Prosím o kontrolu logu, nedávno jsme PC pročistili a vše bylo OK, Nyní mi ale vyskakuje male okno vpravo dole jako reklama na půjčky apod. Musí být v PC nějaký vir. Sken přes ADW CLEANER byl čistý.
Log z RSIT zde
Logfile of random's system information tool 1.10 (written by random/random)
Run by dbube at 2020-07-02 21:05:22
Microsoft Windows 10 Home
System drive C: has 47 GB (41%) free of 114 GB
Total RAM: 16327 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:05:25, on 02.07.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Users\dbube\Desktop\BakkesMod.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
C:\Program Files\trend micro\dbube.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: 109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
O1 - Hosts: 109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
O1 - Hosts: 109.94.209.70 fitgirl-repack.com # Fake FitGirl site
O1 - Hosts: 109.94.209.70 fitgirl-repacks.website # Fake FitGirl site
O1 - Hosts: 109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
O1 - Hosts: 109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
O1 - Hosts: 109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site
O1 - Hosts: 109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site
O1 - Hosts: 109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site
O1 - Hosts: 109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site
O1 - Hosts: 109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site
O1 - Hosts: 109.94.209.70 fitgirl-repack.net # Fake FitGirl site
O1 - Hosts: 109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site
O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\Programy\PowerISO\PWRISOVM.EXE -startup
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [BakkesMod] "C:\Users\dbube\Desktop\BakkesMod.exe"
O4 - HKCU\..\Run: [Discord] C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1558997955-55845073-2629518697-1002\..\Run: [OneDrive] "C:\Users\Vlasťule\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background (User 'Vlasťule')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_1505480 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_15e6a46 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem9.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: @oem9.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: vgc - Riot Games, Inc. - C:\Program Files\Riot Vanguard\vgc.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9481 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"LogonUI.exe" /flags:0x2 /state0:0xa3727055 /state1:0x41c64e6d
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\system32\browser_broker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\MicrosoftEdgeCP.exe" -ServerName:Windows.Internal.WebRuntime.ContentProcessServer
C:\WINDOWS\system32\MicrosoftEdgeSH.exe SCODEF:6520 CREDAT:9730 APH:100000000000005A JITHOST /prefetch:2
"C:\WINDOWS\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Users\Vlasťule\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"D:\Programy\PowerISO\PWRISOVM.EXE" -startup
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19111.24110.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\System32\WinLogon.exe -UserSwitch 6TU7IOV5DJGVVG 5 0
"fontdrvhost.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"ctfmon.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20061.110.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Steam\steam.exe" -silent
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=cs_CZ" "-cachedir=C:\Users\dbube\AppData\Local\Steam\htmlcache" "-steampid=9164" "-buildid=1591251555" "-steamid=0" "-steamuniverse=Public" "-clientui=C:\Program Files (x86)\Steam\clientui" --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --enable-media-stream --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\dbube\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1591251555 --initial-client-data=0x80,0x78,0x7c,0x70,0x2f4,0x7ffa6813bed0,0x7ffa6813bee0,0x7ffa6813bef0
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --field-trial-handle=1508,5483432248173482257,5516376061840012035,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --lang=cs-CZ --buildid=1591251555 --steamid=0 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --service-request-channel-token=413111517914203058 --mojo-platform-channel-handle=1556 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --field-trial-handle=1508,5483432248173482257,5516376061840012035,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --lang=cs --service-sandbox-type=network --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --lang=cs-CZ --buildid=1591251555 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --service-request-channel-token=13707420900335699051 --mojo-platform-channel-handle=2116 /prefetch:8
"C:\Users\dbube\Desktop\BakkesMod.exe"
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe"
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=gpu-process --field-trial-handle=1768,14744776693349534981,4566611061740081489,131072 --disable-features=SpareRendererForSitePerProcess --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=17622900133130655787 --mojo-platform-channel-handle=1824 --ignored=" --type=renderer " /prefetch:2
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=utility --field-trial-handle=1768,14744776693349534981,4566611061740081489,131072 --disable-features=SpareRendererForSitePerProcess --lang=cs --service-sandbox-type=network --service-request-channel-token=18066264920069251746 --mojo-platform-channel-handle=2260 /prefetch:8
C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe --no-rate-limit --no-upload-gzip --type=crash-handler "--crashes-directory=C:\Users\dbube\AppData\Local\Temp\Discord Crashes" "--database=C:\Users\dbube\AppData\Local\Temp\Discord Crashes" "--metrics-dir=C:\Users\dbube\AppData\Local\Temp\Discord Crashes" --url=https://sentry.io/api/146342/minidump/? ... be03b2b35a --initial-client-data=0xa8c,0xa90,0xa94,0xa88,0xa98,0x59dd090,0x59dd0a0,0x59dd0ac
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=renderer --autoplay-policy=no-user-gesture-required --field-trial-handle=1768,14744776693349534981,4566611061740081489,131072 --disable-features=SpareRendererForSitePerProcess --lang=cs --app-user-model-id=com.squirrel.Discord.Discord --app-path="C:\Users\dbube\AppData\Local\Discord\app-0.0.306\resources\app.asar" --no-sandbox --no-zygote --native-window-open --preload="C:\Users\dbube\AppData\Roaming\discord\0.0.306\modules\discord_desktop_core\core.asar\app\mainScreenPreload.js" --disable-remote-module --background-color=#202225 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=583625882800434532 --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2720 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1508,5483432248173482257,5516376061840012035,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1591251555 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4330101361674411606 --renderer-client-id=6 --mojo-platform-channel-handle=2820 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1508,5483432248173482257,5516376061840012035,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1591251555 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=16727417707245991963 --renderer-client-id=7 --mojo-platform-channel-handle=2968 /prefetch:1
"C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe" --type=utility --field-trial-handle=1768,14744776693349534981,4566611061740081489,131072 --disable-features=SpareRendererForSitePerProcess --lang=cs --service-sandbox-type=audio --service-request-channel-token=5466712398418380666 --mojo-platform-channel-handle=2920 /prefetch:8
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19111.24110.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1508,5483432248173482257,5516376061840012035,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1591251555 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14650571208451857890 --renderer-client-id=12 --mojo-platform-channel-handle=3992 /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20032.16211.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20061.110.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20032.16211.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\AUDIODG.EXE 0x5b8
"C:\WINDOWS\System32\Taskmgr.exe" /3
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\dbube\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\dbube\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=83.0.4103.116 --initial-client-data=0xe8,0xec,0xf0,0xc4,0xf4,0x7ffa7c52bd28,0x7ffa7c52bd38,0x7ffa7c52bd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1528,4801076803649531950,10346414811043345988,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1612 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1528,4801076803649531950,10346414811043345988,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1988 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1528,4801076803649531950,10346414811043345988,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2816 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1528,4801076803649531950,10346414811043345988,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3484 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1528,4801076803649531950,10346414811043345988,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3904 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1528,4801076803649531950,10346414811043345988,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4592 /prefetch:1
"C:\Users\dbube\Desktop\RSITx64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
======Scheduled tasks folder======
C:\WINDOWS\tasks\Intel PTT EK Recertification.job - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-14 84992]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2019-04-01 9270776]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2020-06-04 3375904]
"BakkesMod"=C:\Users\dbube\Desktop\BakkesMod.exe [2019-12-28 11271168]
"Discord"=C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe [2020-02-24 90950968]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PWRISOVM.EXE"=D:\Programy\PowerISO\PWRISOVM.EXE [2020-02-09 455872]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-07-01 12:33:34 ----A---- C:\WINDOWS\system32\drivers\scdemu.sys
2020-07-01 12:33:08 ----D---- C:\Users\dbube\AppData\Roaming\WinRAR
2020-06-29 13:31:12 ----D---- C:\WINDOWS\Panther
2020-06-29 13:28:49 ----D---- C:\AdwCleaner
2020-06-29 13:26:29 ----D---- C:\Malwarebytes
2020-06-29 11:49:20 ----D---- C:\rsit
2020-06-29 11:45:54 ----D---- C:\FRST
2020-06-28 18:08:16 ----D---- C:\ProgramData\Microsoft OneDrive
2020-06-27 23:49:02 ----D---- C:\Users\dbube\AppData\Roaming\com.RustyLake.SamsaraRoom
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\OpenCL.dll
2020-06-24 22:10:24 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvdispgenco6445148.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvdispco6445148.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2020-06-24 22:10:23 ----A---- C:\WINDOWS\system32\nvcuda.dll
2020-06-24 22:10:22 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2020-06-10 17:28:17 ----D---- C:\Users\dbube\AppData\Roaming\slobs-plugins
2020-06-10 17:28:16 ----D---- C:\Users\dbube\AppData\Roaming\obs-studio-node-server
2020-06-10 17:28:14 ----D---- C:\Users\dbube\AppData\Roaming\slobs-client
2020-06-10 16:41:38 ----D---- C:\Users\dbube\AppData\Roaming\obs-studio
2020-06-10 16:41:35 ----D---- C:\ProgramData\obs-studio-hook
2020-06-10 07:47:45 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\wmp.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\msra.exe
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\fveapi.dll
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2020-06-10 07:47:44 ----A---- C:\WINDOWS\system32\bdesvc.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-06-10 07:47:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\wbengine.exe
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-06-10 07:47:43 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-06-10 07:47:42 ----A---- C:\WINDOWS\SYSWOW64\mswmdm.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\WMNetMgr.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\wmidx.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2020-06-10 07:47:41 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-06-10 07:47:40 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\WMNetMgr.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\wmidx.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mswmdm.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfds.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\mf.dll
2020-06-10 07:47:39 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-06-10 07:47:38 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2020-06-10 07:47:38 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\wkspbrokerAx.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\wavemsp.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\termmgr.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\tapi3.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\SecurityCenterBrokerPS.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\psisdecd.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2020-06-10 07:47:37 ----A---- C:\WINDOWS\SYSWOW64\cic.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-06-10 07:47:36 ----A---- C:\WINDOWS\SYSWOW64\cdosys.dll
2020-06-10 07:47:35 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-06-10 07:47:35 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-06-10 07:47:35 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2020-06-10 07:47:34 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\wiaaut.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\imapi.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\iassdo.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\iasrecst.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2020-06-10 07:47:33 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\SYSWOW64\iasads.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\SYSWOW64\azroles.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\wkspbrokerAx.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\VAN.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\SharedRealitySvc.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\SecurityCenterBrokerPS.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\SecurityCenterBroker.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\qedit.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\psisdecd.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\FileHistory.exe
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-06-10 07:47:32 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\wvc.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\WlanMM.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\wavemsp.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\termmgr.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\tapi3.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\rdpencom.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\quartz.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\qdvd.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\nshwfp.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\nltest.exe
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\nettrace.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\msi.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\mmc.exe
