 - 001194248 _____ (Microsoft Corporation)
    C:\Windows\system32\mfnetcore.dll
    2017-12-13 17:14 - 2017-11-30 03:58 - 006763128 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
    2017-12-13 17:14 - 2017-11-30 03:57 - 001123968 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\mfnetcore.dll
    2017-12-13 17:14 - 2017-11-30 03:45 - 000119808 _____ (Microsoft Corporation)
    C:\Windows\system32\UserDataTimeUtil.dll
    2017-12-13 17:14 - 2017-11-30 03:44 - 000171008 _____ (Microsoft Corporation)
    C:\Windows\system32\itss.dll
    2017-12-13 17:14 - 2017-11-30 03:43 - 000095232 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\UserDataTimeUtil.dll
    2017-12-13 17:14 - 2017-11-30 03:43 - 000002560 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\tzres.dll
    2017-12-13 17:14 - 2017-11-30 03:42 - 000560640 _____ (Microsoft Corporation)
    C:\Windows\system32\iprtrmgr.dll
    2017-12-13 17:14 - 2017-11-30 03:42 - 000148992 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\itss.dll
    2017-12-13 17:14 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\msscript.ocx
    2017-12-13 17:14 - 2017-11-30 03:41 - 000146944 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\wscript.exe
    2017-12-13 17:14 - 2017-11-30 03:40 - 000528384 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\iprtrmgr.dll
    2017-12-13 17:14 - 2017-11-30 03:40 - 000206336 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\scrobj.dll
    2017-12-13 17:14 - 2017-11-30 03:40 - 000143360 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\cscript.exe
    2017-12-13 17:14 - 2017-11-30 03:38 - 001248768 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
    2017-12-13 17:14 - 2017-11-30 03:38 - 000636416 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\WpcWebFilter.dll
    2017-12-13 17:14 - 2017-11-30 03:36 - 005557760 _____ (Microsoft Corporation)
    C:\Windows\system32\dbgeng.dll
    2017-12-13 17:14 - 2017-11-30 03:36 - 001019904 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\aadtb.dll
    2017-12-13 17:14 - 2017-11-30 03:34 - 004559360 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\dbgeng.dll
    2017-12-13 17:14 - 2017-11-17 10:31 - 000223640 _____ (Microsoft Corporation)
    C:\Windows\SysWOW64\aepic.dll
    2017-12-13 17:13 - 2017-11-30 04:23 - 007910960 _____ (Microsoft Corporation)
    C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
    2017-12-13 17:13 - 2017-11-30 03:45 - 000002560 _____ (Microsoft Corporation)
    C:\Windows\system32\tzres.dll
    2017-12-13 17:13 - 2017-11-30 03:44 - 000042496 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\vwifimp.sys
    2017-12-13 17:13 - 2017-11-30 03:43 - 000164352 _____ (Microsoft Corporation)
    C:\Windows\system32\wscript.exe
    2017-12-13 17:13 - 2017-11-30 03:42 - 001878016 _____ (Microsoft Corporation)
