Prosím o kontrolu logu: skáče mi z ničeho nic využití procesoru na 30-70 procent. Děkuji
log z FRST
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-06-2020
Ran by dbube (29-06-2020 11:47:07)
Running from C:\Users\dbube\Desktop
Windows 10 Home Version 1903 18362.900 (X64) (2019-08-19 14:53:00)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1558997955-55845073-2629518697-500 - Administrator - Disabled)
dbube (S-1-5-21-1558997955-55845073-2629518697-1001 - Administrator - Enabled) => C:\Users\dbube
DefaultAccount (S-1-5-21-1558997955-55845073-2629518697-503 - Limited - Disabled)
Guest (S-1-5-21-1558997955-55845073-2629518697-501 - Limited - Disabled)
Vlasťule (S-1-5-21-1558997955-55845073-2629518697-1002 - Administrator - Enabled) => C:\Users\Vlasťule
WDAGUtilityAccount (S-1-5-21-1558997955-55845073-2629518697-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Ashampoo Burning Studio 20 (HKLM-x32\...\{91B33C97-155F-C10C-D4D6-CABA03805EE4}_is1) (Version: 20.0.4 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Auto Keys 1.0 (HKLM-x32\...\Auto Keys) (Version: - )
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bus Simulator 18 v.4.18.3.0 (HKLM-x32\...\Bus Simulator 18_is1) (Version: - )
Discord (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Euro Truck Simulator 2 Road to the Black Sea (HKLM-x32\...\Euro Truck Simulator 2 Road to the Black Sea_is1) (Version: - )
FiveM (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.1868.1 - Rockstar Games)
Kingdom Come Deliverance v. 1.9.4 (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 6.2.5.2 (HKLM\...\{207F3229-8AA5-4544-BDB7-7995538A5ED5}) (Version: 6.2.5.2 - The Document Foundation)
Microsoft OneDrive (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Movavi Video Editor Plus 2020 (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Movavi Video Editor Plus 2020) (Version: 20.3.0 - Movavi)
Native Instruments Kontakt (HKLM-x32\...\Native Instruments Kontakt) (Version: 6.2.2.51 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.12.1.129 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.3.2.30 - Native Instruments)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.34 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 451.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.48 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
Ovládací panel NVIDIA 451.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 451.48 - NVIDIA Corporation) Hidden
qBittorrent 4.2.3 (HKLM-x32\...\qBittorrent) (Version: 4.2.3 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8668 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.24.258 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.22.3 - General Workings, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.3.0 - TeamSpeak Systems GmbH)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
VALORANT (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinZip 24.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24127}) (Version: 24.0.14033 - Corel Corporation)
Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.10.5.0_x86__kgqvnymyfvs32 [2020-06-18] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.39.4.0_x86__kgqvnymyfvs32 [2020-06-26] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1790.3.0_x86__kgqvnymyfvs32 [2020-06-18] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-21] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed] [File is in use]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext32.dll [2012-06-09] (Alexander Roshal) [File not signed] [File is in use]
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-25] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-25] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-06-21] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed] [File is in use]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext32.dll [2012-06-09] (Alexander Roshal) [File not signed] [File is in use]
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-25] (Corel Corporation -> WinZip Computing)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-05-21 16:16 - 2019-05-21 16:14 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dbube\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\galactic_earth_4k_8k-7680x4320.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{149C46C4-381D-453B-9296-52D5A5E0BC80}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1C6C1601-D79E-4C74-86F3-00DC335F1EEF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{15637F6B-4B83-40C3-960C-E0C198322A71}C:\users\dbube\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dbube\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed] [File is in use]
FirewallRules: [TCP Query User{9C6B20A8-8F7A-4212-8E69-00DA9781089B}C:\users\dbube\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dbube\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed] [File is in use]
FirewallRules: [{0B000BC4-8ABF-47B0-8F15-59D63814864C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed] [File is in use]
FirewallRules: [{15740F37-7BB5-4A1C-98C0-D896A5772467}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed] [File is in use]
FirewallRules: [{362F35D2-870E-41C9-B4B4-F58E51FDB4F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DA22F86F-F0AF-4CC9-9F4B-FF99018B0984}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{228D31F2-4AD6-4EC4-8CBB-4D0D3BB38CCA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{0B0FB921-DCC7-410C-AF49-EC3DAE7923C2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{E7413426-3073-4EA1-9B95-7F493B776FAE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A58E956B-F463-4685-A3C0-752812D3B99E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{B31789E0-4D21-46DE-94F5-B17CEC5A6B76}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe => No File
FirewallRules: [{F68447A3-F36F-46FA-9FA3-9C7E11BE8D9F}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe => No File
FirewallRules: [{AC6796CA-A761-4749-AC41-3226F7B347C7}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe => No File
FirewallRules: [{754F60AC-9CE4-4A2C-A0E5-12E5E6E7B048}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe => No File
FirewallRules: [TCP Query User{AA897908-B088-445C-A615-90D1DFA57526}D:\hry\ao tennis 2\tennis2.exe] => (Allow) D:\hry\ao tennis 2\tennis2.exe => No File
FirewallRules: [UDP Query User{58FA0CAE-9E9B-45E3-BC8D-34582B5BBBD0}D:\hry\ao tennis 2\tennis2.exe] => (Allow) D:\hry\ao tennis 2\tennis2.exe => No File
FirewallRules: [{9F1AC2C4-18A9-41DB-AD91-454FF97ADD8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed] [File is in use]
FirewallRules: [{486B10C6-CD25-4903-8B18-E0A19DCEE927}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed] [File is in use]
FirewallRules: [TCP Query User{5068ADAE-003C-41F4-A548-8937CD1754D8}C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC) [File not signed] [File is in use]
FirewallRules: [UDP Query User{CB4BC6EE-D2AA-4DAB-A8AA-78444414B054}C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC) [File not signed] [File is in use]
FirewallRules: [TCP Query User{0064D7AA-B519-491D-81D0-0B9359435AE8}D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe] => (Allow) D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe (stillalive studios GmbH) [File not signed] [File is in use]
FirewallRules: [UDP Query User{AA93E2D6-2040-40AC-B752-A25AE7A6648A}D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe] => (Allow) D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe (stillalive studios GmbH) [File not signed] [File is in use]
FirewallRules: [TCP Query User{9B3ECFAE-B315-4C2A-B105-74F58F912EC1}D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{C84FAEBA-99FE-4154-81C9-0DF8578167A2}D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{B5B82461-1D3E-44ED-91E2-EA78BB305CAB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{1FF47BF8-CA24-4450-BB9E-3BEDD10FFFDA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{656A6944-FA05-4E81-8E9B-3B7F867A1688}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{F0EF74A3-704E-490F-B237-B5CA35C8467A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{5D6715E2-D232-4745-93A6-3B97D4DE8341}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{906657C5-1A37-4A55-8923-60C4DDDF73D6}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{41A9AB65-40EF-4A39-8E11-C07E3389FA08}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed] [File is in use]
FirewallRules: [{62B9B81B-4850-47E7-9B27-E8C5EC217FFD}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed] [File is in use]
FirewallRules: [{0C1D645E-5476-4059-B27E-B79C72BFFF6F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E32CB88F-98CE-4102-AE39-8DAAFE10731A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{536E4F79-F701-438E-B31C-68556AE5D713}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{10B5C778-10A7-4EEA-A467-1C83B18ACE98}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{5CBDE432-6C17-4828-B06D-A6E3E18500EA}D:\hry\gta v\grand theft auto v\gta5.exe] => (Allow) D:\hry\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{6F1027CE-8DA9-42B0-9DBF-708982713D48}D:\hry\gta v\grand theft auto v\gta5.exe] => (Allow) D:\hry\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{A660FC84-4FCA-4266-A26E-8C910AA98F39}C:\users\dbube\appdata\local\fivem\fivem.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{377AED27-EE46-46C8-BBD9-1911D98572E0}C:\users\dbube\appdata\local\fivem\fivem.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [TCP Query User{BF8C2A0C-3999-455D-823A-0BB92AC3122F}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed] [File is in use]
FirewallRules: [UDP Query User{19BAD181-85CE-469F-8744-F43E35C929F3}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed] [File is in use]
FirewallRules: [TCP Query User{3A9DC91B-6B72-467A-B1E8-2073FED822C2}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [UDP Query User{DEDDBAC1-1F20-4174-8D4C-C790ED9DF141}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [TCP Query User{B57B302C-0BE9-485F-B674-A6045D529762}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe (cfx-collective) [File not signed] [File is in use]
FirewallRules: [UDP Query User{EC858B0D-6894-49E3-92B9-BF4E94DB641B}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe (cfx-collective) [File not signed] [File is in use]
FirewallRules: [{F1939776-96A6-40A2-99A1-9C1B0EBCA015}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4D8FC313-1068-49C4-9B77-DEAC8BBBE1E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{3EBBFE15-278A-46B5-80BD-080259AD7A24}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{5CB37CB3-E724-43DE-BB4E-41FB8282CC16}] => (Allow) D:\Hry\steamapps\common\Samsara Room\SamsaraRoom.exe () [File not signed] [File is in use]
FirewallRules: [{D3879349-7871-4399-BAE1-9023B3A71A4A}] => (Allow) D:\Hry\steamapps\common\Samsara Room\SamsaraRoom.exe () [File not signed] [File is in use]
FirewallRules: [TCP Query User{743ABC32-599F-4FE0-9085-515D8035F56B}D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed] [File is in use]
FirewallRules: [UDP Query User{2782012D-A1A5-4E29-9EFA-16FD5590C86B}D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed] [File is in use]
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:111.08 GB) (Free:42.87 GB) (39%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/28/2020 07:57:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16172,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (06/28/2020 07:33:56 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13984,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (06/28/2020 07:13:54 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8724,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (06/28/2020 06:59:23 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3036,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (06/28/2020 06:14:05 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12748,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (06/28/2020 03:24:20 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16288,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (06/28/2020 02:25:26 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13760,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (06/28/2020 02:12:15 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5332,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
System errors:
=============
Error: (06/24/2020 10:11:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.