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\LocationApi.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\FsIso.exe
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\devenum.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\cic.dll
2020-06-10 07:47:31 ----A---- C:\WINDOWS\system32\cdosys.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-06-10 07:47:30 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-06-10 07:47:29 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-06-10 07:47:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-06-10 07:47:29 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\wiaaut.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\werui.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\mshtmled.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\jscript.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\imapi2.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\imapi.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iassdo.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iasrecst.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iasnap.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\iasads.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-06-10 07:47:28 ----A---- C:\WINDOWS\system32\dxtrans.dll
2020-06-10 07:47:27 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-06-10 07:47:27 ----A---- C:\WINDOWS\system32\azroles.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\WwanRadioManager.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\wwanmm.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-06-10 07:47:26 ----A---- C:\WINDOWS\system32\diagperf.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\rtutils.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\rdpviewerax.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\msaatext.dll
2020-06-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\windowsperformancerecordercontrol.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2020-06-10 07:47:24 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\psr.exe
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\CertEnrollCtrl.exe
2020-06-10 07:47:23 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Preview.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\InkObjCore.dll
2020-06-10 07:47:22 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\atlthunk.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\SYSWOW64\atl.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\spwizeng.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\rdpviewerax.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\pku2u.dll
2020-06-10 07:47:21 ----A---- C:\WINDOWS\system32\comdlg32.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\wlidcli.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\rtutils.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\RASMM.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\puiobj.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\netshell.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-06-10 07:47:20 ----A---- C:\WINDOWS\system32\msaatext.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\usermgr.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\tdh.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\gpsvc.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\gpapi.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\DismApi.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\Dism.exe
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\DAMM.dll
2020-06-10 07:47:19 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wpr.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\WerFault.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\weretw.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\wer.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\schannel.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\RpcEpMap.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\oleaut32.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\Faultrep.dll
2020-06-10 07:47:18 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\wksprt.exe
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\wdigest.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\twinui.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\logoncli.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\combase.dll
2020-06-10 07:47:17 ----A---- C:\WINDOWS\system32\ci.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\msctf.dll
2020-06-10 07:47:16 ----A---- C:\WINDOWS\system32\InkEd.dll
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\shell32.dll
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\psr.exe
2020-06-10 07:47:15 ----A---- C:\WINDOWS\system32\comsvcs.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\VSSVC.exe
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\swprv.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\daxexec.dll
2020-06-10 07:47:14 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\win32u.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\win32k.sys
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-06-10 07:47:13 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\rdpsharercom.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\NPSM.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\InkObjCore.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\d2d1.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\cdd.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-06-10 07:47:12 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlansvc.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlansec.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\WlanRadioManager.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wlanapi.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wifitask.exe
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\wfdprov.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\qmgr.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\provops.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\netman.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\kernel32.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\dot3mm.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\atlthunk.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\atl.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-06-10 07:47:11 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\XboxGipRadioManager.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\WpdMtpUS.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\WpdMtp.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\win32spl.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\oleprn.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\localspl.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\BTAGService.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-06-10 07:47:10 ----A---- C:\WINDOWS\splwow64.exe
2020-06-10 07:42:44 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-06-10 07:42:44 ----A---- C:\WINDOWS\system32\poqexec.exe
======List of files/folders modified in the last 1 month======
2020-07-02 21:05:24 ----D---- C:\WINDOWS\Temp
2020-07-02 21:05:24 ----D---- C:\Program Files\trend micro
2020-07-02 21:05:18 ----D---- C:\WINDOWS\Prefetch
2020-07-02 21:03:45 ----D---- C:\WINDOWS\system32\SleepStudy
2020-07-02 21:03:45 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-07-02 20:59:23 ----D---- C:\Users\dbube\AppData\Roaming\discord
2020-07-02 20:36:51 ----D---- C:\WINDOWS\system32\sru
2020-07-02 19:58:52 ----D---- C:\Program Files (x86)\Steam
2020-07-02 18:45:24 ----D---- C:\WINDOWS\system32\config
2020-07-02 16:56:09 ----D---- C:\WINDOWS\system32\drivers\wd
2020-07-02 15:03:50 ----D---- C:\WINDOWS\AppReadiness
2020-07-02 14:03:41 ----RD---- C:\WINDOWS\Microsoft.NET
2020-07-02 12:28:31 ----D---- C:\ProgramData\NVIDIA
2020-07-02 10:37:36 ----D---- C:\WINDOWS\system32\Tasks
2020-07-02 10:31:43 ----HD---- C:\Program Files\WindowsApps
2020-07-01 19:49:41 ----D---- C:\Users\dbube\AppData\Roaming\qBittorrent
2020-07-01 16:49:14 ----D---- C:\WINDOWS\System32
2020-07-01 16:49:14 ----D---- C:\WINDOWS\INF
2020-07-01 16:49:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-01 14:42:51 ----D---- C:\WINDOWS\system32\drivers\etc
2020-07-01 14:42:32 ----D---- C:\WINDOWS\SYSWOW64\directx
2020-07-01 12:33:34 ----D---- C:\WINDOWS\system32\drivers
2020-07-01 12:27:08 ----HD---- C:\ProgramData
2020-07-01 12:26:53 ----SHDC---- C:\WINDOWS\Installer
2020-07-01 12:26:52 ----RD---- C:\Program Files
2020-07-01 10:54:13 ----D---- C:\WINDOWS\system32\LogFiles
2020-06-30 19:13:21 ----D---- C:\WINDOWS\Logs
2020-06-30 19:12:46 ----SD---- C:\ProgramData\Microsoft
2020-06-29 17:09:40 ----D---- C:\WINDOWS\system32\catroot2
2020-06-29 13:33:38 ----HD---- C:\WINDOWS\ELAMBKUP
2020-06-29 13:31:12 ----D---- C:\Windows
2020-06-29 13:31:05 ----D---- C:\WINDOWS\SysWOW64
2020-06-29 11:46:21 ----SHD---- C:\System Volume Information
2020-06-27 23:42:23 ----D---- C:\Users\dbube\AppData\Roaming\TS3Client
2020-06-27 15:12:12 ----D---- C:\WINDOWS\WinSxS
2020-06-25 18:15:39 ----D---- C:\WINDOWS\system32\DriverStore
2020-06-23 01:11:30 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-06-23 01:11:28 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2020-06-23 01:08:10 ----A---- C:\WINDOWS\system32\nvapi64.dll
2020-06-22 03:45:13 ----A---- C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-06-21 23:59:21 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2020-06-21 23:59:21 ----A---- C:\WINDOWS\system32\nvcpl.dll
2020-06-21 23:59:18 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2020-06-21 23:59:18 ----A---- C:\WINDOWS\system32\nvshext.dll
2020-06-21 23:59:17 ----A---- C:\WINDOWS\system32\nvmctray.dll
2020-06-21 23:59:17 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2020-06-21 23:59:17 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2020-06-20 18:57:22 ----D---- C:\Program Files (x86)\Rockstar Games
2020-06-20 18:57:15 ----D---- C:\Program Files\Rockstar Games
2020-06-10 09:23:47 ----SD---- C:\WINDOWS\SYSWOW64\F12
2020-06-10 09:23:47 ----SD---- C:\WINDOWS\system32\F12
2020-06-10 09:23:47 ----SD---- C:\WINDOWS\system32\DiagSvcs
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\wbem
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\Com
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SYSWOW64\AdvancedInstallers
2020-06-10 09:23:47 ----D---- C:\WINDOWS\SystemResources
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\wbem
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\oobe
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\en-US
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\Dism
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\cs-CZ
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\Com
2020-06-10 09:23:47 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2020-06-10 09:23:47 ----D---- C:\WINDOWS\ShellExperiences
2020-06-10 09:23:47 ----D---- C:\WINDOWS\bcastdvr
2020-06-10 09:23:46 ----D---- C:\WINDOWS\apppatch
2020-06-10 09:23:46 ----D---- C:\Program Files\Windows Photo Viewer
2020-06-10 09:23:46 ----D---- C:\Program Files\Windows Media Player
2020-06-10 09:23:46 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2020-06-10 09:23:46 ----D---- C:\Program Files (x86)\Windows Media Player
2020-06-10 09:23:45 ----D---- C:\WINDOWS\system32\drivers\UMDF
2020-06-10 07:49:31 ----D---- C:\WINDOWS\CbsTemp
2020-06-10 07:47:10 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2020-06-05 23:03:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2020-06-05 17:36:27 ----A---- C:\WINDOWS\NvContainerRecovery.bat
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2019-04-03 1469952]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2019-03-19 89096]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-03-11 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2017-06-07 138296]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-05-13 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-02-14 117264]
R3 ICCWDT;@oem19.inf,%ICCWDT.SVCDESC%;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\WINDOWS\System32\drivers\ICCWDT.sys [2019-04-03 39504]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2019-04-01 6794744]
R3 ISCT;@oem35.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD64.sys [2019-04-03 47008]
R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverW8x64.sys [2019-04-03 223832]
R3 NVHDA;@oem34.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2020-06-22 222112]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2b99a29f071e5d25\nvlddmkm.sys [2020-06-23 24671120]
R3 nvvad_WaveExtensible;@oem32.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2019-03-19 69840]
R3 nvvhci;@oem30.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-03-11 67456]
R3 rt640x64;@oem2.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-02-20 1138136]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2020-04-15 151352]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-11 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-15 18432]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-09-12 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-03-11 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-03-11 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-03-11 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-03-11 99328]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 dg_ssudbus;@oem18.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 DM150Drv;DM150Drv; C:\WINDOWS\System32\drivers\DM150Drv.sys [2010-07-30 24312]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-10-09 64000]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-04-15 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-15 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 nvoclk64;NVIDIA Enthusiasts Platform KDM; C:\WINDOWS\System32\drivers\nvoclk64.sys [2009-09-15 42088]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2020-04-01 30336]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-13 986936]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2016-12-21 40240]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-03-19 33592]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_1505480;Uživatelská služba platformy připojených zařízení_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_15e6a46;Uživatelská služba platformy připojených zařízení_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-03-18 850928]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2020-06-22 873272]
R2 OneSyncSvc_1505480;Hostitel synchronizace_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 OneSyncSvc_15e6a46;Hostitel synchronizace_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2019-03-19 263904]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_1505480;Uživatelská služba schránky_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_15e6a46;Uživatelská služba schránky_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_1505480;Data kontaktů_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_15e6a46;Data kontaktů_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2020-06-10 932256]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-05-21 154920]