    C:\Windows\system32\AzureSettingSyncProvider.dll
    2017-12-13 17:13 - 2017-11-30 03:42 - 000164352 _____ (Microsoft Corporation)
    C:\Windows\system32\cscript.exe
    2017-12-13 17:13 - 2017-11-30 03:41 - 000527360 _____ (Microsoft Corporation)
    C:\Windows\system32\aadcloudap.dll
    2017-12-13 17:13 - 2017-11-30 03:41 - 000414720 _____ (Microsoft Corporation)
    C:\Windows\system32\provhandlers.dll
    2017-12-13 17:13 - 2017-11-30 03:41 - 000222208 _____ (Microsoft Corporation)
    C:\Windows\system32\scrobj.dll
    2017-12-13 17:13 - 2017-11-30 03:39 - 002809344 _____ (Microsoft Corporation)
    C:\Windows\system32\AppXDeploymentServer.dll
    2017-12-13 17:13 - 2017-11-30 03:39 - 000925696 _____ (Microsoft Corporation)
    C:\Windows\system32\WpcWebFilter.dll
    2017-12-13 17:13 - 2017-11-30 03:37 - 001293824 _____ (Microsoft Corporation)
    C:\Windows\system32\aadtb.dll
    2017-12-13 17:13 - 2017-11-17 10:46 - 002032536 _____ (Microsoft Corporation)
    C:\Windows\system32\aitstatic.exe
    2017-12-13 17:13 - 2017-11-17 10:46 - 001578904 _____ (Microsoft Corporation)
    C:\Windows\system32\appraiser.dll
    2017-12-13 17:13 - 2017-11-17 10:46 - 000678808 _____ (Microsoft Corporation)
    C:\Windows\system32\generaltel.dll
    2017-12-13 17:13 - 2017-11-17 10:46 - 000613784 _____ (Microsoft Corporation)
    C:\Windows\system32\aeinv.dll
    2017-12-13 17:13 - 2017-11-17 10:46 - 000612248 _____ (Microsoft Corporation)
    C:\Windows\system32\devinv.dll
    2017-12-13 17:13 - 2017-11-17 10:46 - 000484248 _____ (Microsoft Corporation)
    C:\Windows\system32\dcntel.dll
    2017-12-13 17:13 - 2017-11-17 10:46 - 000379288 _____ (Microsoft Corporation)
    C:\Windows\system32\invagent.dll
    2017-12-13 17:13 - 2017-11-17 10:46 - 000259992 _____ (Microsoft Corporation)
    C:\Windows\system32\aepic.dll
    2017-12-13 17:13 - 2017-11-17 10:46 - 000190360 _____ (Microsoft Corporation)
    C:\Windows\system32\acmigration.dll
    2017-12-13 17:13 - 2017-11-17 10:46 - 000136088 _____ (Microsoft Corporation)
    C:\Windows\system32\CompatTelRunner.exe
    2017-12-13 17:13 - 2017-11-17 10:46 - 000067992 _____ (Microsoft Corporation)
    C:\Windows\system32\win32appinventorycsp.dll
    2017-12-13 17:13 - 2017-11-17 10:46 - 000034712 _____ (Microsoft Corporation)
    C:\Windows\system32\DeviceCensus.exe
    2017-12-13 17:13 - 2017-11-17 10:39 - 005477088 _____ (Microsoft Corporation)
    C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
    2017-12-13 17:13 - 2017-11-17 09:59 - 000064512 _____ (Microsoft Corporation)
    C:\Windows\system32\winsrv.dll
    2017-12-13 17:13 - 2017-11-17 09:56 - 000757248 _____ (Microsoft Corporation)
    C:\Windows\system32\Drivers\WdiWiFi.sys
    2017-12-13 17:00 - 2017-12-14 17:49 - 000000000 ____D C:\Users\z800\Desktop\aveart
    pisnicky