Error: (06/24/2020 10:11:20 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba NVIDIA LocalSystem Container byla ukončena s následující chybou:
Obecný spustitelný příkaz vrátil výsledek označující selhání.
Error: (06/23/2020 09:07:44 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server Microsoft.Windows.ContentDeliveryManager_10.0.18362.449_neutral_neutral_cw5n1h2txyewy!App.AppXwdz8g2fxr36xz0tdtagygnvemf85s7gg.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (06/20/2020 10:32:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (06/19/2020 06:57:42 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (06/19/2020 06:57:42 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (06/19/2020 06:57:42 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (06/19/2020 06:57:42 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2020-06-05 09:14:46.169
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {E73E4F42-EB67-4E9D-AE9E-902497E8C195}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
==================== Memory info ===========================
BIOS: American Megatrends Inc. V10.0 08/30/2013
Motherboard: MSI H81M-P33 V2 (MS-7846)
Processor: Intel(R) Core(TM) i5-4430 CPU @ 3.00GHz
Percentage of memory in use: 26%
Total physical RAM: 16326.65 MB
Available physical RAM: 12006.28 MB
Total Virtual: 20422.65 MB
Available Virtual: 13850.3 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.08 GB) (Free:42.87 GB) NTFS
Drive d: (Disk D) (Fixed) (Total:1863.01 GB) (Free:1015.13 GB) NTFS
\\?\Volume{b2b6ce9f-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS
\\?\Volume{b2b6ce9f-0000-0000-0000-c0d11b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: B2B6CE9F)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=524 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 4A7FA3EF)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-06-2020
Ran by dbube (administrator) on DESKTOP-48MB1C3 (MSI MS-7846) (29-06-2020 11:46:01)
Running from C:\Users\dbube\Desktop
Loaded Profiles: dbube
Platform: Windows 10 Home Version 1903 18362.900 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] [File is in use] C:\Users\dbube\Desktop\BakkesMod.exe
(Discord Inc. -> Discord Inc.) C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.892_none_5efe5b5a590f76dc\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270776 2019-04-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3375904 2020-06-04] (Valve -> Valve Corporation)
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Run: [BakkesMod] => C:\Users\dbube\Desktop\BakkesMod.exe [11271168 2019-12-28] () [File not signed] [File is in use]
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Run: [Discord] => C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-22] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01A52DD9-7389-43AE-BE4E-642A3F3FA9A4} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0AD45F2B-A0D3-4DB8-A454-4177E20E8CD0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {288C2CC4-CC37-45F4-A118-764540E3E16E} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
Task: {2CD6BA01-7FFA-41DA-8C90-15C5379DB823} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2FC012A9-1B02-443E-B13A-1D0E3BFEF9A8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {416537D0-CF58-4570-A603-C014732B3B07} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {49C74C5A-0B64-478C-8D05-5F0A6A1CA5BD} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {509955C0-4FF6-4254-8BFC-497E3D14036A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5433B0E5-EF4E-44D0-8812-455D18C030CA} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
Task: {55A219EA-7FF5-41A9-9861-8C0BDC9DCEB4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {65DB4707-1DDC-4F23-9BA7-C849BA37A24F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6981FF6E-57E6-4196-9A79-717A5EE831F5} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
Task: {820619AD-65E7-4157-88ED-401B7955D4C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {83691908-0AF8-4F8E-9B50-2C4286CAF297} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-25] (Corel Corporation -> Corel Corporation)
Task: {85E0DDE1-A426-4229-B154-41D85A63C2E4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {950B1631-2609-4AA1-8BFD-AAEC490930AB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B25C172B-3F7D-4CCB-BBBE-75AA30BEA44E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C748CBC0-8DD3-404A-8BC1-DF8DF3FA76C3} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2019-04-03] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {DF0DCA14-B2C7-4ABA-9E0F-CA92301DBFCC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-21] (Google Inc -> Google LLC)
Task: {F177B71F-E279-4DF3-9BBC-8F34D93AC0E7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F23C6957-6388-4E32-B97C-3AECDE4FE431} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-21] (Google Inc -> Google LLC)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{b7f826c6-ea01-4714-a535-4e19bd4e854c}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Internet Explorer:
==================
FireFox:
========
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed] [File is in use]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default [2020-06-29]
CHR DownloadDir: C:\Users\dbube\Desktop
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Extension: (Prezentace) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-21]
CHR Extension: (Dokumenty) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-21]
CHR Extension: (Disk Google) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-21]
CHR Extension: (YouTube) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-21]
CHR Extension: (Tabulky) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-21]
CHR Extension: (Chrome Media Router) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-27]
CHR Profile: C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-12-27]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-02-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [873272 2020-06-22] (NVIDIA Corporation -> NVIDIA Corporation)
S4 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2020-04-06] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1776768 2020-06-20] (Rockstar Games, Inc. -> Rockstar Games)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9821696 2020-05-09] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\NisSrv.exe [2484256 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MsMpEng.exe [103168 2020-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-12] (Microsoft Corporation) [File not signed] [File is in use]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 DM150Drv; C:\WINDOWS\System32\drivers\DM150Drv.sys [24312 2010-07-30] (Pitney Bowes -> Pitney Bowes)
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [47008 2019-04-03] (Intel(R) Smart Connect software -> )
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2b99a29f071e5d25\nvlddmkm.sys [24671120 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 nvoclk64; C:\WINDOWS\System32\drivers\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corporation -> NVIDIA Corp.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-04-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-09-05] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [3361376 2020-05-09] (Riot Games, Inc. -> Riot Games, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [401120 2020-06-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-06-04] (Microsoft Windows -> Microsoft Corporation)
R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [51536 2019-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-06-29 11:46 - 2020-06-29 11:46 - 001222144 _____ C:\Users\dbube\Desktop\RSITx64.exe
2020-06-29 11:46 - 2020-06-29 11:46 - 000016768 _____ C:\Users\dbube\Desktop\FRST.txt
2020-06-29 11:45 - 2020-06-29 11:46 - 000000000 ____D C:\FRST
2020-06-29 11:45 - 2020-06-29 11:45 - 002291712 _____ (Farbar) C:\Users\dbube\Desktop\FRST64.exe
2020-06-28 18:08 - 2020-06-28 18:08 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-06-27 23:49 - 2020-06-27 23:49 - 000000000 ____D C:\Users\dbube\AppData\Roaming\com.RustyLake.SamsaraRoom
2020-06-27 23:43 - 2020-06-27 23:43 - 000000000 ____D C:\Users\dbube\Documents\Rusty Lake
2020-06-27 17:12 - 2020-06-27 17:12 - 000001024 _____ C:\Users\dbube\Desktop\Kingdom Come Deliverance.lnk
2020-06-27 15:45 - 2020-06-27 15:45 - 000000223 _____ C:\Users\dbube\Desktop\Samsara Room.url
2020-06-24 22:10 - 2020-06-23 01:13 - 001780936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001780936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001371336 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001371336 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001086664 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 001086664 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000946384 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000946384 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000455392 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000351112 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-06-24 22:10 - 2020-06-23 01:12 - 000674024 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-06-24 22:10 - 2020-06-23 01:12 - 000543120 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 006652824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 005883288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 003902872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 002368920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 002075360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001722096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445148.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001568488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001486736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001482992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445148.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 000817552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 000669416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 000555920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-06-24 22:10 - 2020-06-23 01:08 - 004705760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-06-24 22:10 - 2020-06-22 03:45 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-06-24 16:08 - 2020-06-24 16:08 - 000013574 _____ C:\Users\dbube\Desktop\[CzT]Skryte_zlo_Bad_Samaritan_2018_CZ_.torrent
2020-06-20 18:56 - 2020-06-20 18:56 - 000001065 _____ C:\Users\dbube\Desktop\Rockstar Games Launcher.lnk
2020-06-10 17:28 - 2020-06-27 23:27 - 000000000 ____D C:\Users\dbube\AppData\Roaming\slobs-client
2020-06-10 17:28 - 2020-06-11 17:19 - 000000000 ____D C:\Users\dbube\AppData\Roaming\obs-studio-node-server
2020-06-10 17:28 - 2020-06-10 17:28 - 000001005 _____ C:\Users\Public\Desktop\Streamlabs OBS.lnk
2020-06-10 17:28 - 2020-06-10 17:28 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2020-06-10 17:28 - 2020-06-10 17:28 - 000000000 ____D C:\Users\dbube\AppData\Roaming\slobs-plugins
2020-06-10 17:28 - 2020-06-10 17:28 - 000000000 ____D C:\Users\dbube\AppData\Local\slobs-client-updater
2020-06-10 16:41 - 2020-06-10 17:26 - 000000000 ____D C:\Users\dbube\AppData\Roaming\obs-studio
2020-06-10 16:41 - 2020-06-10 16:41 - 000000000 ____D C:\ProgramData\obs-studio-hook
2020-06-10 16:41 - 2020-06-10 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2020-06-10 08:16 - 2020-06-10 08:16 - 000000000 ____D C:\Users\Vlasťule\Desktop\Davídek a Terezka Davčovi do alba