S2 Intel(R) TPM Provisioning Service;@oem9.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [2019-04-03 737552]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_1505480;Agent Activation Runtime_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_15e6a46;Agent Activation Runtime_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_1505480;Uživatelská služba pro GameDVR a vysílání her_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_15e6a46;Uživatelská služba pro GameDVR a vysílání her_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_1505480;Služba pro podporu uživatelů Bluetooth_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_15e6a46;Služba pro podporu uživatelů Bluetooth_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_1505480;CaptureService_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_15e6a46;CaptureService_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_1505480;ConsentUX_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_15e6a46;ConsentUX_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-13 380632]
S3 CredentialEnrollmentManagerUserSvc_1505480;CredentialEnrollmentManagerUserSvc_1505480; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-13 380632]
S3 CredentialEnrollmentManagerUserSvc_15e6a46;CredentialEnrollmentManagerUserSvc_15e6a46; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-13 380632]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_1505480;DeviceAssociationBroker_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_15e6a46;DeviceAssociationBroker_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_1505480;DevicePicker_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_15e6a46;DevicePicker_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_1505480;Tok zařízení_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_15e6a46;Tok zařízení_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-06-10 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2020-02-28 803440]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-08-19 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\elevation_service.exe [2020-06-19 1287152]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-05-21 154920]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 Intel(R) Capability Licensing Service TCP IP Interface;@oem9.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [2019-04-03 761088]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_1505480;Služba zasílání zpráv_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_15e6a46;Služba zasílání zpráv_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_1505480;PrintWorkflow_1505480; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_15e6a46;PrintWorkflow_15e6a46; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2020-07-01 1711232]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2019-03-19 1264128]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2020-04-06 76152]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu
Přídávám ještě log z FRST
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-06-2020
Ran by dbube (02-07-2020 21:08:30)
Running from C:\Users\dbube\Desktop
Windows 10 Home Version 1903 18362.900 (X64) (2019-08-19 14:53:00)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1558997955-55845073-2629518697-500 - Administrator - Disabled)
dbube (S-1-5-21-1558997955-55845073-2629518697-1001 - Administrator - Enabled) => C:\Users\dbube
DefaultAccount (S-1-5-21-1558997955-55845073-2629518697-503 - Limited - Disabled)
Guest (S-1-5-21-1558997955-55845073-2629518697-501 - Limited - Disabled)
Vlasťule (S-1-5-21-1558997955-55845073-2629518697-1002 - Administrator - Enabled) => C:\Users\Vlasťule
WDAGUtilityAccount (S-1-5-21-1558997955-55845073-2629518697-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Ashampoo Burning Studio 20 (HKLM-x32\...\{91B33C97-155F-C10C-D4D6-CABA03805EE4}_is1) (Version: 20.0.4 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Auto Keys 1.0 (HKLM-x32\...\Auto Keys) (Version: - )
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bus Simulator 18 v.4.18.3.0 (HKLM-x32\...\Bus Simulator 18_is1) (Version: - )
Detroit Become Human (HKLM-x32\...\Detroit Become Human_is1) (Version: - )
Discord (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Euro Truck Simulator 2 Road to the Black Sea (HKLM-x32\...\Euro Truck Simulator 2 Road to the Black Sea_is1) (Version: - )
FiveM (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.1868.1 - Rockstar Games)
Kingdom Come Deliverance v. 1.9.4 (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 6.2.5.2 (HKLM\...\{207F3229-8AA5-4544-BDB7-7995538A5ED5}) (Version: 6.2.5.2 - The Document Foundation)
Microsoft OneDrive (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1558997955-55845073-2629518697-1002\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Movavi Video Editor Plus 2020 (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Movavi Video Editor Plus 2020) (Version: 20.3.0 - Movavi)
Native Instruments Kontakt (HKLM-x32\...\Native Instruments Kontakt) (Version: 6.2.2.51 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.12.1.129 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.3.2.30 - Native Instruments)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.34 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 451.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.48 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
Ovládací panel NVIDIA 451.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 451.48 - NVIDIA Corporation) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.6 - Power Software Ltd)
qBittorrent 4.2.3 (HKLM-x32\...\qBittorrent) (Version: 4.2.3 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8668 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.25.260 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.22.3 - General Workings, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.3.0 - TeamSpeak Systems GmbH)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
VALORANT (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.10.5.0_x86__kgqvnymyfvs32 [2020-06-18] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.39.4.0_x86__kgqvnymyfvs32 [2020-06-26] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1800.1.0_x86__kgqvnymyfvs32 [2020-06-30] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-21] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
RAR Opener -> C:\Program Files\WindowsApps\DeviceDoctor.RAROpener_1.3.48.0_x64__mkdtfchztkfbm [2020-07-01] (Tiny Opener)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\Programy\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\Programy\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-06-21] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\Programy\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-05-21 16:16 - 2020-07-01 14:42 - 000001760 _____ C:\WINDOWS\system32\drivers\etc\hosts
109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 fitgirl-repack.com # Fake FitGirl site
109.94.209.70 fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repack.net # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dbube\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\galactic_earth_4k_8k-7680x4320.jpg
HKU\S-1-5-21-1558997955-55845073-2629518697-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Vlasťule\Desktop\Vlasťule VŠE KOMPLET!!!!\Návštěva Ségry 2.8. 2019\20190804_075016.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{149C46C4-381D-453B-9296-52D5A5E0BC80}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1C6C1601-D79E-4C74-86F3-00DC335F1EEF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{15637F6B-4B83-40C3-960C-E0C198322A71}C:\users\dbube\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dbube\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{9C6B20A8-8F7A-4212-8E69-00DA9781089B}C:\users\dbube\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dbube\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{0B000BC4-8ABF-47B0-8F15-59D63814864C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{15740F37-7BB5-4A1C-98C0-D896A5772467}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{362F35D2-870E-41C9-B4B4-F58E51FDB4F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DA22F86F-F0AF-4CC9-9F4B-FF99018B0984}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E7413426-3073-4EA1-9B95-7F493B776FAE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A58E956B-F463-4685-A3C0-752812D3B99E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9F1AC2C4-18A9-41DB-AD91-454FF97ADD8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{486B10C6-CD25-4903-8B18-E0A19DCEE927}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [TCP Query User{5068ADAE-003C-41F4-A548-8937CD1754D8}C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [UDP Query User{CB4BC6EE-D2AA-4DAB-A8AA-78444414B054}C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [TCP Query User{0064D7AA-B519-491D-81D0-0B9359435AE8}D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe] => (Allow) D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe (stillalive studios GmbH) [File not signed]
FirewallRules: [UDP Query User{AA93E2D6-2040-40AC-B752-A25AE7A6648A}D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe] => (Allow) D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe (stillalive studios GmbH) [File not signed]
FirewallRules: [TCP Query User{9B3ECFAE-B315-4C2A-B105-74F58F912EC1}D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{C84FAEBA-99FE-4154-81C9-0DF8578167A2}D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{B5B82461-1D3E-44ED-91E2-EA78BB305CAB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{1FF47BF8-CA24-4450-BB9E-3BEDD10FFFDA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{656A6944-FA05-4E81-8E9B-3B7F867A1688}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{F0EF74A3-704E-490F-B237-B5CA35C8467A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{5D6715E2-D232-4745-93A6-3B97D4DE8341}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{906657C5-1A37-4A55-8923-60C4DDDF73D6}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{41A9AB65-40EF-4A39-8E11-C07E3389FA08}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{62B9B81B-4850-47E7-9B27-E8C5EC217FFD}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{0C1D645E-5476-4059-B27E-B79C72BFFF6F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E32CB88F-98CE-4102-AE39-8DAAFE10731A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{536E4F79-F701-438E-B31C-68556AE5D713}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{10B5C778-10A7-4EEA-A467-1C83B18ACE98}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{5CBDE432-6C17-4828-B06D-A6E3E18500EA}D:\hry\gta v\grand theft auto v\gta5.exe] => (Allow) D:\hry\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{6F1027CE-8DA9-42B0-9DBF-708982713D48}D:\hry\gta v\grand theft auto v\gta5.exe] => (Allow) D:\hry\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{A660FC84-4FCA-4266-A26E-8C910AA98F39}C:\users\dbube\appdata\local\fivem\fivem.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{377AED27-EE46-46C8-BBD9-1911D98572E0}C:\users\dbube\appdata\local\fivem\fivem.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [TCP Query User{BF8C2A0C-3999-455D-823A-0BB92AC3122F}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [UDP Query User{19BAD181-85CE-469F-8744-F43E35C929F3}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [TCP Query User{3A9DC91B-6B72-467A-B1E8-2073FED822C2}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [UDP Query User{DEDDBAC1-1F20-4174-8D4C-C790ED9DF141}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [TCP Query User{B57B302C-0BE9-485F-B674-A6045D529762}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe (cfx-collective) [File not signed]
FirewallRules: [UDP Query User{EC858B0D-6894-49E3-92B9-BF4E94DB641B}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe (cfx-collective) [File not signed]
FirewallRules: [{F1939776-96A6-40A2-99A1-9C1B0EBCA015}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4D8FC313-1068-49C4-9B77-DEAC8BBBE1E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{3EBBFE15-278A-46B5-80BD-080259AD7A24}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{5CB37CB3-E724-43DE-BB4E-41FB8282CC16}] => (Allow) D:\Hry\steamapps\common\Samsara Room\SamsaraRoom.exe () [File not signed]
FirewallRules: [{D3879349-7871-4399-BAE1-9023B3A71A4A}] => (Allow) D:\Hry\steamapps\common\Samsara Room\SamsaraRoom.exe () [File not signed]
FirewallRules: [TCP Query User{743ABC32-599F-4FE0-9085-515D8035F56B}D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{2782012D-A1A5-4E29-9EFA-16FD5590C86B}D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:111.08 GB) (Free:45.7 GB) (41%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/02/2020 09:03:38 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2928,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 08:19:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1500,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 08:08:50 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5448,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 04:31:36 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6176,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 04:22:43 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8260,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 04:06:06 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11960,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 03:08:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (14492,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 02:21:15 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8784,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
System errors:
=============
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2020-07-01 12:33:09.909
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Tiggre!plock
ID: 2147723626
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_D:\Programy\WinZip PRO\Keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-48MB1C3\dbube
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.319.557.0, AS: 1.319.557.0, NIS: 1.319.557.0
Verze modulu: AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-06-05 09:14:46.169
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {E73E4F42-EB67-4E9D-AE9E-902497E8C195}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
==================== Memory info ===========================
BIOS: American Megatrends Inc. V10.0 08/30/2013
Motherboard: MSI H81M-P33 V2 (MS-7846)
Processor: Intel(R) Core(TM) i5-4430 CPU @ 3.00GHz
Percentage of memory in use: 29%
Total physical RAM: 16326.65 MB
Available physical RAM: 11571.05 MB
Total Virtual: 18758.65 MB
Available Virtual: 11528.42 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.08 GB) (Free:45.7 GB) NTFS
Drive d: (Disk D) (Fixed) (Total:1863.01 GB) (Free:818.53 GB) NTFS
\\?\Volume{b2b6ce9f-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS
\\?\Volume{b2b6ce9f-0000-0000-0000-c0d11b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: B2B6CE9F)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=524 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 4A7FA3EF)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-06-2020
Ran by dbube (administrator) on DESKTOP-48MB1C3 (MSI MS-7846) (02-07-2020 21:07:27)
Running from C:\Users\dbube\Desktop
Loaded Profiles: dbube & Vlasťule
Platform: Windows 10 Home Version 1903 18362.900 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Users\dbube\Desktop\BakkesMod.exe
(Discord Inc. -> Discord Inc.) C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Vlasťule\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <5>
(Power Software Limited -> Power Software Ltd) D:\Programy\PowerISO\PWRISOVM.EXE
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe <2>
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270776 2019-04-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [PWRISOVM.EXE] => D:\Programy\PowerISO\PWRISOVM.EXE [455872 2020-02-09] (Power Software Limited -> Power Software Ltd)