    ==================== One Month Modified files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2018-01-08 19:15 - 2017-09-14 16:06 - 000000000 ____D C:\ProgramData\NVIDIA


    2018-01-08 19:14 - 2017-09-16 11:51 - 000000000 ____D
    C:\Users\z800\AppData\Roaming\uTorrent
    2018-01-08 19:09 - 2017-09-13 22:14 - 002855350 _____
    C:\Windows\system32\PerfStringBackup.INI
    2018-01-08 19:09 - 2017-03-20 05:39 - 001298450 _____
    C:\Windows\system32\perfh005.dat
    2018-01-08 19:09 - 2017-03-20 05:39 - 000319054 _____
    C:\Windows\system32\perfc005.dat
    2018-01-08 19:05 - 2017-10-15 08:35 - 000000000 ____D
    C:\Users\z800\AppData\LocalLow\uTorrent
    2018-01-08 19:03 - 2017-09-13 22:18 - 000000000 __RHD
    C:\Users\Public\AccountPictures
    2018-01-08 19:03 - 2017-09-13 22:17 - 000000000 ____D C:\Users\z800
    2018-01-08 19:03 - 2017-09-13 22:00 - 000385408 _____
    C:\Windows\system32\FNTCACHE.DAT
    2018-01-08 19:02 - 2017-09-13 22:00 - 000000006 ____H C:\Windows\Tasks\SA.DAT
    2018-01-08 19:01 - 2017-03-18 12:40 - 000786432 _____
    C:\Windows\system32\config\BBI
    2018-01-08 19:00 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\F12
    2018-01-08 19:00 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\F12
    2018-01-08 18:59 - 2017-03-18 22:01 - 000000000 ____D C:\Windows\INF
    2018-01-08 18:54 - 2017-09-13 22:00 - 000000000 ____D
    C:\Windows\system32\SleepStudy
    2018-01-08 17:23 - 2017-10-22 09:35 - 000000000 ____D
    C:\Users\z800\AppData\Local\CrashDumps
    2018-01-08 15:33 - 2017-10-14 17:43 - 000000000 ____D
    C:\Users\z800\AppData\Roaming\vlc
    2018-01-08 15:16 - 2017-09-13 22:58 - 000000000 ____D C:\Windows\Panther
    2018-01-08 15:01 - 2017-12-08 18:34 - 000034293 _____ C:\Windows\diagwrn.xml
    2018-01-08 15:01 - 2017-12-08 18:34 - 000034293 _____ C:\Windows\diagerr.xml
    2018-01-08 14:13 - 2017-03-18 12:40 - 000032768 _____
    C:\Windows\system32\config\ELAM
    2018-01-08 14:00 - 2017-09-30 15:59 - 000000000 ___HD C:\$WINDOWS.~BT
    2018-01-08 14:00 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\Registration
    2018-01-08 09:04 - 2017-03-18 21:51 - 000000000 ____D C:\Windows\CbsTemp
    2018-01-08 08:43 - 2017-10-24 18:40 - 000000000 ____D C:\Users\z800\GRAPHISOFT
    2018-01-08 06:26 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\AppReadiness
    2018-01-08 06:16 - 2017-09-13 22:18 - 000000000 ____D
    C:\Users\z800\AppData\Local\Packages
    2018-01-08 06:07 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\LiveKernelReports
    2018-01-08 06:00 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
    2018-01-08 05:36 - 2017-12-06 19:56 - 000001138 _____
    C:\Users\z800\Desktop\HappyFoto DESIGNER.lnk
    2018-01-08 05:36 - 2017-10-23 17:15 - 000001663 _____
    C:\Users\z800\Desktop\ARCHICAD – zástupce.lnk
    2018-01-08 05:36 - 2017-09-16 19:38 - 000001572 _____ C:\Users\z800\Desktop\Adobe
    Illustrator CC 2015.lnk
    2018-01-08 05:36 - 2017-09-16 17:15 - 000001745 _____
    C:\Users\z800\Desktop\Photoshop – zástupce.lnk
    2018-01-08 05:36 - 2017-09-16 11:53 - 000001153 _____
    C:\Users\z800\Desktop\blender.lnk
    2018-01-08 04:32 - 2017-09-16 11:39 - 000002272 _____
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
    2018-01-08 04:32 - 2017-09-16 11:39 - 000002260 _____
    C:\Users\Public\Desktop\Google Chrome.lnk
    2018-01-08 04:27 - 2017-09-16 11:46 - 000000000 ____D
    C:\Users\z800\AppData\Local\Adobe
    2017-12-25 23:20 - 2017-09-13 22:18 - 000000000 ____D
    C:\Users\z800\AppData\Local\ConnectedDevicesPlatform
    2017-12-23 23:36 - 2017-09-13 22:49 - 000000000 ____D C:\Windows.old
    2017-12-23 13:34 - 2017-10-23 16:48 - 000000000 ____D
    C:\Users\z800\AppData\Roaming\Install.GS
    2017-12-19 19:56 - 2017-09-14 16:04 - 000000000 ____D C:\ProgramData\Package Cache
    2017-12-17 14:01 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\rescache
    2017-12-14 11:10 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\oobe
    2017-12-13 17:21 - 2017-09-16 12:23 - 000000000 ____D C:\Windows\system32\MRT
    2017-12-13 17:18 - 2017-10-14 09:13 - 133326408 ____C (Microsoft Corporation)
    C:\Windows\system32\MRT-KB890830.exe
    2017-12-13 17:17 - 2017-09-16 12:23 - 133326408 ____C (Microsoft Corporation)
    C:\Windows\system32\MRT.exe

    ==================== Files in the root of some directories =======

    2017-09-16 19:31 - 2017-10-29 15:11 - 000000034 _____ ()


    C:\Users\z800\AppData\Roaming\AdobeWLCMCache.dat

    ==================== Bamital & volsnap ======================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\system32\winlogon.exe => File is digitally signed


    C:\Windows\system32\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\system32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\system32\services.exe => File is digitally signed
    C:\Windows\system32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\system32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\system32\rpcss.dll => File is digitally signed
    C:\Windows\system32\dnsapi.dll => File is digitally signed
    C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
    C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

    LastRegBack: 2018-01-08 12:06


    ==================== End of FRST.txt ============================

    You might also like