2020-06-10 07:47 - 2020-06-10 07:47 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 011608064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 009712640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 008015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007911176 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007760384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007604592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007268864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007266080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006292480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006091048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006066808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005909504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005765144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005195432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005004344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004610560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003726848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003515392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003398656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003368104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 003187200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002831872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-06-10 07:47 - 2020-06-10 07:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-06-10 07:47 - 2020-06-10 07:47 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 002656256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002204160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002184504 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001704448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001683968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001654960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001649152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001583104 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001416224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001393952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001261568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001260744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001100288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001099608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdosys.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001055184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001003832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi3.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkObjCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000894024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000892048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi3.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdosys.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000797464 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000783496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000760296 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000716320 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkObjCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000684856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000628408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisdecd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000593424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000575488 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\system32\wvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000571904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2020-06-10 07:47 - 2020-06-10 07:47 - 000564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000548984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-06-10 07:47 - 2020-06-10 07:47 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000508720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000508216 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2020-06-10 07:47 - 2020-06-10 07:47 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisdecd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000478208 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\SysWOW64\wvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassdo.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000451864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\termmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000425056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswmdm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000407864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000405936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\termmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassdo.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000357176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswmdm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpviewerax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000280376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpviewerax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wavemsp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2020-06-10 07:47 - 2020-06-10 07:47 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\psr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wavemsp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2020-06-10 07:47 - 2020-06-10 07:47 - 000204008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmidx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrecst.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaatext.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000165296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000165192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtpUS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000150328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasnap.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmidx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrecst.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000132424 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000129600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaatext.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasnap.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000093448 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000090952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000089344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwanRadioManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2020-06-10 07:47 - 2020-06-10 07:47 - 000083600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasads.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2020-06-10 07:47 - 2020-06-10 07:47 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanRadioManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxGipRadioManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasads.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000041864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBrokerPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000028368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SecurityCenterBrokerPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-06-10 07:42 - 2020-06-10 07:42 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-06-10 07:42 - 2020-06-10 07:42 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-06-05 08:50 - 2020-06-05 08:50 - 000014980 _____ C:\Users\Vlasťule\Desktop\Blbosti.odt
2020-06-05 08:13 - 2020-06-05 09:36 - 000010758 _____ C:\Users\Vlasťule\Desktop\Červen 2020.odt
2020-06-01 07:17 - 2020-06-01 07:17 - 000073047 _____ C:\Users\Vlasťule\Downloads\Volba výše RodP.pdf
2020-05-31 15:42 - 2020-05-31 15:42 - 000000000 ____D C:\Users\dbube\AppData\Roaming\VS Revo Group
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-06-29 11:44 - 2020-05-15 18:50 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A8E94C42-9C4F-4DEE-9B06-7CDE732D054B}
2020-06-29 11:44 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-06-29 11:43 - 2019-05-21 15:43 - 000000000 ____D C:\ProgramData\NVIDIA
2020-06-29 11:41 - 2020-04-22 18:20 - 000000000 ____D C:\Users\dbube\AppData\Roaming\discord
2020-06-29 11:41 - 2019-05-21 18:41 - 000000000 ____D C:\Users\dbube\AppData\Local\D3DSCache
2020-06-29 11:41 - 2019-05-21 15:54 - 000000000 ____D C:\Program Files (x86)\Steam
2020-06-28 20:17 - 2019-08-19 16:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-06-28 20:17 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-28 18:08 - 2019-08-19 16:52 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1558997955-55845073-2629518697-1001
2020-06-28 18:08 - 2019-08-19 16:47 - 000002361 _____ C:\Users\dbube\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-06-28 18:08 - 2019-05-21 15:51 - 000000000 ___RD C:\Users\dbube\OneDrive
2020-06-27 23:49 - 2019-12-14 23:12 - 000000000 ____D C:\Users\dbube\AppData\Roaming\qBittorrent
2020-06-27 23:42 - 2019-06-24 16:21 - 000000000 ____D C:\Users\dbube\AppData\Roaming\TS3Client
2020-06-27 23:30 - 2019-05-21 16:18 - 000000000 ____D C:\Users\dbube\AppData\Local\FiveM
2020-06-27 19:52 - 2020-02-02 16:10 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-06-27 18:27 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-06-27 17:12 - 2020-02-02 16:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2020-06-26 13:22 - 2019-08-08 16:27 - 000014057 _____ C:\Users\dbube\Desktop\PLATBY.odt
2020-06-25 18:15 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-06-23 01:11 - 2020-04-18 14:32 - 000812432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-06-23 01:11 - 2020-04-18 14:32 - 000656784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-06-23 01:08 - 2019-07-12 11:04 - 005383880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-06-22 21:28 - 2019-05-21 15:52 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-22 03:45 - 2019-07-12 11:04 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-06-22 03:45 - 2019-07-12 11:04 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-06-22 03:45 - 2019-07-12 11:04 - 000058532 _____ C:\WINDOWS\system32\nvinfo.pb
2020-06-21 23:59 - 2019-05-21 15:43 - 005490488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 002634728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 001759032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000991032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000195048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000122344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000083256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-06-20 18:57 - 2019-05-21 16:38 - 000000000 ____D C:\Program Files\Rockstar Games
2020-06-20 18:57 - 2019-05-21 16:38 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-06-20 08:22 - 2019-05-21 15:43 - 009198787 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-06-19 14:10 - 2020-04-20 17:04 - 006088416 _____ (Cfx.re) C:\Users\dbube\Desktop\FiveM.exe
2020-06-10 15:25 - 2019-08-19 16:54 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-10 15:25 - 2019-03-19 13:55 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-06-10 15:25 - 2019-03-19 13:55 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-06-10 15:21 - 2020-05-07 12:22 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2020-06-10 15:19 - 2019-08-19 16:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-06-10 15:19 - 2019-08-19 16:44 - 000458488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-06-10 15:19 - 2019-05-21 15:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-06-10 15:19 - 2019-05-21 15:50 - 000000000 ___RD C:\Users\dbube\3D Objects
2020-06-10 09:23 - 2019-03-19 13:58 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-06-10 09:23 - 2019-03-19 13:58 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Com
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-06-10 09:23 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-06-10 07:49 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-06-10 07:47 - 2019-08-19 16:47 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-06-09 08:54 - 2019-05-25 09:16 - 000000000 ____D C:\Users\Vlasťule\AppData\Local\Packages
2020-06-05 23:03 - 2019-03-19 06:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-06-05 23:03 - 2019-03-19 06:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-05 17:36 - 2019-05-21 15:43 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-06-05 08:13 - 2019-08-19 16:52 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1558997955-55845073-2629518697-1002
2020-06-05 08:13 - 2019-08-19 16:47 - 000002370 _____ C:\Users\Vlasťule\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-06-05 08:13 - 2019-05-25 09:17 - 000000000 ___RD C:\Users\Vlasťule\OneDrive
2020-06-04 18:54 - 2019-05-21 15:50 - 000000000 ____D C:\Users\dbube\AppData\Local\Packages
2020-06-04 07:40 - 2019-05-21 15:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-06-01 16:26 - 2020-04-29 09:15 - 000011443 _____ C:\Users\Vlasťule\Desktop\Nasobilka.odt
2020-05-31 15:52 - 2019-08-19 16:47 - 000000000 ____D C:\Users\dbube
2020-05-31 15:50 - 2020-04-17 16:40 - 000000000 ____D C:\Program Files\Image-Line
2020-05-31 15:49 - 2020-04-17 16:42 - 000000000 ____D C:\Users\dbube\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2020-05-31 15:49 - 2020-04-17 16:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2020-05-30 11:38 - 2019-06-19 16:14 - 000000000 ____D C:\Program Files\UNP
==================== Files in the root of some directories ========
2020-06-09 15:08 - 2020-06-09 15:08 - 000004973 _____ () C:\Users\dbube\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu
a příkládám ještě log z RSIT
Logfile of random's system information tool 1.10 (written by random/random)
Run by dbube at 2020-06-29 11:49:20
Microsoft Windows 10 Home
System drive C: has 44 GB (39%) free of 114 GB
Total RAM: 16327 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:49:21, on 29.06.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Users\dbube\Desktop\BakkesMod.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Program Files\trend micro\dbube.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [BakkesMod] "C:\Users\dbube\Desktop\BakkesMod.exe"
O4 - HKCU\..\Run: [Discord] C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_1ae30da9 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem9.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: @oem9.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: vgc - Riot Games, Inc. - C:\Program Files\Riot Vanguard\vgc.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8195 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20061.110.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\WINDOWS\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Steam\steam.exe" -silent