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3375904 2020-06-04] (Valve -> Valve Corporation)
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Run: [BakkesMod] => C:\Users\dbube\Desktop\BakkesMod.exe [11271168 2019-12-28] () [File not signed]
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Run: [Discord] => C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-22] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01A52DD9-7389-43AE-BE4E-642A3F3FA9A4} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0B8CDE97-5080-4824-AE7A-18B65FAE8AF1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2CD6BA01-7FFA-41DA-8C90-15C5379DB823} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2FC012A9-1B02-443E-B13A-1D0E3BFEF9A8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {49C74C5A-0B64-478C-8D05-5F0A6A1CA5BD} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {509955C0-4FF6-4254-8BFC-497E3D14036A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {55A219EA-7FF5-41A9-9861-8C0BDC9DCEB4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {65DB4707-1DDC-4F23-9BA7-C849BA37A24F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6981FF6E-57E6-4196-9A79-717A5EE831F5} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
Task: {85E0DDE1-A426-4229-B154-41D85A63C2E4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {950B1631-2609-4AA1-8BFD-AAEC490930AB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9B1271E6-69F4-493D-9564-83A3E1F85299} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B25C172B-3F7D-4CCB-BBBE-75AA30BEA44E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C748CBC0-8DD3-404A-8BC1-DF8DF3FA76C3} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2019-04-03] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {E7542821-66DE-4D64-811A-7A3A1F9756E0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F0B13B8B-8FD2-43B0-9CA0-C10FEBB1CD83} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{b7f826c6-ea01-4714-a535-4e19bd4e854c}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Internet Explorer:
==================
FireFox:
========
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default [2020-07-02]
CHR DownloadDir: C:\Users\dbube\Desktop
CHR Notifications: Default -> hxxps://138938273597445.webpush.freshchat.com; hxxps://cs.soringpcrepair.com
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Extension: (Prezentace) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-21]
CHR Extension: (Dokumenty) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-21]
CHR Extension: (Disk Google) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-21]
CHR Extension: (YouTube) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-21]
CHR Extension: (Tabulky) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-21]
CHR Extension: (Chrome Media Router) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-27]
CHR Profile: C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-12-27]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-02-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [873272 2020-06-22] (NVIDIA Corporation -> NVIDIA Corporation)
S4 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2020-04-06] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1711232 2020-07-01] (Rockstar Games, Inc. -> Rockstar Games)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9821696 2020-05-09] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-12] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 DM150Drv; C:\WINDOWS\System32\drivers\DM150Drv.sys [24312 2010-07-30] (Pitney Bowes -> Pitney Bowes)
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [47008 2019-04-03] (Intel(R) Smart Connect software -> )
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2b99a29f071e5d25\nvlddmkm.sys [24671120 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 nvoclk64; C:\WINDOWS\System32\drivers\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corporation -> NVIDIA Corp.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-04-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-09-05] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [3361376 2020-05-09] (Riot Games, Inc. -> Riot Games, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [51536 2019-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-01 16:44 - 2020-07-01 16:44 - 000000000 ____D C:\Users\dbube\Desktop\FRST-OlderVersion
2020-07-01 14:42 - 2020-07-01 14:42 - 000001688 _____ C:\WINDOWS\system32\Drivers\etc\hosts.rollback
2020-07-01 14:42 - 2019-05-21 16:14 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.backup
2020-07-01 13:30 - 2020-07-01 13:44 - 000000481 _____ C:\Users\dbube\Desktop\rozpočet.txt
2020-07-01 13:30 - 2020-07-01 13:30 - 000000681 _____ C:\Users\Public\Desktop\The Sims 4.lnk
2020-07-01 13:04 - 2020-07-01 13:04 - 000000785 _____ C:\Users\dbube\Desktop\Detroit Become Human.lnk
2020-07-01 13:04 - 2020-07-01 13:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Detroit Become Human
2020-07-01 12:33 - 2020-07-01 12:33 - 000000000 ____D C:\Users\dbube\AppData\Roaming\WinRAR
2020-07-01 12:33 - 2020-07-01 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2020-07-01 12:33 - 2017-06-07 02:36 - 000138296 _____ (Power Software Ltd) C:\WINDOWS\system32\Drivers\scdemu.sys
2020-07-01 12:32 - 2020-07-01 12:32 - 000000000 ____D C:\Users\dbube\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-07-01 12:32 - 2020-07-01 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-06-30 18:10 - 2020-06-30 18:10 - 000001230 _____ C:\Users\dbube\Desktop\[CzT]WinZip_Pro_v_23_Build_13431_CZ_.torrent
2020-06-30 18:07 - 2020-06-30 18:07 - 000003029 _____ C:\Users\dbube\Desktop\[CzT]PowerISO_v_7_6_CZ_SK_.torrent
2020-06-30 17:52 - 2020-07-01 16:37 - 000000455 _____ C:\Users\dbube\Desktop\plan dovolene.txt
2020-06-30 14:20 - 2020-06-30 14:20 - 000267919 _____ C:\Users\dbube\Desktop\[CzT]Detroit_Become_Human_2020_CZ_.torrent
2020-06-30 14:16 - 2020-06-30 14:16 - 002014682 _____ C:\Users\dbube\Desktop\[CzT]The_Sims_4_Deluxe_Edition_v_1_63_134_1020_1520_All_DLC_2020_CZ_.torrent
2020-06-29 19:42 - 2020-06-29 19:42 - 000068256 _____ C:\Users\dbube\Desktop\[CzT]Neviditelny_The_Invisible_Man_2020_CZ_EN_1080pHD_.torrent
2020-06-29 17:08 - 2020-06-29 17:09 - 000005938 _____ C:\Users\dbube\Desktop\Fixlog.txt
2020-06-29 13:31 - 2020-06-29 13:31 - 000000000 ____D C:\WINDOWS\Panther
2020-06-29 13:28 - 2020-06-29 13:29 - 000000000 ____D C:\AdwCleaner
2020-06-29 13:28 - 2020-06-29 13:28 - 008402608 _____ (Malwarebytes) C:\Users\dbube\Desktop\AdwCleaner.exe
2020-06-29 13:26 - 2020-06-29 13:26 - 000000000 ____D C:\Malwarebytes
2020-06-29 11:49 - 2020-06-29 11:49 - 000000000 ____D C:\rsit
2020-06-29 11:47 - 2020-06-29 11:48 - 000030653 _____ C:\Users\dbube\Desktop\Addition.txt
2020-06-29 11:46 - 2020-07-02 21:08 - 000016273 _____ C:\Users\dbube\Desktop\FRST.txt
2020-06-29 11:46 - 2020-06-29 11:46 - 001222144 _____ C:\Users\dbube\Desktop\RSITx64.exe
2020-06-29 11:45 - 2020-07-02 21:07 - 000000000 ____D C:\FRST
2020-06-29 11:45 - 2020-07-01 16:44 - 002291712 _____ (Farbar) C:\Users\dbube\Desktop\FRST64.exe
2020-06-28 18:08 - 2020-06-28 18:08 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-06-27 23:49 - 2020-06-27 23:49 - 000000000 ____D C:\Users\dbube\AppData\Roaming\com.RustyLake.SamsaraRoom
2020-06-27 23:43 - 2020-06-27 23:43 - 000000000 ____D C:\Users\dbube\Documents\Rusty Lake
2020-06-27 17:12 - 2020-06-27 17:12 - 000001024 _____ C:\Users\dbube\Desktop\Kingdom Come Deliverance.lnk
2020-06-27 15:45 - 2020-06-27 15:45 - 000000223 _____ C:\Users\dbube\Desktop\Samsara Room.url
2020-06-24 22:10 - 2020-06-23 01:13 - 001780936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001780936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001371336 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001371336 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001086664 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 001086664 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000946384 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000946384 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000455392 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000351112 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-06-24 22:10 - 2020-06-23 01:12 - 000674024 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-06-24 22:10 - 2020-06-23 01:12 - 000543120 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 006652824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 005883288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 003902872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 002368920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 002075360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001722096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445148.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001568488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001486736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001482992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445148.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 000817552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 000669416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 000555920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-06-24 22:10 - 2020-06-23 01:08 - 004705760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-06-24 22:10 - 2020-06-22 03:45 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-06-24 16:08 - 2020-06-24 16:08 - 000013574 _____ C:\Users\dbube\Desktop\[CzT]Skryte_zlo_Bad_Samaritan_2018_CZ_.torrent
2020-06-20 18:56 - 2020-06-20 18:56 - 000001065 _____ C:\Users\dbube\Desktop\Rockstar Games Launcher.lnk
2020-06-10 17:28 - 2020-06-27 23:27 - 000000000 ____D C:\Users\dbube\AppData\Roaming\slobs-client
2020-06-10 17:28 - 2020-06-11 17:19 - 000000000 ____D C:\Users\dbube\AppData\Roaming\obs-studio-node-server
2020-06-10 17:28 - 2020-06-10 17:28 - 000001005 _____ C:\Users\Public\Desktop\Streamlabs OBS.lnk
2020-06-10 17:28 - 2020-06-10 17:28 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2020-06-10 17:28 - 2020-06-10 17:28 - 000000000 ____D C:\Users\dbube\AppData\Roaming\slobs-plugins
2020-06-10 17:28 - 2020-06-10 17:28 - 000000000 ____D C:\Users\dbube\AppData\Local\slobs-client-updater
2020-06-10 16:41 - 2020-06-10 17:26 - 000000000 ____D C:\Users\dbube\AppData\Roaming\obs-studio
2020-06-10 16:41 - 2020-06-10 16:41 - 000000000 ____D C:\ProgramData\obs-studio-hook
2020-06-10 16:41 - 2020-06-10 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2020-06-10 08:16 - 2020-06-10 08:16 - 000000000 ____D C:\Users\Vlasťule\Desktop\Davídek a Terezka Davčovi do alba
2020-06-10 07:47 - 2020-06-10 07:47 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 011608064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 009712640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 008015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007911176 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007760384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007604592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007268864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007266080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006292480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006091048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006066808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005909504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005765144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005195432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005004344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004610560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003726848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003515392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003398656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003368104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 003187200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002831872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-06-10 07:47 - 2020-06-10 07:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-06-10 07:47 - 2020-06-10 07:47 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 002656256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002204160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002184504 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001704448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001683968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001654960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001649152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001583104 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001416224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001393952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001261568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001260744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001100288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001099608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdosys.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001055184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001003832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi3.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkObjCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000894024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000892048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi3.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdosys.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000797464 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000783496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000760296 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000716320 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkObjCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000684856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000628408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisdecd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000593424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000575488 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\system32\wvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000571904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2020-06-10 07:47 - 2020-06-10 07:47 - 000564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000548984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-06-10 07:47 - 2020-06-10 07:47 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000508720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000508216 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2020-06-10 07:47 - 2020-06-10 07:47 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisdecd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000478208 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\SysWOW64\wvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassdo.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000451864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\termmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000425056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswmdm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000407864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000405936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\termmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassdo.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000357176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswmdm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpviewerax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000280376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpviewerax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wavemsp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2020-06-10 07:47 - 2020-06-10 07:47 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\psr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wavemsp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2020-06-10 07:47 - 2020-06-10 07:47 - 000204008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmidx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrecst.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaatext.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000165296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000165192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtpUS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000150328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasnap.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmidx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrecst.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000132424 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000129600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaatext.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasnap.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000093448 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000090952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000089344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwanRadioManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2020-06-10 07:47 - 2020-06-10 07:47 - 000083600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasads.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2020-06-10 07:47 - 2020-06-10 07:47 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanRadioManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxGipRadioManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasads.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000041864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBrokerPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000028368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SecurityCenterBrokerPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-06-10 07:42 - 2020-06-10 07:42 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-06-10 07:42 - 2020-06-10 07:42 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-06-05 08:50 - 2020-06-05 08:50 - 000014980 _____ C:\Users\Vlasťule\Desktop\Blbosti.odt
2020-06-05 08:13 - 2020-06-05 09:36 - 000010758 _____ C:\Users\Vlasťule\Desktop\Červen 2020.odt
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-02 21:05 - 2019-12-26 12:30 - 000000000 ____D C:\Program Files\trend micro
2020-07-02 21:03 - 2019-08-19 16:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-02 21:03 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-02 20:59 - 2020-04-22 18:20 - 000000000 ____D C:\Users\dbube\AppData\Roaming\discord
2020-07-02 19:58 - 2019-05-21 15:54 - 000000000 ____D C:\Program Files (x86)\Steam
2020-07-02 19:58 - 2019-05-21 15:43 - 000000000 ____D C:\ProgramData\NVIDIA
2020-07-02 17:11 - 2020-05-15 18:50 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A8E94C42-9C4F-4DEE-9B06-7CDE732D054B}
2020-07-02 16:56 - 2019-05-21 15:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-07-02 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-02 14:03 - 2019-05-25 09:16 - 000000000 ____D C:\Users\Vlasťule\AppData\Local\Packages
2020-07-02 10:37 - 2019-08-19 16:52 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1558997955-55845073-2629518697-1002
2020-07-02 10:37 - 2019-08-19 16:47 - 000002370 _____ C:\Users\Vlasťule\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-07-02 10:37 - 2019-05-25 09:17 - 000000000 ___RD C:\Users\Vlasťule\OneDrive
2020-07-02 10:31 - 2019-05-25 09:16 - 000000000 ___RD C:\Users\Vlasťule\3D Objects
2020-07-02 10:31 - 2019-05-21 15:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-02 10:31 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-01 19:49 - 2019-12-14 23:12 - 000000000 ____D C:\Users\dbube\AppData\Roaming\qBittorrent
2020-07-01 16:49 - 2019-08-19 16:54 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-01 16:49 - 2019-03-19 13:55 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-01 16:49 - 2019-03-19 13:55 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-01 16:49 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-01 16:45 - 2020-05-07 12:22 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2020-07-01 16:43 - 2019-08-19 16:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-01 16:42 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-07-01 14:42 - 2020-02-02 16:10 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-07-01 14:42 - 2019-05-21 18:27 - 000000000 ____D C:\Users\dbube\AppData\Local\CrashDumps
2020-07-01 12:20 - 2019-05-21 15:51 - 000000000 ____D C:\Users\dbube\AppData\Local\PlaceholderTileLogoFolder
2020-07-01 12:20 - 2019-05-21 15:50 - 000000000 ____D C:\Users\dbube\AppData\Local\Packages
2020-06-29 17:12 - 2019-05-21 18:41 - 000000000 ____D C:\Users\dbube\AppData\Local\D3DSCache
2020-06-29 13:33 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-06-28 18:08 - 2019-08-19 16:52 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1558997955-55845073-2629518697-1001
2020-06-28 18:08 - 2019-08-19 16:47 - 000002361 _____ C:\Users\dbube\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-06-28 18:08 - 2019-05-21 15:51 - 000000000 ___RD C:\Users\dbube\OneDrive
2020-06-27 23:42 - 2019-06-24 16:21 - 000000000 ____D C:\Users\dbube\AppData\Roaming\TS3Client
2020-06-27 23:30 - 2019-05-21 16:18 - 000000000 ____D C:\Users\dbube\AppData\Local\FiveM
2020-06-27 17:12 - 2020-02-02 16:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2020-06-26 13:22 - 2019-08-08 16:27 - 000014057 _____ C:\Users\dbube\Desktop\PLATBY.odt
2020-06-23 01:11 - 2020-04-18 14:32 - 000812432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-06-23 01:11 - 2020-04-18 14:32 - 000656784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-06-23 01:08 - 2019-07-12 11:04 - 005383880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-06-22 21:28 - 2019-05-21 15:52 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-22 03:45 - 2019-07-12 11:04 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-06-22 03:45 - 2019-07-12 11:04 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-06-22 03:45 - 2019-07-12 11:04 - 000058532 _____ C:\WINDOWS\system32\nvinfo.pb
2020-06-21 23:59 - 2019-05-21 15:43 - 005490488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 002634728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 001759032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000991032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000195048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000122344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000083256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-06-20 18:57 - 2019-05-21 16:38 - 000000000 ____D C:\Program Files\Rockstar Games
2020-06-20 18:57 - 2019-05-21 16:38 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-06-20 08:22 - 2019-05-21 15:43 - 009198787 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-06-19 14:10 - 2020-04-20 17:04 - 006088416 _____ (Cfx.re) C:\Users\dbube\Desktop\FiveM.exe
2020-06-10 15:19 - 2019-08-19 16:44 - 000458488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-06-10 15:19 - 2019-05-21 15:50 - 000000000 ___RD C:\Users\dbube\3D Objects
2020-06-10 09:23 - 2019-03-19 13:58 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-06-10 09:23 - 2019-03-19 13:58 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Com
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-06-10 07:49 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-06-10 07:47 - 2019-08-19 16:47 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-06-05 23:03 - 2019-03-19 06:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-06-05 23:03 - 2019-03-19 06:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-05 17:36 - 2019-05-21 15:43 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
==================== Files in the root of some directories ========
2020-06-09 15:08 - 2020-06-09 15:08 - 000004973 _____ () C:\Users\dbube\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-06-2020
Ran by dbube (02-07-2020 21:08:30)
Running from C:\Users\dbube\Desktop
Windows 10 Home Version 1903 18362.900 (X64) (2019-08-19 14:53:00)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1558997955-55845073-2629518697-500 - Administrator - Disabled)
dbube (S-1-5-21-1558997955-55845073-2629518697-1001 - Administrator - Enabled) => C:\Users\dbube
DefaultAccount (S-1-5-21-1558997955-55845073-2629518697-503 - Limited - Disabled)
Guest (S-1-5-21-1558997955-55845073-2629518697-501 - Limited - Disabled)
Vlasťule (S-1-5-21-1558997955-55845073-2629518697-1002 - Administrator - Enabled) => C:\Users\Vlasťule
WDAGUtilityAccount (S-1-5-21-1558997955-55845073-2629518697-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Ashampoo Burning Studio 20 (HKLM-x32\...\{91B33C97-155F-C10C-D4D6-CABA03805EE4}_is1) (Version: 20.0.4 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Auto Keys 1.0 (HKLM-x32\...\Auto Keys) (Version: - )
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bus Simulator 18 v.4.18.3.0 (HKLM-x32\...\Bus Simulator 18_is1) (Version: - )
Detroit Become Human (HKLM-x32\...\Detroit Become Human_is1) (Version: - )
Discord (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Euro Truck Simulator 2 Road to the Black Sea (HKLM-x32\...\Euro Truck Simulator 2 Road to the Black Sea_is1) (Version: - )
FiveM (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.1868.1 - Rockstar Games)
Kingdom Come Deliverance v. 1.9.4 (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 6.2.5.2 (HKLM\...\{207F3229-8AA5-4544-BDB7-7995538A5ED5}) (Version: 6.2.5.2 - The Document Foundation)
Microsoft OneDrive (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1558997955-55845073-2629518697-1002\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Movavi Video Editor Plus 2020 (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Movavi Video Editor Plus 2020) (Version: 20.3.0 - Movavi)
Native Instruments Kontakt (HKLM-x32\...\Native Instruments Kontakt) (Version: 6.2.2.51 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.12.1.129 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.3.2.30 - Native Instruments)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.34 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 451.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.48 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
Ovládací panel NVIDIA 451.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 451.48 - NVIDIA Corporation) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.6 - Power Software Ltd)
qBittorrent 4.2.3 (HKLM-x32\...\qBittorrent) (Version: 4.2.3 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8668 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.25.260 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.22.3 - General Workings, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.3.0 - TeamSpeak Systems GmbH)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
VALORANT (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.10.5.0_x86__kgqvnymyfvs32 [2020-06-18] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.39.4.0_x86__kgqvnymyfvs32 [2020-06-26] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1800.1.0_x86__kgqvnymyfvs32 [2020-06-30] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-21] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
RAR Opener -> C:\Program Files\WindowsApps\DeviceDoctor.RAROpener_1.3.48.0_x64__mkdtfchztkfbm [2020-07-01] (Tiny Opener)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\Programy\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\Programy\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-06-21] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\Programy\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\dbube\Documents\RL - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\dbube\Documents\ÚP - Denis Bubelini.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-05-21 16:16 - 2020-07-01 14:42 - 000001760 _____ C:\WINDOWS\system32\drivers\etc\hosts
109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 fitgirl-repack.com # Fake FitGirl site
109.94.209.70 fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repack.net # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dbube\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\galactic_earth_4k_8k-7680x4320.jpg
HKU\S-1-5-21-1558997955-55845073-2629518697-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Vlasťule\Desktop\Vlasťule VŠE KOMPLET!!!!\Návštěva Ségry 2.8. 2019\20190804_075016.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{149C46C4-381D-453B-9296-52D5A5E0BC80}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1C6C1601-D79E-4C74-86F3-00DC335F1EEF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{15637F6B-4B83-40C3-960C-E0C198322A71}C:\users\dbube\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dbube\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{9C6B20A8-8F7A-4212-8E69-00DA9781089B}C:\users\dbube\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dbube\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{0B000BC4-8ABF-47B0-8F15-59D63814864C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{15740F37-7BB5-4A1C-98C0-D896A5772467}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{362F35D2-870E-41C9-B4B4-F58E51FDB4F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DA22F86F-F0AF-4CC9-9F4B-FF99018B0984}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E7413426-3073-4EA1-9B95-7F493B776FAE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A58E956B-F463-4685-A3C0-752812D3B99E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9F1AC2C4-18A9-41DB-AD91-454FF97ADD8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{486B10C6-CD25-4903-8B18-E0A19DCEE927}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [TCP Query User{5068ADAE-003C-41F4-A548-8937CD1754D8}C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [UDP Query User{CB4BC6EE-D2AA-4DAB-A8AA-78444414B054}C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [TCP Query User{0064D7AA-B519-491D-81D0-0B9359435AE8}D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe] => (Allow) D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe (stillalive studios GmbH) [File not signed]
FirewallRules: [UDP Query User{AA93E2D6-2040-40AC-B752-A25AE7A6648A}D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe] => (Allow) D:\hry\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe (stillalive studios GmbH) [File not signed]