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --field-trial-handle=1980,3915671980682370000,7308758741157143949,131072 --disable-features=VizDisplayCompositor --no-sandbox --log-file="C:\Users\dbube\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Users\dbube\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --service-request-channel-token=16882806353013945317 --mojo-platform-channel-handle=2016 /prefetch:2
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=cs_CZ" "-cachedir=C:\Users\dbube\AppData\Local\Steam\htmlcache" "-steampid=15028" "-buildid=1591251555" "-steamid=0" "-steamuniverse=Public" "-clientui=C:\Program Files (x86)\Steam\clientui" --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --enable-media-stream --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --autoplay-policy=no-user-gesture-required --log-file="C:\Users\dbube\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --field-trial-handle=1980,3915671980682370000,7308758741157143949,131072 --disable-features=VizDisplayCompositor --service-pipe-token=5087671839172110043 --lang=en-US --log-file="C:\Users\dbube\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=5087671839172110043 --renderer-client-id=3 --mojo-platform-channel-handle=2580 /prefetch:1
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\dbube\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1591251555 --initial-client-data=0x2e8,0x2ec,0x2e0,0x2cc,0x2e4,0x7fff88bcbed0,0x7fff88bcbee0,0x7fff88bcbef0
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --field-trial-handle=1528,6647638240415322083,5806987551992072943,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --lang=cs-CZ --buildid=1591251555 --steamid=0 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --service-request-channel-token=7654898699303102035 --mojo-platform-channel-handle=1564 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --field-trial-handle=1528,6647638240415322083,5806987551992072943,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --lang=cs --service-sandbox-type=network --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --lang=cs-CZ --buildid=1591251555 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --service-request-channel-token=4964197458785449980 --mojo-platform-channel-handle=2100 /prefetch:8
"C:\Users\dbube\Desktop\BakkesMod.exe"
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe"
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=gpu-process --field-trial-handle=1840,13928288052502682592,5368498231326104612,131072 --disable-features=SpareRendererForSitePerProcess --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=11572456713806314213 --mojo-platform-channel-handle=1816 --ignored=" --type=renderer " /prefetch:2
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=utility --field-trial-handle=1840,13928288052502682592,5368498231326104612,131072 --disable-features=SpareRendererForSitePerProcess --lang=cs --service-sandbox-type=network --service-request-channel-token=17972326247303214113 --mojo-platform-channel-handle=2236 /prefetch:8
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe --no-rate-limit --no-upload-gzip --type=crash-handler "--crashes-directory=C:\Users\dbube\AppData\Local\Temp\Discord Crashes" "--database=C:\Users\dbube\AppData\Local\Temp\Discord Crashes" "--metrics-dir=C:\Users\dbube\AppData\Local\Temp\Discord Crashes" --url=https://sentry.io/api/146342/minidump/? ... be03b2b35a --initial-client-data=0xa44,0xa48,0xa4c,0xa40,0xa50,0x641d090,0x641d0a0,0x641d0ac
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=renderer --autoplay-policy=no-user-gesture-required --field-trial-handle=1840,13928288052502682592,5368498231326104612,131072 --disable-features=SpareRendererForSitePerProcess --lang=cs --app-user-model-id=com.squirrel.Discord.Discord --app-path="C:\Users\dbube\AppData\Local\Discord\app-0.0.306\resources\app.asar" --no-sandbox --no-zygote --native-window-open --preload="C:\Users\dbube\AppData\Roaming\discord\0.0.306\modules\discord_desktop_core\core.asar\app\mainScreenPreload.js" --disable-remote-module --background-color=#202225 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17014944104505155476 --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2676 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1528,6647638240415322083,5806987551992072943,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1591251555 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14822402119226316213 --renderer-client-id=5 --mojo-platform-channel-handle=2656 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1528,6647638240415322083,5806987551992072943,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1591251555 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=15161601633400221231 --renderer-client-id=6 --mojo-platform-channel-handle=2740 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1528,6647638240415322083,5806987551992072943,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1591251555 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=6909795037589700469 --renderer-client-id=7 --mojo-platform-channel-handle=3008 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x5bc
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=utility --field-trial-handle=1840,13928288052502682592,5368498231326104612,131072 --disable-features=SpareRendererForSitePerProcess --lang=cs --service-sandbox-type=audio --service-request-channel-token=15221837879224330241 --mojo-platform-channel-handle=2924 /prefetch:8
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\dbube\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\dbube\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=83.0.4103.116 --initial-client-data=0xe8,0xec,0xf0,0xc4,0xf4,0x7fffa774bd28,0x7fffa774bd38,0x7fffa774bd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1580 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1952 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3844 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4784 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3160 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3724 /prefetch:1
"C:\WINDOWS\System32\Taskmgr.exe" /3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=7036 /prefetch:8
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe556_ Global\UsGthrCtrlFltPipeMssGthrPipe556 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8360 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 776 780 788 8192 784
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1558997955-55845073-2629518697-1001557_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1558997955-55845073-2629518697-1001557 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Users\dbube\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Intel PTT EK Recertification.job - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-14 84992]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2019-04-01 9270776]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2020-06-04 3375904]
"BakkesMod"=C:\Users\dbube\Desktop\BakkesMod.exe [2019-12-28 11271168]
"Discord"=C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe [2020-02-24 90950968]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-06-29 11:49:20 ----D---- C:\rsit
2020-06-29 11:45:54 ----D---- C:\FRST
2020-06-28 18:08:16 ----D---- C:\ProgramData\Microsoft OneDrive
2020-06-27 23:49:02 ----D---- C:\Users\dbube\AppData\Roaming\com.RustyLake.SamsaraRoom
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\OpenCL.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvdispgenco6445148.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvdispco6445148.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvcuda.dll
2020-06-24 22:10:22 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2020-06-10 17:28:17 ----D---- C:\Users\dbube\AppData\Roaming\slobs-plugins
2020-06-10 17:28:16 ----D---- C:\Users\dbube\AppData\Roaming\obs-studio-node-server
2020-06-10 17:28:14 ----D---- C:\Users\dbube\AppData\Roaming\slobs-client
2020-06-10 16:41:38 ----D---- C:\Users\dbube\AppData\Roaming\obs-studio
2020-06-10 16:41:35 ----D---- C:\ProgramData\obs-studio-hook
2020-06-10 07:47:45 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\wmp.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\msra.exe
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\fveapi.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\bdesvc.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-06-10 07:47:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\wbengine.exe
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-06-10 07:47:42 ----A---- C:\WINDOWS\SYSWOW64\mswmdm.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\WMNetMgr.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\wmidx.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-06-10 07:47:40 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\WMNetMgr.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\wmidx.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mswmdm.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfds.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mf.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-06-10 07:47:38 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2020-06-10 07:47:38 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\wkspbrokerAx.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\wavemsp.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\termmgr.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\tapi3.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\SecurityCenterBrokerPS.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\psisdecd.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\cic.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\cdosys.dll
2020-06-10 07:47:35 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-06-10 07:47:35 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-06-10 07:47:35 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\wiaaut.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\imapi.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\iassdo.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\iasrecst.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\SYSWOW64\iasads.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\SYSWOW64\azroles.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\wkspbrokerAx.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\VAN.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\SharedRealitySvc.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\SecurityCenterBrokerPS.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\SecurityCenterBroker.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\qedit.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\psisdecd.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\FileHistory.exe
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\wvc.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\WlanMM.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\wavemsp.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\termmgr.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\tapi3.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\rdpencom.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\quartz.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\qdvd.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\nshwfp.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\nltest.exe
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\nettrace.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\msi.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\mmc.exe
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\LocationApi.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\FsIso.exe
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\devenum.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\cic.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\cdosys.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-06-10 07:47:29 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-06-10 07:47:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-06-10 07:47:29 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\wiaaut.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\werui.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\mshtmled.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\jscript.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\imapi2.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\imapi.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iassdo.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iasrecst.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iasnap.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iasads.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\dxtrans.dll