FirewallRules: [TCP Query User{9B3ECFAE-B315-4C2A-B105-74F58F912EC1}D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{C84FAEBA-99FE-4154-81C9-0DF8578167A2}D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{B5B82461-1D3E-44ED-91E2-EA78BB305CAB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{1FF47BF8-CA24-4450-BB9E-3BEDD10FFFDA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{656A6944-FA05-4E81-8E9B-3B7F867A1688}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{F0EF74A3-704E-490F-B237-B5CA35C8467A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{5D6715E2-D232-4745-93A6-3B97D4DE8341}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{906657C5-1A37-4A55-8923-60C4DDDF73D6}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{41A9AB65-40EF-4A39-8E11-C07E3389FA08}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{62B9B81B-4850-47E7-9B27-E8C5EC217FFD}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{0C1D645E-5476-4059-B27E-B79C72BFFF6F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E32CB88F-98CE-4102-AE39-8DAAFE10731A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{536E4F79-F701-438E-B31C-68556AE5D713}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{10B5C778-10A7-4EEA-A467-1C83B18ACE98}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{5CBDE432-6C17-4828-B06D-A6E3E18500EA}D:\hry\gta v\grand theft auto v\gta5.exe] => (Allow) D:\hry\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{6F1027CE-8DA9-42B0-9DBF-708982713D48}D:\hry\gta v\grand theft auto v\gta5.exe] => (Allow) D:\hry\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{A660FC84-4FCA-4266-A26E-8C910AA98F39}C:\users\dbube\appdata\local\fivem\fivem.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{377AED27-EE46-46C8-BBD9-1911D98572E0}C:\users\dbube\appdata\local\fivem\fivem.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [TCP Query User{BF8C2A0C-3999-455D-823A-0BB92AC3122F}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [UDP Query User{19BAD181-85CE-469F-8744-F43E35C929F3}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [TCP Query User{3A9DC91B-6B72-467A-B1E8-2073FED822C2}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [UDP Query User{DEDDBAC1-1F20-4174-8D4C-C790ED9DF141}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [TCP Query User{B57B302C-0BE9-485F-B674-A6045D529762}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe (cfx-collective) [File not signed]
FirewallRules: [UDP Query User{EC858B0D-6894-49E3-92B9-BF4E94DB641B}C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe] => (Allow) C:\users\dbube\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe (cfx-collective) [File not signed]
FirewallRules: [{F1939776-96A6-40A2-99A1-9C1B0EBCA015}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4D8FC313-1068-49C4-9B77-DEAC8BBBE1E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{3EBBFE15-278A-46B5-80BD-080259AD7A24}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{5CB37CB3-E724-43DE-BB4E-41FB8282CC16}] => (Allow) D:\Hry\steamapps\common\Samsara Room\SamsaraRoom.exe () [File not signed]
FirewallRules: [{D3879349-7871-4399-BAE1-9023B3A71A4A}] => (Allow) D:\Hry\steamapps\common\Samsara Room\SamsaraRoom.exe () [File not signed]
FirewallRules: [TCP Query User{743ABC32-599F-4FE0-9085-515D8035F56B}D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{2782012D-A1A5-4E29-9EFA-16FD5590C86B}D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:111.08 GB) (Free:45.7 GB) (41%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/02/2020 09:03:38 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2928,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 08:19:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1500,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 08:08:50 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5448,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 04:31:36 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6176,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 04:22:43 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8260,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 04:06:06 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11960,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 03:08:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (14492,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (07/02/2020 02:21:15 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8784,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
System errors:
=============
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (07/02/2020 10:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2020-07-01 12:33:09.909
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Tiggre!plock
ID: 2147723626
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_D:\Programy\WinZip PRO\Keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-48MB1C3\dbube
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.319.557.0, AS: 1.319.557.0, NIS: 1.319.557.0
Verze modulu: AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-06-05 09:14:46.169
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {E73E4F42-EB67-4E9D-AE9E-902497E8C195}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
==================== Memory info ===========================
BIOS: American Megatrends Inc. V10.0 08/30/2013
Motherboard: MSI H81M-P33 V2 (MS-7846)
Processor: Intel(R) Core(TM) i5-4430 CPU @ 3.00GHz
Percentage of memory in use: 29%
Total physical RAM: 16326.65 MB
Available physical RAM: 11571.05 MB
Total Virtual: 18758.65 MB
Available Virtual: 11528.42 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.08 GB) (Free:45.7 GB) NTFS
Drive d: (Disk D) (Fixed) (Total:1863.01 GB) (Free:818.53 GB) NTFS
\\?\Volume{b2b6ce9f-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS
\\?\Volume{b2b6ce9f-0000-0000-0000-c0d11b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: B2B6CE9F)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=524 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 4A7FA3EF)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-06-2020
Ran by dbube (administrator) on DESKTOP-48MB1C3 (MSI MS-7846) (02-07-2020 21:07:27)
Running from C:\Users\dbube\Desktop
Loaded Profiles: dbube & Vlasťule
Platform: Windows 10 Home Version 1903 18362.900 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Users\dbube\Desktop\BakkesMod.exe
(Discord Inc. -> Discord Inc.) C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Vlasťule\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <5>
(Power Software Limited -> Power Software Ltd) D:\Programy\PowerISO\PWRISOVM.EXE
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe <2>
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270776 2019-04-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [PWRISOVM.EXE] => D:\Programy\PowerISO\PWRISOVM.EXE [455872 2020-02-09] (Power Software Limited -> Power Software Ltd)
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3375904 2020-06-04] (Valve -> Valve Corporation)
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Run: [BakkesMod] => C:\Users\dbube\Desktop\BakkesMod.exe [11271168 2019-12-28] () [File not signed]
HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Run: [Discord] => C:\Users\dbube\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-22] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01A52DD9-7389-43AE-BE4E-642A3F3FA9A4} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0B8CDE97-5080-4824-AE7A-18B65FAE8AF1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2CD6BA01-7FFA-41DA-8C90-15C5379DB823} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2FC012A9-1B02-443E-B13A-1D0E3BFEF9A8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {49C74C5A-0B64-478C-8D05-5F0A6A1CA5BD} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {509955C0-4FF6-4254-8BFC-497E3D14036A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {55A219EA-7FF5-41A9-9861-8C0BDC9DCEB4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {65DB4707-1DDC-4F23-9BA7-C849BA37A24F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6981FF6E-57E6-4196-9A79-717A5EE831F5} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
Task: {85E0DDE1-A426-4229-B154-41D85A63C2E4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {950B1631-2609-4AA1-8BFD-AAEC490930AB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9B1271E6-69F4-493D-9564-83A3E1F85299} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B25C172B-3F7D-4CCB-BBBE-75AA30BEA44E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C748CBC0-8DD3-404A-8BC1-DF8DF3FA76C3} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2019-04-03] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {E7542821-66DE-4D64-811A-7A3A1F9756E0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F0B13B8B-8FD2-43B0-9CA0-C10FEBB1CD83} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{b7f826c6-ea01-4714-a535-4e19bd4e854c}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Internet Explorer:
==================
FireFox:
========
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default [2020-07-02]
CHR DownloadDir: C:\Users\dbube\Desktop
CHR Notifications: Default -> hxxps://138938273597445.webpush.freshchat.com; hxxps://cs.soringpcrepair.com
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Extension: (Prezentace) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-21]
CHR Extension: (Dokumenty) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-21]
CHR Extension: (Disk Google) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-21]
CHR Extension: (YouTube) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-21]
CHR Extension: (Tabulky) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-21]
CHR Extension: (Chrome Media Router) - C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-27]
CHR Profile: C:\Users\dbube\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-12-27]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-02-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [873272 2020-06-22] (NVIDIA Corporation -> NVIDIA Corporation)
S4 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2020-04-06] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1711232 2020-07-01] (Rockstar Games, Inc. -> Rockstar Games)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9821696 2020-05-09] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-12] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 DM150Drv; C:\WINDOWS\System32\drivers\DM150Drv.sys [24312 2010-07-30] (Pitney Bowes -> Pitney Bowes)
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [47008 2019-04-03] (Intel(R) Smart Connect software -> )
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2b99a29f071e5d25\nvlddmkm.sys [24671120 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 nvoclk64; C:\WINDOWS\System32\drivers\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corporation -> NVIDIA Corp.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-04-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-09-05] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [3361376 2020-05-09] (Riot Games, Inc. -> Riot Games, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [51536 2019-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-01 16:44 - 2020-07-01 16:44 - 000000000 ____D C:\Users\dbube\Desktop\FRST-OlderVersion
2020-07-01 14:42 - 2020-07-01 14:42 - 000001688 _____ C:\WINDOWS\system32\Drivers\etc\hosts.rollback
2020-07-01 14:42 - 2019-05-21 16:14 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.backup
2020-07-01 13:30 - 2020-07-01 13:44 - 000000481 _____ C:\Users\dbube\Desktop\rozpočet.txt
2020-07-01 13:30 - 2020-07-01 13:30 - 000000681 _____ C:\Users\Public\Desktop\The Sims 4.lnk
2020-07-01 13:04 - 2020-07-01 13:04 - 000000785 _____ C:\Users\dbube\Desktop\Detroit Become Human.lnk
2020-07-01 13:04 - 2020-07-01 13:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Detroit Become Human
2020-07-01 12:33 - 2020-07-01 12:33 - 000000000 ____D C:\Users\dbube\AppData\Roaming\WinRAR
2020-07-01 12:33 - 2020-07-01 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2020-07-01 12:33 - 2017-06-07 02:36 - 000138296 _____ (Power Software Ltd) C:\WINDOWS\system32\Drivers\scdemu.sys
2020-07-01 12:32 - 2020-07-01 12:32 - 000000000 ____D C:\Users\dbube\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-07-01 12:32 - 2020-07-01 12:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-06-30 18:10 - 2020-06-30 18:10 - 000001230 _____ C:\Users\dbube\Desktop\[CzT]WinZip_Pro_v_23_Build_13431_CZ_.torrent
2020-06-30 18:07 - 2020-06-30 18:07 - 000003029 _____ C:\Users\dbube\Desktop\[CzT]PowerISO_v_7_6_CZ_SK_.torrent
2020-06-30 17:52 - 2020-07-01 16:37 - 000000455 _____ C:\Users\dbube\Desktop\plan dovolene.txt
2020-06-30 14:20 - 2020-06-30 14:20 - 000267919 _____ C:\Users\dbube\Desktop\[CzT]Detroit_Become_Human_2020_CZ_.torrent
2020-06-30 14:16 - 2020-06-30 14:16 - 002014682 _____ C:\Users\dbube\Desktop\[CzT]The_Sims_4_Deluxe_Edition_v_1_63_134_1020_1520_All_DLC_2020_CZ_.torrent
2020-06-29 19:42 - 2020-06-29 19:42 - 000068256 _____ C:\Users\dbube\Desktop\[CzT]Neviditelny_The_Invisible_Man_2020_CZ_EN_1080pHD_.torrent
2020-06-29 17:08 - 2020-06-29 17:09 - 000005938 _____ C:\Users\dbube\Desktop\Fixlog.txt
2020-06-29 13:31 - 2020-06-29 13:31 - 000000000 ____D C:\WINDOWS\Panther
2020-06-29 13:28 - 2020-06-29 13:29 - 000000000 ____D C:\AdwCleaner
2020-06-29 13:28 - 2020-06-29 13:28 - 008402608 _____ (Malwarebytes) C:\Users\dbube\Desktop\AdwCleaner.exe
2020-06-29 13:26 - 2020-06-29 13:26 - 000000000 ____D C:\Malwarebytes
2020-06-29 11:49 - 2020-06-29 11:49 - 000000000 ____D C:\rsit
2020-06-29 11:47 - 2020-06-29 11:48 - 000030653 _____ C:\Users\dbube\Desktop\Addition.txt
2020-06-29 11:46 - 2020-07-02 21:08 - 000016273 _____ C:\Users\dbube\Desktop\FRST.txt
2020-06-29 11:46 - 2020-06-29 11:46 - 001222144 _____ C:\Users\dbube\Desktop\RSITx64.exe
2020-06-29 11:45 - 2020-07-02 21:07 - 000000000 ____D C:\FRST
2020-06-29 11:45 - 2020-07-01 16:44 - 002291712 _____ (Farbar) C:\Users\dbube\Desktop\FRST64.exe
2020-06-28 18:08 - 2020-06-28 18:08 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-06-27 23:49 - 2020-06-27 23:49 - 000000000 ____D C:\Users\dbube\AppData\Roaming\com.RustyLake.SamsaraRoom
2020-06-27 23:43 - 2020-06-27 23:43 - 000000000 ____D C:\Users\dbube\Documents\Rusty Lake
2020-06-27 17:12 - 2020-06-27 17:12 - 000001024 _____ C:\Users\dbube\Desktop\Kingdom Come Deliverance.lnk
2020-06-27 15:45 - 2020-06-27 15:45 - 000000223 _____ C:\Users\dbube\Desktop\Samsara Room.url
2020-06-24 22:10 - 2020-06-23 01:13 - 001780936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001780936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001371336 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001371336 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-06-24 22:10 - 2020-06-23 01:13 - 001086664 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 001086664 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000946384 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000946384 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000455392 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-06-24 22:10 - 2020-06-23 01:13 - 000351112 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-06-24 22:10 - 2020-06-23 01:12 - 000674024 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-06-24 22:10 - 2020-06-23 01:12 - 000543120 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 006652824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 005883288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 003902872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 002368920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 002075360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001722096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445148.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001568488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001486736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001482992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445148.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 000817552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 000669416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-06-24 22:10 - 2020-06-23 01:11 - 000555920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-06-24 22:10 - 2020-06-23 01:08 - 004705760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-06-24 22:10 - 2020-06-22 03:45 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-06-24 16:08 - 2020-06-24 16:08 - 000013574 _____ C:\Users\dbube\Desktop\[CzT]Skryte_zlo_Bad_Samaritan_2018_CZ_.torrent