2020-06-10 07:47:27 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-06-10 07:47:27 ----A---- C:\WINDOWS\system32\azroles.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\WwanRadioManager.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\wwanmm.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\diagperf.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\rtutils.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\rdpviewerax.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\msaatext.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\windowsperformancerecordercontrol.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\psr.exe
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\CertEnrollCtrl.exe
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Preview.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\InkObjCore.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\atlthunk.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\atl.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\spwizeng.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\rdpviewerax.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\pku2u.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\comdlg32.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\wlidcli.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\rtutils.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\RASMM.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\puiobj.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\netshell.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\msaatext.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\usermgr.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\tdh.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\gpsvc.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\gpapi.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\DismApi.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Dism.exe
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\DAMM.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wpr.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\WerFault.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\weretw.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wer.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\schannel.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\RpcEpMap.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\oleaut32.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\Faultrep.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\wksprt.exe
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\wdigest.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\twinui.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\logoncli.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\combase.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\ci.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\msctf.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\InkEd.dll
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\shell32.dll
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\psr.exe
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\comsvcs.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\VSSVC.exe
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\swprv.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\daxexec.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\win32u.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\win32k.sys
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\rdpsharercom.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\NPSM.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\InkObjCore.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\d2d1.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\cdd.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlansvc.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlansec.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\WlanRadioManager.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlanapi.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wifitask.exe
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wfdprov.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\qmgr.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\provops.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\netman.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\kernel32.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\dot3mm.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\atlthunk.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\atl.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\XboxGipRadioManager.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\WpdMtpUS.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\WpdMtp.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\win32spl.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\oleprn.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\localspl.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\BTAGService.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\splwow64.exe
2020-06-10 07:42:44 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-06-10 07:42:44 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-05-31 15:42:49 ----D---- C:\Users\dbube\AppData\Roaming\VS Revo Group
======List of files/folders modified in the last 1 month======
2020-06-29 11:49:21 ----D---- C:\WINDOWS\Temp
2020-06-29 11:49:21 ----D---- C:\Program Files\trend micro
2020-06-29 11:48:21 ----D---- C:\WINDOWS\Prefetch
2020-06-29 11:46:21 ----SHD---- C:\System Volume Information
2020-06-29 11:44:11 ----D---- C:\WINDOWS\AppReadiness
2020-06-29 11:43:08 ----D---- C:\ProgramData\NVIDIA
2020-06-29 11:41:53 ----D---- C:\Users\dbube\AppData\Roaming\discord
2020-06-29 11:41:30 ----D---- C:\Program Files (x86)\Steam
2020-06-28 20:17:41 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-06-28 20:17:40 ----D---- C:\WINDOWS\system32\SleepStudy
2020-06-28 18:08:21 ----D---- C:\WINDOWS\system32\Tasks
2020-06-28 18:08:16 ----HD---- C:\ProgramData
2020-06-28 12:18:44 ----RD---- C:\WINDOWS\Microsoft.NET
2020-06-28 09:22:56 ----D---- C:\WINDOWS\system32\config
2020-06-27 23:49:09 ----D---- C:\Users\dbube\AppData\Roaming\qBittorrent
2020-06-27 23:42:23 ----D---- C:\Users\dbube\AppData\Roaming\TS3Client
2020-06-27 19:52:39 ----D---- C:\WINDOWS\SYSWOW64\directx
2020-06-27 18:27:13 ----HD---- C:\Program Files\WindowsApps
2020-06-27 18:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2020-06-27 17:12:23 ----D---- C:\WINDOWS\Logs
2020-06-27 15:12:43 ----D---- C:\Windows
2020-06-27 15:12:12 ----D---- C:\WINDOWS\WinSxS
2020-06-27 15:12:05 ----D---- C:\WINDOWS\system32\catroot2
2020-06-27 15:05:00 ----D---- C:\WINDOWS\system32\sru
2020-06-25 18:15:39 ----D---- C:\WINDOWS\SysWOW64
2020-06-25 18:15:39 ----D---- C:\WINDOWS\system32\DriverStore
2020-06-25 18:15:39 ----D---- C:\WINDOWS\System32
2020-06-25 18:15:39 ----D---- C:\WINDOWS\INF
2020-06-24 22:11:59 ----D---- C:\WINDOWS\system32\drivers
2020-06-23 01:11:30 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-06-23 01:11:28 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2020-06-23 01:08:10 ----A---- C:\WINDOWS\system32\nvapi64.dll
2020-06-22 03:45:13 ----A---- C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-06-21 23:59:21 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2020-06-21 23:59:21 ----A---- C:\WINDOWS\system32\nvcpl.dll
2020-06-21 23:59:18 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2020-06-21 23:59:18 ----A---- C:\WINDOWS\system32\nvshext.dll
2020-06-21 23:59:17 ----A---- C:\WINDOWS\system32\nvmctray.dll
2020-06-21 23:59:17 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2020-06-21 23:59:17 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2020-06-20 18:57:22 ----D---- C:\Program Files (x86)\Rockstar Games
2020-06-20 18:57:15 ----D---- C:\Program Files\Rockstar Games
2020-06-10 15:25:09 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-10 09:23:47 ----SD---- C:\WINDOWS\SYSWOW64\F12
2020-06-10 09:23:47 ----SD---- C:\WINDOWS\system32\F12
2020-06-10 09:23:47 ----SD---- C:\WINDOWS\system32\DiagSvcs
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\wbem
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\Com
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\AdvancedInstallers
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SystemResources
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\wbem
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\oobe
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\en-US
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\Dism
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\cs-CZ
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\Com
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2020-06-10 09:23:47 ----D---- C:\WINDOWS\ShellExperiences
2020-06-10 09:23:47 ----D---- C:\WINDOWS\bcastdvr
2020-06-10 09:23:46 ----D---- C:\WINDOWS\apppatch
2020-06-10 09:23:46 ----D---- C:\Program Files\Windows Photo Viewer
2020-06-10 09:23:46 ----D---- C:\Program Files\Windows Media Player
2020-06-10 09:23:46 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2020-06-10 09:23:46 ----D---- C:\Program Files (x86)\Windows Media Player
2020-06-10 09:23:45 ----D---- C:\WINDOWS\system32\drivers\UMDF
2020-06-10 07:49:31 ----D---- C:\WINDOWS\CbsTemp
2020-06-10 07:47:10 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2020-06-05 23:03:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2020-06-05 17:36:27 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2020-06-04 07:40:15 ----D---- C:\WINDOWS\system32\drivers\wd
2020-05-31 15:53:44 ----D---- C:\Program Files\Common Files
2020-05-31 15:52:38 ----D---- C:\Program Files (x86)\Common Files
2020-05-31 15:51:57 ----RD---- C:\Program Files (x86)
2020-05-31 15:50:29 ----D---- C:\Program Files\Image-Line
2020-05-31 15:47:28 ----SHDC---- C:\WINDOWS\Installer
2020-05-30 11:38:09 ----D---- C:\Program Files\UNP
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2019-04-03 1469952]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2019-03-19 89096]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-03-11 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-05-13 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-02-14 117264]
R3 ICCWDT;@oem19.inf,%ICCWDT.SVCDESC%;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\WINDOWS\System32\drivers\ICCWDT.sys [2019-04-03 39504]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2019-04-01 6794744]
R3 ISCT;@oem35.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD64.sys [2019-04-03 47008]
R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverW8x64.sys [2019-04-03 223832]
R3 NVHDA;@oem34.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2020-06-22 222112]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2b99a29f071e5d25\nvlddmkm.sys [2020-06-23 24671120]
R3 nvvad_WaveExtensible;@oem32.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2019-03-19 69840]
R3 nvvhci;@oem30.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-03-11 67456]
R3 rt640x64;@oem2.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-02-20 1138136]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2020-04-15 151352]
S0 SmartSAMD;SmartSAMD; C:\WINDOWS\System32\drivers\SmartSAMD.sys [2019-03-19 220176]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-11 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-15 18432]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-09-12 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-03-11 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-03-11 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-03-11 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-03-11 99328]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 dg_ssudbus;@oem18.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 DM150Drv;DM150Drv; C:\WINDOWS\System32\drivers\DM150Drv.sys [2010-07-30 24312]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-10-09 64000]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-04-15 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-15 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 nvoclk64;NVIDIA Enthusiasts Platform KDM; C:\WINDOWS\System32\drivers\nvoclk64.sys [2009-09-15 42088]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2020-04-01 30336]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-13 986936]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2016-12-21 40240]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-03-19 33592]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2019-03-19 76088]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_1ae30da9;Uživatelská služba platformy připojených zařízení_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-03-18 850928]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2020-06-22 873272]
R2 OneSyncSvc_1ae30da9;Hostitel synchronizace_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2019-03-19 263904]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_1ae30da9;Uživatelská služba schránky_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_1ae30da9;Data kontaktů_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2020-06-10 932256]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-05-21 154920]