2020-06-20 18:56 - 2020-06-20 18:56 - 000001065 _____ C:\Users\dbube\Desktop\Rockstar Games Launcher.lnk
2020-06-10 17:28 - 2020-06-27 23:27 - 000000000 ____D C:\Users\dbube\AppData\Roaming\slobs-client
2020-06-10 17:28 - 2020-06-11 17:19 - 000000000 ____D C:\Users\dbube\AppData\Roaming\obs-studio-node-server
2020-06-10 17:28 - 2020-06-10 17:28 - 000001005 _____ C:\Users\Public\Desktop\Streamlabs OBS.lnk
2020-06-10 17:28 - 2020-06-10 17:28 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2020-06-10 17:28 - 2020-06-10 17:28 - 000000000 ____D C:\Users\dbube\AppData\Roaming\slobs-plugins
2020-06-10 17:28 - 2020-06-10 17:28 - 000000000 ____D C:\Users\dbube\AppData\Local\slobs-client-updater
2020-06-10 16:41 - 2020-06-10 17:26 - 000000000 ____D C:\Users\dbube\AppData\Roaming\obs-studio
2020-06-10 16:41 - 2020-06-10 16:41 - 000000000 ____D C:\ProgramData\obs-studio-hook
2020-06-10 16:41 - 2020-06-10 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2020-06-10 08:16 - 2020-06-10 08:16 - 000000000 ____D C:\Users\Vlasťule\Desktop\Davídek a Terezka Davčovi do alba
2020-06-10 07:47 - 2020-06-10 07:47 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 018029056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 011608064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 009712640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 008015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007911176 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007760384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007604592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007268864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007266080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006292480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006091048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 006066808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005909504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005765144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005195432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 005004344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004610560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003726848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003515392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003398656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003368104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 003187200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002831872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002798592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-06-10 07:47 - 2020-06-10 07:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-06-10 07:47 - 2020-06-10 07:47 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 002656256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002204160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 002184504 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001704448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001683968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001654960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001649152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001583104 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001416224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001393952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001261568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001260744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001158144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001151824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001100288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001099608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdosys.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001055184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 001003832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi3.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkObjCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000894024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000892048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi3.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdosys.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000797464 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000783496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000760296 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000716320 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkObjCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000684856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000628408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisdecd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000593424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000575488 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\system32\wvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000571904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2020-06-10 07:47 - 2020-06-10 07:47 - 000564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000548984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-06-10 07:47 - 2020-06-10 07:47 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000508720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000508216 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2020-06-10 07:47 - 2020-06-10 07:47 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisdecd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000478208 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\SysWOW64\wvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassdo.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000451864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\termmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000425056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswmdm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000407864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000405936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\termmgr.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassdo.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000357176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswmdm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpviewerax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000280376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpviewerax.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wavemsp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2020-06-10 07:47 - 2020-06-10 07:47 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\psr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wavemsp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2020-06-10 07:47 - 2020-06-10 07:47 - 000204008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmidx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psr.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrecst.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-06-10 07:47 - 2020-06-10 07:47 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaatext.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000165296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000165192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtpUS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000150328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasnap.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmidx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrecst.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000132424 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000129600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaatext.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasnap.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000093448 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000090952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000089344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwanRadioManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2020-06-10 07:47 - 2020-06-10 07:47 - 000083600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasads.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2020-06-10 07:47 - 2020-06-10 07:47 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanRadioManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxGipRadioManager.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasads.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000041864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBrokerPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000028368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SecurityCenterBrokerPS.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-06-10 07:47 - 2020-06-10 07:47 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-06-10 07:47 - 2020-06-10 07:47 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-06-10 07:42 - 2020-06-10 07:42 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-06-10 07:42 - 2020-06-10 07:42 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-06-05 08:50 - 2020-06-05 08:50 - 000014980 _____ C:\Users\Vlasťule\Desktop\Blbosti.odt
2020-06-05 08:13 - 2020-06-05 09:36 - 000010758 _____ C:\Users\Vlasťule\Desktop\Červen 2020.odt
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-02 21:05 - 2019-12-26 12:30 - 000000000 ____D C:\Program Files\trend micro
2020-07-02 21:03 - 2019-08-19 16:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-02 21:03 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-02 20:59 - 2020-04-22 18:20 - 000000000 ____D C:\Users\dbube\AppData\Roaming\discord
2020-07-02 19:58 - 2019-05-21 15:54 - 000000000 ____D C:\Program Files (x86)\Steam
2020-07-02 19:58 - 2019-05-21 15:43 - 000000000 ____D C:\ProgramData\NVIDIA
2020-07-02 17:11 - 2020-05-15 18:50 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A8E94C42-9C4F-4DEE-9B06-7CDE732D054B}
2020-07-02 16:56 - 2019-05-21 15:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-07-02 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-02 14:03 - 2019-05-25 09:16 - 000000000 ____D C:\Users\Vlasťule\AppData\Local\Packages
2020-07-02 10:37 - 2019-08-19 16:52 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1558997955-55845073-2629518697-1002
2020-07-02 10:37 - 2019-08-19 16:47 - 000002370 _____ C:\Users\Vlasťule\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-07-02 10:37 - 2019-05-25 09:17 - 000000000 ___RD C:\Users\Vlasťule\OneDrive
2020-07-02 10:31 - 2019-05-25 09:16 - 000000000 ___RD C:\Users\Vlasťule\3D Objects
2020-07-02 10:31 - 2019-05-21 15:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-02 10:31 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-01 19:49 - 2019-12-14 23:12 - 000000000 ____D C:\Users\dbube\AppData\Roaming\qBittorrent
2020-07-01 16:49 - 2019-08-19 16:54 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-01 16:49 - 2019-03-19 13:55 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-01 16:49 - 2019-03-19 13:55 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-01 16:49 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-01 16:45 - 2020-05-07 12:22 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2020-07-01 16:43 - 2019-08-19 16:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-01 16:42 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-07-01 14:42 - 2020-02-02 16:10 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-07-01 14:42 - 2019-05-21 18:27 - 000000000 ____D C:\Users\dbube\AppData\Local\CrashDumps
2020-07-01 12:20 - 2019-05-21 15:51 - 000000000 ____D C:\Users\dbube\AppData\Local\PlaceholderTileLogoFolder
2020-07-01 12:20 - 2019-05-21 15:50 - 000000000 ____D C:\Users\dbube\AppData\Local\Packages
2020-06-29 17:12 - 2019-05-21 18:41 - 000000000 ____D C:\Users\dbube\AppData\Local\D3DSCache
2020-06-29 13:33 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-06-28 18:08 - 2019-08-19 16:52 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1558997955-55845073-2629518697-1001
2020-06-28 18:08 - 2019-08-19 16:47 - 000002361 _____ C:\Users\dbube\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-06-28 18:08 - 2019-05-21 15:51 - 000000000 ___RD C:\Users\dbube\OneDrive
2020-06-27 23:42 - 2019-06-24 16:21 - 000000000 ____D C:\Users\dbube\AppData\Roaming\TS3Client
2020-06-27 23:30 - 2019-05-21 16:18 - 000000000 ____D C:\Users\dbube\AppData\Local\FiveM
2020-06-27 17:12 - 2020-02-02 16:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2020-06-26 13:22 - 2019-08-08 16:27 - 000014057 _____ C:\Users\dbube\Desktop\PLATBY.odt
2020-06-23 01:11 - 2020-04-18 14:32 - 000812432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-06-23 01:11 - 2020-04-18 14:32 - 000656784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-06-23 01:08 - 2019-07-12 11:04 - 005383880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-06-22 21:28 - 2019-05-21 15:52 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-22 03:45 - 2019-07-12 11:04 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-06-22 03:45 - 2019-07-12 11:04 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-06-22 03:45 - 2019-07-12 11:04 - 000058532 _____ C:\WINDOWS\system32\nvinfo.pb
2020-06-21 23:59 - 2019-05-21 15:43 - 005490488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 002634728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 001759032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000991032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000195048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000122344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-06-21 23:59 - 2019-05-21 15:43 - 000083256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-06-20 18:57 - 2019-05-21 16:38 - 000000000 ____D C:\Program Files\Rockstar Games
2020-06-20 18:57 - 2019-05-21 16:38 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-06-20 08:22 - 2019-05-21 15:43 - 009198787 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-06-19 14:10 - 2020-04-20 17:04 - 006088416 _____ (Cfx.re) C:\Users\dbube\Desktop\FiveM.exe
2020-06-10 15:19 - 2019-08-19 16:44 - 000458488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-06-10 15:19 - 2019-05-21 15:50 - 000000000 ___RD C:\Users\dbube\3D Objects
2020-06-10 09:23 - 2019-03-19 13:58 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-06-10 09:23 - 2019-03-19 13:58 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Com
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-06-10 09:23 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-06-10 07:49 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-06-10 07:47 - 2019-08-19 16:47 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-06-05 23:03 - 2019-03-19 06:56 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-06-05 23:03 - 2019-03-19 06:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-05 17:36 - 2019-05-21 15:43 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
==================== Files in the root of some directories ========
2020-06-09 15:08 - 2020-06-09 15:08 - 000004973 _____ () C:\Users\dbube\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Re: Prosím o kontrolu logu
Ahoj 
Zrejme ide o povolene notifikacie v Chrome z reklamnych webovych stranok.