S2 Intel(R) TPM Provisioning Service;@oem9.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [2019-04-03 737552]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_1ae30da9;Agent Activation Runtime_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_1ae30da9;Uživatelská služba pro GameDVR a vysílání her_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_1ae30da9;Služba pro podporu uživatelů Bluetooth_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_1ae30da9;CaptureService_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_1ae30da9;ConsentUX_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-13 380632]
S3 CredentialEnrollmentManagerUserSvc_1ae30da9;CredentialEnrollmentManagerUserSvc_1ae30da9; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-13 380632]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_1ae30da9;DeviceAssociationBroker_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_1ae30da9;DevicePicker_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_1ae30da9;Tok zařízení_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-06-10 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2020-02-28 803440]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-08-19 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\elevation_service.exe [2020-06-19 1287152]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-05-21 154920]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 Intel(R) Capability Licensing Service TCP IP Interface;@oem9.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [2019-04-03 761088]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_1ae30da9;Služba zasílání zpráv_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_1ae30da9;PrintWorkflow_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2020-06-20 1776768]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2019-03-19 1264128]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2019-08-19 986112]
S4 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2020-04-06 76152]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by dbube at 2020-06-29 11:49:20
Microsoft Windows 10 Home
System drive C: has 44 GB (39%) free of 114 GB
Total RAM: 16327 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:49:21, on 29.06.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Users\dbube\Desktop\BakkesMod.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Program Files\trend micro\dbube.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [BakkesMod] "C:\Users\dbube\Desktop\BakkesMod.exe"
O4 - HKCU\..\Run: [Discord] C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_1ae30da9 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem9.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: @oem9.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: vgc - Riot Games, Inc. - C:\Program Files\Riot Vanguard\vgc.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8195 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20061.110.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\WINDOWS\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Steam\steam.exe" -silent
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --field-trial-handle=1980,3915671980682370000,7308758741157143949,131072 --disable-features=VizDisplayCompositor --no-sandbox --log-file="C:\Users\dbube\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Users\dbube\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --service-request-channel-token=16882806353013945317 --mojo-platform-channel-handle=2016 /prefetch:2
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=cs_CZ" "-cachedir=C:\Users\dbube\AppData\Local\Steam\htmlcache" "-steampid=15028" "-buildid=1591251555" "-steamid=0" "-steamuniverse=Public" "-clientui=C:\Program Files (x86)\Steam\clientui" --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --enable-media-stream --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --autoplay-policy=no-user-gesture-required --log-file="C:\Users\dbube\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --field-trial-handle=1980,3915671980682370000,7308758741157143949,131072 --disable-features=VizDisplayCompositor --service-pipe-token=5087671839172110043 --lang=en-US --log-file="C:\Users\dbube\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=5087671839172110043 --renderer-client-id=3 --mojo-platform-channel-handle=2580 /prefetch:1
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\dbube\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1591251555 --initial-client-data=0x2e8,0x2ec,0x2e0,0x2cc,0x2e4,0x7fff88bcbed0,0x7fff88bcbee0,0x7fff88bcbef0
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --field-trial-handle=1528,6647638240415322083,5806987551992072943,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --lang=cs-CZ --buildid=1591251555 --steamid=0 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --service-request-channel-token=7654898699303102035 --mojo-platform-channel-handle=1564 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --field-trial-handle=1528,6647638240415322083,5806987551992072943,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --lang=cs --service-sandbox-type=network --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --lang=cs-CZ --buildid=1591251555 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --service-request-channel-token=4964197458785449980 --mojo-platform-channel-handle=2100 /prefetch:8
"C:\Users\dbube\Desktop\BakkesMod.exe"
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe"
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=gpu-process --field-trial-handle=1840,13928288052502682592,5368498231326104612,131072 --disable-features=SpareRendererForSitePerProcess --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=11572456713806314213 --mojo-platform-channel-handle=1816 --ignored=" --type=renderer " /prefetch:2
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=utility --field-trial-handle=1840,13928288052502682592,5368498231326104612,131072 --disable-features=SpareRendererForSitePerProcess --lang=cs --service-sandbox-type=network --service-request-channel-token=17972326247303214113 --mojo-platform-channel-handle=2236 /prefetch:8
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe --no-rate-limit --no-upload-gzip --type=crash-handler "--crashes-directory=C:\Users\dbube\AppData\Local\Temp\Discord Crashes" "--database=C:\Users\dbube\AppData\Local\Temp\Discord Crashes" "--metrics-dir=C:\Users\dbube\AppData\Local\Temp\Discord Crashes" --url=https://sentry.io/api/146342/minidump/? ... be03b2b35a --initial-client-data=0xa44,0xa48,0xa4c,0xa40,0xa50,0x641d090,0x641d0a0,0x641d0ac
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=renderer --autoplay-policy=no-user-gesture-required --field-trial-handle=1840,13928288052502682592,5368498231326104612,131072 --disable-features=SpareRendererForSitePerProcess --lang=cs --app-user-model-id=com.squirrel.Discord.Discord --app-path="C:\Users\dbube\AppData\Local\Discord\app-0.0.306\resources\app.asar" --no-sandbox --no-zygote --native-window-open --preload="C:\Users\dbube\AppData\Roaming\discord\0.0.306\modules\discord_desktop_core\core.asar\app\mainScreenPreload.js" --disable-remote-module --background-color=#202225 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17014944104505155476 --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2676 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1528,6647638240415322083,5806987551992072943,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1591251555 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14822402119226316213 --renderer-client-id=5 --mojo-platform-channel-handle=2656 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1528,6647638240415322083,5806987551992072943,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1591251555 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=15161601633400221231 --renderer-client-id=6 --mojo-platform-channel-handle=2740 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1528,6647638240415322083,5806987551992072943,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1591251555 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=6909795037589700469 --renderer-client-id=7 --mojo-platform-channel-handle=3008 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x5bc
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=utility --field-trial-handle=1840,13928288052502682592,5368498231326104612,131072 --disable-features=SpareRendererForSitePerProcess --lang=cs --service-sandbox-type=audio --service-request-channel-token=15221837879224330241 --mojo-platform-channel-handle=2924 /prefetch:8
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\dbube\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\dbube\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=83.0.4103.116 --initial-client-data=0xe8,0xec,0xf0,0xc4,0xf4,0x7fffa774bd28,0x7fffa774bd38,0x7fffa774bd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1580 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1952 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3844 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4784 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3160 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3724 /prefetch:1
"C:\WINDOWS\System32\Taskmgr.exe" /3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=7036 /prefetch:8
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe556_ Global\UsGthrCtrlFltPipeMssGthrPipe556 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,10817678315840128585,16989062085401067996,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8360 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 776 780 788 8192 784
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1558997955-55845073-2629518697-1001557_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1558997955-55845073-2629518697-1001557 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Users\dbube\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Intel PTT EK Recertification.job - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-14 84992]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2019-04-01 9270776]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2020-06-04 3375904]
"BakkesMod"=C:\Users\dbube\Desktop\BakkesMod.exe [2019-12-28 11271168]
"Discord"=C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe [2020-02-24 90950968]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-06-29 11:49:20 ----D---- C:\rsit
2020-06-29 11:45:54 ----D---- C:\FRST
2020-06-28 18:08:16 ----D---- C:\ProgramData\Microsoft OneDrive
2020-06-27 23:49:02 ----D---- C:\Users\dbube\AppData\Roaming\com.RustyLake.SamsaraRoom
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\OpenCL.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvdispgenco6445148.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvdispco6445148.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvcuda.dll
2020-06-24 22:10:22 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2020-06-10 17:28:17 ----D---- C:\Users\dbube\AppData\Roaming\slobs-plugins
2020-06-10 17:28:16 ----D---- C:\Users\dbube\AppData\Roaming\obs-studio-node-server
2020-06-10 17:28:14 ----D---- C:\Users\dbube\AppData\Roaming\slobs-client
2020-06-10 16:41:38 ----D---- C:\Users\dbube\AppData\Roaming\obs-studio
2020-06-10 16:41:35 ----D---- C:\ProgramData\obs-studio-hook
2020-06-10 07:47:45 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\wmp.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\msra.exe
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\fveapi.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\bdesvc.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-06-10 07:47:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\wbengine.exe
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-06-10 07:47:42 ----A---- C:\WINDOWS\SYSWOW64\mswmdm.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\WMNetMgr.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\wmidx.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-06-10 07:47:40 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\WMNetMgr.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\wmidx.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mswmdm.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfds.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mf.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-06-10 07:47:38 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2020-06-10 07:47:38 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\wkspbrokerAx.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\wavemsp.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\termmgr.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\tapi3.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\SecurityCenterBrokerPS.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\psisdecd.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\cic.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\cdosys.dll
2020-06-10 07:47:35 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-06-10 07:47:35 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-06-10 07:47:35 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\wiaaut.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\imapi.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\iassdo.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\iasrecst.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\SYSWOW64\iasads.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\SYSWOW64\azroles.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\wkspbrokerAx.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\VAN.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\SharedRealitySvc.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\SecurityCenterBrokerPS.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\SecurityCenterBroker.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\qedit.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\psisdecd.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\FileHistory.exe
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\wvc.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\WlanMM.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\wavemsp.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\termmgr.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\tapi3.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\rdpencom.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\quartz.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\qdvd.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\nshwfp.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\nltest.exe
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\nettrace.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\msi.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\mmc.exe
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\LocationApi.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\FsIso.exe
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\devenum.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\cic.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\cdosys.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-06-10 07:47:29 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-06-10 07:47:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-06-10 07:47:29 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\wiaaut.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\werui.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\mshtmled.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\jscript.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\imapi2.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\imapi.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iassdo.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iasrecst.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iasnap.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iasads.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\dxtrans.dll
2020-06-10 07:47:27 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-06-10 07:47:27 ----A---- C:\WINDOWS\system32\azroles.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\WwanRadioManager.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\wwanmm.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\diagperf.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\rtutils.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\rdpviewerax.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\msaatext.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\windowsperformancerecordercontrol.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\psr.exe
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\CertEnrollCtrl.exe
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Preview.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\InkObjCore.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\atlthunk.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\atl.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\spwizeng.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\rdpviewerax.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\pku2u.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\comdlg32.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\wlidcli.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\rtutils.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\RASMM.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\puiobj.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\netshell.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\msaatext.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\usermgr.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\tdh.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\gpsvc.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\gpapi.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\DismApi.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Dism.exe
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\DAMM.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wpr.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\WerFault.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\weretw.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wer.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\schannel.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\RpcEpMap.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\oleaut32.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\Faultrep.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\wksprt.exe
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\wdigest.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\twinui.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\logoncli.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\combase.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\ci.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\msctf.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\InkEd.dll
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\shell32.dll
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\psr.exe
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\comsvcs.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\VSSVC.exe
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\swprv.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\daxexec.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\win32u.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\win32k.sys
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\rdpsharercom.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\NPSM.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\InkObjCore.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\d2d1.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\cdd.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlansvc.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlansec.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\WlanRadioManager.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlanapi.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wifitask.exe
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wfdprov.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\qmgr.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\provops.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\netman.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\kernel32.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\dot3mm.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\atlthunk.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\atl.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\XboxGipRadioManager.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\WpdMtpUS.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\WpdMtp.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\win32spl.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\oleprn.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\localspl.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\BTAGService.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\splwow64.exe
2020-06-10 07:42:44 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-06-10 07:42:44 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-05-31 15:42:49 ----D---- C:\Users\dbube\AppData\Roaming\VS Revo Group
======List of files/folders modified in the last 1 month======
2020-06-29 11:49:21 ----D---- C:\WINDOWS\Temp
2020-06-29 11:49:21 ----D---- C:\Program Files\trend micro
2020-06-29 11:48:21 ----D---- C:\WINDOWS\Prefetch
2020-06-29 11:46:21 ----SHD---- C:\System Volume Information
2020-06-29 11:44:11 ----D---- C:\WINDOWS\AppReadiness
2020-06-29 11:43:08 ----D---- C:\ProgramData\NVIDIA
2020-06-29 11:41:53 ----D---- C:\Users\dbube\AppData\Roaming\discord
2020-06-29 11:41:30 ----D---- C:\Program Files (x86)\Steam
2020-06-28 20:17:41 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-06-28 20:17:40 ----D---- C:\WINDOWS\system32\SleepStudy
2020-06-28 18:08:21 ----D---- C:\WINDOWS\system32\Tasks
2020-06-28 18:08:16 ----HD---- C:\ProgramData
2020-06-28 12:18:44 ----RD---- C:\WINDOWS\Microsoft.NET
2020-06-28 09:22:56 ----D---- C:\WINDOWS\system32\config
2020-06-27 23:49:09 ----D---- C:\Users\dbube\AppData\Roaming\qBittorrent
2020-06-27 23:42:23 ----D---- C:\Users\dbube\AppData\Roaming\TS3Client
2020-06-27 19:52:39 ----D---- C:\WINDOWS\SYSWOW64\directx
2020-06-27 18:27:13 ----HD---- C:\Program Files\WindowsApps
2020-06-27 18:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2020-06-27 17:12:23 ----D---- C:\WINDOWS\Logs
2020-06-27 15:12:43 ----D---- C:\Windows
2020-06-27 15:12:12 ----D---- C:\WINDOWS\WinSxS
2020-06-27 15:12:05 ----D---- C:\WINDOWS\system32\catroot2
2020-06-27 15:05:00 ----D---- C:\WINDOWS\system32\sru
2020-06-25 18:15:39 ----D---- C:\WINDOWS\SysWOW64
2020-06-25 18:15:39 ----D---- C:\WINDOWS\system32\DriverStore
2020-06-25 18:15:39 ----D---- C:\WINDOWS\System32
2020-06-25 18:15:39 ----D---- C:\WINDOWS\INF
2020-06-24 22:11:59 ----D---- C:\WINDOWS\system32\drivers
2020-06-23 01:11:30 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-06-23 01:11:28 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2020-06-23 01:08:10 ----A---- C:\WINDOWS\system32\nvapi64.dll
2020-06-22 03:45:13 ----A---- C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-06-21 23:59:21 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2020-06-21 23:59:21 ----A---- C:\WINDOWS\system32\nvcpl.dll
2020-06-21 23:59:18 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2020-06-21 23:59:18 ----A---- C:\WINDOWS\system32\nvshext.dll
2020-06-21 23:59:17 ----A---- C:\WINDOWS\system32\nvmctray.dll
2020-06-21 23:59:17 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2020-06-21 23:59:17 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2020-06-20 18:57:22 ----D---- C:\Program Files (x86)\Rockstar Games
2020-06-20 18:57:15 ----D---- C:\Program Files\Rockstar Games
2020-06-10 15:25:09 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-10 09:23:47 ----SD---- C:\WINDOWS\SYSWOW64\F12
2020-06-10 09:23:47 ----SD---- C:\WINDOWS\system32\F12
2020-06-10 09:23:47 ----SD---- C:\WINDOWS\system32\DiagSvcs
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\wbem
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\Com
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\AdvancedInstallers
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SystemResources
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\wbem
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\oobe
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\en-US
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\Dism
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\cs-CZ
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\Com
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2020-06-10 09:23:47 ----D---- C:\WINDOWS\ShellExperiences
2020-06-10 09:23:47 ----D---- C:\WINDOWS\bcastdvr
2020-06-10 09:23:46 ----D---- C:\WINDOWS\apppatch
2020-06-10 09:23:46 ----D---- C:\Program Files\Windows Photo Viewer
2020-06-10 09:23:46 ----D---- C:\Program Files\Windows Media Player
2020-06-10 09:23:46 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2020-06-10 09:23:46 ----D---- C:\Program Files (x86)\Windows Media Player
2020-06-10 09:23:45 ----D---- C:\WINDOWS\system32\drivers\UMDF
2020-06-10 07:49:31 ----D---- C:\WINDOWS\CbsTemp
2020-06-10 07:47:10 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2020-06-05 23:03:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2020-06-05 17:36:27 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2020-06-04 07:40:15 ----D---- C:\WINDOWS\system32\drivers\wd
2020-05-31 15:53:44 ----D---- C:\Program Files\Common Files
2020-05-31 15:52:38 ----D---- C:\Program Files (x86)\Common Files
2020-05-31 15:51:57 ----RD---- C:\Program Files (x86)
2020-05-31 15:50:29 ----D---- C:\Program Files\Image-Line
2020-05-31 15:47:28 ----SHDC---- C:\WINDOWS\Installer
2020-05-30 11:38:09 ----D---- C:\Program Files\UNP
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2019-04-03 1469952]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2019-03-19 89096]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-03-11 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-05-13 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-02-14 117264]
R3 ICCWDT;@oem19.inf,%ICCWDT.SVCDESC%;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\WINDOWS\System32\drivers\ICCWDT.sys [2019-04-03 39504]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2019-04-01 6794744]
R3 ISCT;@oem35.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD64.sys [2019-04-03 47008]
R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverW8x64.sys [2019-04-03 223832]
R3 NVHDA;@oem34.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2020-06-22 222112]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2b99a29f071e5d25\nvlddmkm.sys [2020-06-23 24671120]
R3 nvvad_WaveExtensible;@oem32.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2019-03-19 69840]
R3 nvvhci;@oem30.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-03-11 67456]
R3 rt640x64;@oem2.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-02-20 1138136]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2020-04-15 151352]
S0 SmartSAMD;SmartSAMD; C:\WINDOWS\System32\drivers\SmartSAMD.sys [2019-03-19 220176]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-11 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-15 18432]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-09-12 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-03-11 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-03-11 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-03-11 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-03-11 99328]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 dg_ssudbus;@oem18.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 DM150Drv;DM150Drv; C:\WINDOWS\System32\drivers\DM150Drv.sys [2010-07-30 24312]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-10-09 64000]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-04-15 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-15 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 nvoclk64;NVIDIA Enthusiasts Platform KDM; C:\WINDOWS\System32\drivers\nvoclk64.sys [2009-09-15 42088]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2020-04-01 30336]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-13 986936]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2016-12-21 40240]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-03-19 33592]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2019-03-19 76088]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_1ae30da9;Uživatelská služba platformy připojených zařízení_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-03-18 850928]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2020-06-22 873272]
R2 OneSyncSvc_1ae30da9;Hostitel synchronizace_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2019-03-19 263904]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_1ae30da9;Uživatelská služba schránky_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_1ae30da9;Data kontaktů_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2020-06-10 932256]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-05-21 154920]
S2 Intel(R) TPM Provisioning Service;@oem9.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [2019-04-03 737552]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_1ae30da9;Agent Activation Runtime_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_1ae30da9;Uživatelská služba pro GameDVR a vysílání her_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_1ae30da9;Služba pro podporu uživatelů Bluetooth_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_1ae30da9;CaptureService_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_1ae30da9;ConsentUX_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-13 380632]
S3 CredentialEnrollmentManagerUserSvc_1ae30da9;CredentialEnrollmentManagerUserSvc_1ae30da9; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-13 380632]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_1ae30da9;DeviceAssociationBroker_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_1ae30da9;DevicePicker_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_1ae30da9;Tok zařízení_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-06-10 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2020-02-28 803440]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-08-19 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\elevation_service.exe [2020-06-19 1287152]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-05-21 154920]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 Intel(R) Capability Licensing Service TCP IP Interface;@oem9.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [2019-04-03 761088]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_1ae30da9;Služba zasílání zpráv_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_1ae30da9;PrintWorkflow_1ae30da9; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2020-06-20 1776768]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2019-03-19 1264128]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2019-08-19 986112]
S4 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2020-04-06 76152]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-29-2020
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1406 octets] - [29/06/2020 13:29:10]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-29-2020
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1406 octets] - [29/06/2020 13:29:10]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
AlternateDataStreams: C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
FirewallRules: [{228D31F2-4AD6-4EC4-8CBB-4D0D3BB38CCA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{0B0FB921-DCC7-410C-AF49-EC3DAE7923C2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{B31789E0-4D21-46DE-94F5-B17CEC5A6B76}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe => No File
FirewallRules: [{F68447A3-F36F-46FA-9FA3-9C7E11BE8D9F}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe => No File
FirewallRules: [{AC6796CA-A761-4749-AC41-3226F7B347C7}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe => No File
FirewallRules: [{754F60AC-9CE4-4A2C-A0E5-12E5E6E7B048}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe => No File
FirewallRules: [TCP Query User{AA897908-B088-445C-A615-90D1DFA57526}D:\hry\ao tennis 2\tennis2.exe] => (Allow) D:\hry\ao tennis 2\tennis2.exe => No File
FirewallRules: [UDP Query User{58FA0CAE-9E9B-45E3-BC8D-34582B5BBBD0}D:\hry\ao tennis 2\tennis2.exe] => (Allow) D:\hry\ao tennis 2\tennis2.exe => No File
Task: {DF0DCA14-B2C7-4ABA-9E0F-CA92301DBFCC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-21] (Google Inc -> Google LLC)
Task: {F23C6957-6388-4E32-B97C-3AECDE4FE431} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-21] (Google Inc -> Google LLC)
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 28-06-2020
Ran by dbube (29-06-2020 17:08:49) Run:1
Running from C:\Users\dbube\Desktop
Loaded Profiles: dbube
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
AlternateDataStreams: C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
FirewallRules: [{228D31F2-4AD6-4EC4-8CBB-4D0D3BB38CCA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{0B0FB921-DCC7-410C-AF49-EC3DAE7923C2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{B31789E0-4D21-46DE-94F5-B17CEC5A6B76}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe => No File
FirewallRules: [{F68447A3-F36F-46FA-9FA3-9C7E11BE8D9F}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe => No File
FirewallRules: [{AC6796CA-A761-4749-AC41-3226F7B347C7}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe => No File
FirewallRules: [{754F60AC-9CE4-4A2C-A0E5-12E5E6E7B048}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe => No File
FirewallRules: [TCP Query User{AA897908-B088-445C-A615-90D1DFA57526}D:\hry\ao tennis 2\tennis2.exe] => (Allow) D:\hry\ao tennis 2\tennis2.exe => No File
FirewallRules: [UDP Query User{58FA0CAE-9E9B-45E3-BC8D-34582B5BBBD0}D:\hry\ao tennis 2\tennis2.exe] => (Allow) D:\hry\ao tennis 2\tennis2.exe => No File
Task: {DF0DCA14-B2C7-4ABA-9E0F-CA92301DBFCC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-21] (Google Inc -> Google LLC)
Task: {F23C6957-6388-4E32-B97C-3AECDE4FE431} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-21] (Google Inc -> Google LLC)
EmptyTemp:
End
*****************
Processes closed successfully.
C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{228D31F2-4AD6-4EC4-8CBB-4D0D3BB38CCA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B0FB921-DCC7-410C-AF49-EC3DAE7923C2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B31789E0-4D21-46DE-94F5-B17CEC5A6B76}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F68447A3-F36F-46FA-9FA3-9C7E11BE8D9F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AC6796CA-A761-4749-AC41-3226F7B347C7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{754F60AC-9CE4-4A2C-A0E5-12E5E6E7B048}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{AA897908-B088-445C-A615-90D1DFA57526}D:\hry\ao tennis 2\tennis2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{58FA0CAE-9E9B-45E3-BC8D-34582B5BBBD0}D:\hry\ao tennis 2\tennis2.exe" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DF0DCA14-B2C7-4ABA-9E0F-CA92301DBFCC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF0DCA14-B2C7-4ABA-9E0F-CA92301DBFCC}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F23C6957-6388-4E32-B97C-3AECDE4FE431}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F23C6957-6388-4E32-B97C-3AECDE4FE431}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16031827 B
Java, Flash, Steam htmlcache => 464041680 B
Windows/system/drivers => 4660916 B
Edge => 29805 B
Chrome => 493072200 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 15042 B
NetworkService => 357924 B
dbube => 171033216 B
Vlasťule => 208324210 B
RecycleBin => 115665141 B
EmptyTemp: => 1.4 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 17:09:34 ====
Ran by dbube (29-06-2020 17:08:49) Run:1
Running from C:\Users\dbube\Desktop
Loaded Profiles: dbube
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
AlternateDataStreams: C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
FirewallRules: [{228D31F2-4AD6-4EC4-8CBB-4D0D3BB38CCA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{0B0FB921-DCC7-410C-AF49-EC3DAE7923C2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{B31789E0-4D21-46DE-94F5-B17CEC5A6B76}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe => No File
FirewallRules: [{F68447A3-F36F-46FA-9FA3-9C7E11BE8D9F}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe => No File
FirewallRules: [{AC6796CA-A761-4749-AC41-3226F7B347C7}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe => No File
FirewallRules: [{754F60AC-9CE4-4A2C-A0E5-12E5E6E7B048}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe => No File
FirewallRules: [TCP Query User{AA897908-B088-445C-A615-90D1DFA57526}D:\hry\ao tennis 2\tennis2.exe] => (Allow) D:\hry\ao tennis 2\tennis2.exe => No File
FirewallRules: [UDP Query User{58FA0CAE-9E9B-45E3-BC8D-34582B5BBBD0}D:\hry\ao tennis 2\tennis2.exe] => (Allow) D:\hry\ao tennis 2\tennis2.exe => No File
Task: {DF0DCA14-B2C7-4ABA-9E0F-CA92301DBFCC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-21] (Google Inc -> Google LLC)
Task: {F23C6957-6388-4E32-B97C-3AECDE4FE431} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-21] (Google Inc -> Google LLC)
EmptyTemp:
End
*****************
Processes closed successfully.
C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{228D31F2-4AD6-4EC4-8CBB-4D0D3BB38CCA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B0FB921-DCC7-410C-AF49-EC3DAE7923C2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B31789E0-4D21-46DE-94F5-B17CEC5A6B76}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F68447A3-F36F-46FA-9FA3-9C7E11BE8D9F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AC6796CA-A761-4749-AC41-3226F7B347C7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{754F60AC-9CE4-4A2C-A0E5-12E5E6E7B048}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{AA897908-B088-445C-A615-90D1DFA57526}D:\hry\ao tennis 2\tennis2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{58FA0CAE-9E9B-45E3-BC8D-34582B5BBBD0}D:\hry\ao tennis 2\tennis2.exe" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DF0DCA14-B2C7-4ABA-9E0F-CA92301DBFCC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF0DCA14-B2C7-4ABA-9E0F-CA92301DBFCC}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F23C6957-6388-4E32-B97C-3AECDE4FE431}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F23C6957-6388-4E32-B97C-3AECDE4FE431}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16031827 B
Java, Flash, Steam htmlcache => 464041680 B
Windows/system/drivers => 4660916 B
Edge => 29805 B
Chrome => 493072200 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 15042 B
NetworkService => 357924 B
dbube => 171033216 B
Vlasťule => 208324210 B
RecycleBin => 115665141 B
EmptyTemp: => 1.4 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 17:09:34 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Ano, vypadá to OK. Děkuji 
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?