Otvor poznamkovy blok (Win+R -> notepad -> enter)
Zrejme ide o povolene notifikacie v Chrome z reklamnych webovych stranok. Otvor poznamkovy blok (Win+R -> notepad -> enter)
- Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:
Kód: Vybrat vše
Start CloseProcesses: SystemRestore: On CreateRestorePoint: PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum File: C:\WINDOWS\System32\drivers\BthA2dp.sys File: C:\Users\dbube\Desktop\BakkesMod.exe File: C:\WINDOWS\system32\Drivers\scdemu.sys File: C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll File: C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe Task: {6981FF6E-57E6-4196-9A79-717A5EE831F5} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe CHR Notifications: Default -> hxxps://138938273597445.webpush.freshchat.com; hxxps://cs.soringpcrepair.com 2020-07-01 16:44 - 2020-07-01 16:44 - 000000000 ____D C:\Users\dbube\Desktop\FRST-OlderVersion EmptyTemp: End - Uloz na plochu s nazvom fixlist.txt
- Spusti znovu FRST a klikni na Fix
- Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
- Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: Prosím o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 30-06-2020
Ran by dbube (03-07-2020 11:52:46) Run:2
Running from C:\Users\dbube\Desktop
Loaded Profiles: dbube
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
SystemRestore: On
CreateRestorePoint:
PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\WINDOWS\System32\drivers\BthA2dp.sys
File: C:\Users\dbube\Desktop\BakkesMod.exe
File: C:\WINDOWS\system32\Drivers\scdemu.sys
File: C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll
File: C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
Task: {6981FF6E-57E6-4196-9A79-717A5EE831F5} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
CHR Notifications: Default -> hxxps://138938273597445.webpush.freshchat.com; hxxps://cs.soringpcrepair.com
2020-07-01 16:44 - 2020-07-01 16:44 - 000000000 ____D C:\Users\dbube\Desktop\FRST-OlderVersion
EmptyTemp:
End
*****************
Processes closed successfully.
SystemRestore: On => completed
Restore point was successfully created.
========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========
Count : 29
Average :
Sum : 34073515
Maximum :
Minimum :
Property : Length
========= End of Powershell: =========
========================= File: C:\WINDOWS\System32\drivers\BthA2dp.sys ========================
C:\WINDOWS\System32\drivers\BthA2dp.sys
File not signed
MD5: CCA2505C9EB10CDABDC9FEE10D812F02
Creation and modification date: 2019-09-12 15:22 - 2019-09-12 15:22
Size: 000231936
Attributes: ----A
Company Name: Microsoft Corporation
Internal Name: btha2dp.sys
Original Name: btha2dp.sys
Product: Microsoft® Windows® Operating System
Description: Bluetooth A2DP Driver
File Version: 10.0.18362.356 (WinBuild.160101.0800)
Product Version: 10.0.18362.356
Copyright: © Microsoft Corporation. All rights reserved.
VirusTotal: https://www.virustotal.com/gui/file/8b0 ... 1593707122
====== End of File: ======
========================= File: C:\Users\dbube\Desktop\BakkesMod.exe ========================
C:\Users\dbube\Desktop\BakkesMod.exe
File not signed
MD5: 6BC489C7A7D704878236B29635D968EC
Creation and modification date: 2019-04-02 01:44 - 2019-12-28 12:07
Size: 011271168
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: https://www.virustotal.com/gui/file/674 ... 1572799619
====== End of File: ======
========================= File: C:\WINDOWS\system32\Drivers\scdemu.sys ========================
C:\WINDOWS\system32\Drivers\scdemu.sys
File is digitally signed
MD5: 92EAE8DEC1F992DB12AA23D9D55F264A
Creation and modification date: 2020-07-01 12:33 - 2017-06-07 02:36
Size: 000138296
Attributes: ----A
Company Name: Power Software Limited -> Power Software Ltd
Internal Name: SCDEMU
Original Name: scdemu.sys
Product: scdemu
Description: PowerISO Virtual Drive
File Version: 6, 9, 0, 0
Product Version: 6, 9, 0, 0
Copyright: Copyright (C) 2004-2017
VirusTotal: https://www.virustotal.com/gui/file/d01 ... 1593693717
====== End of File: ======
========================= File: C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll ========================
C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll
File not signed
MD5: 3994A79AA701C7FAC324769A76D48760
Creation and modification date: 2013-09-16 13:24 - 2013-09-16 13:24
Size: 000733184
Attributes: ----A
Company Name: ESN Social Software AB
Internal Name: npesnlaunch
Original Name: npesnlaunch.dll
Product: ESN Launch Mozilla Plugin
Description: 2.3.0
File Version: 2.3.0
Product Version: 2,3,0
Copyright: Copyright © ESN Social Software AB 2008-2012
VirusTotal: https://www.virustotal.com/gui/file/df1 ... 1472550879
====== End of File: ======
========================= File: C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe ========================
"C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe" => not found
====== End of File: ======
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{6981FF6E-57E6-4196-9A79-717A5EE831F5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6981FF6E-57E6-4196-9A79-717A5EE831F5}" => removed successfully
C:\WINDOWS\System32\Tasks\SmartShare => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartShare" => removed successfully
"Chrome Notifications" => removed successfully
C:\Users\dbube\Desktop\FRST-OlderVersion => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 26652217 B
Java, Flash, Steam htmlcache => 101278298 B
Windows/system/drivers => 86042 B
Edge => 0 B
Chrome => 367644905 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 10288 B
dbube => 13280123 B
Vlasťule => 49195209 B
RecycleBin => 3441033 B
EmptyTemp: => 545.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 11:53:25 ====
Ran by dbube (03-07-2020 11:52:46) Run:2
Running from C:\Users\dbube\Desktop
Loaded Profiles: dbube
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
SystemRestore: On
CreateRestorePoint:
PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\WINDOWS\System32\drivers\BthA2dp.sys
File: C:\Users\dbube\Desktop\BakkesMod.exe
File: C:\WINDOWS\system32\Drivers\scdemu.sys
File: C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll
File: C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
Task: {6981FF6E-57E6-4196-9A79-717A5EE831F5} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
CHR Notifications: Default -> hxxps://138938273597445.webpush.freshchat.com; hxxps://cs.soringpcrepair.com
2020-07-01 16:44 - 2020-07-01 16:44 - 000000000 ____D C:\Users\dbube\Desktop\FRST-OlderVersion
EmptyTemp:
End
*****************
Processes closed successfully.
SystemRestore: On => completed
Restore point was successfully created.
========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========
Count : 29
Average :
Sum : 34073515
Maximum :
Minimum :
Property : Length
========= End of Powershell: =========
========================= File: C:\WINDOWS\System32\drivers\BthA2dp.sys ========================
C:\WINDOWS\System32\drivers\BthA2dp.sys
File not signed
MD5: CCA2505C9EB10CDABDC9FEE10D812F02
Creation and modification date: 2019-09-12 15:22 - 2019-09-12 15:22
Size: 000231936
Attributes: ----A
Company Name: Microsoft Corporation
Internal Name: btha2dp.sys
Original Name: btha2dp.sys
Product: Microsoft® Windows® Operating System
Description: Bluetooth A2DP Driver
File Version: 10.0.18362.356 (WinBuild.160101.0800)
Product Version: 10.0.18362.356
Copyright: © Microsoft Corporation. All rights reserved.
VirusTotal: https://www.virustotal.com/gui/file/8b0 ... 1593707122
====== End of File: ======
========================= File: C:\Users\dbube\Desktop\BakkesMod.exe ========================
C:\Users\dbube\Desktop\BakkesMod.exe
File not signed
MD5: 6BC489C7A7D704878236B29635D968EC
Creation and modification date: 2019-04-02 01:44 - 2019-12-28 12:07
Size: 011271168
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: https://www.virustotal.com/gui/file/674 ... 1572799619
====== End of File: ======
========================= File: C:\WINDOWS\system32\Drivers\scdemu.sys ========================
C:\WINDOWS\system32\Drivers\scdemu.sys
File is digitally signed
MD5: 92EAE8DEC1F992DB12AA23D9D55F264A
Creation and modification date: 2020-07-01 12:33 - 2017-06-07 02:36
Size: 000138296
Attributes: ----A
Company Name: Power Software Limited -> Power Software Ltd
Internal Name: SCDEMU
Original Name: scdemu.sys
Product: scdemu
Description: PowerISO Virtual Drive
File Version: 6, 9, 0, 0
Product Version: 6, 9, 0, 0
Copyright: Copyright (C) 2004-2017
VirusTotal: https://www.virustotal.com/gui/file/d01 ... 1593693717
====== End of File: ======
========================= File: C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll ========================
C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll
File not signed
MD5: 3994A79AA701C7FAC324769A76D48760
Creation and modification date: 2013-09-16 13:24 - 2013-09-16 13:24
Size: 000733184
Attributes: ----A
Company Name: ESN Social Software AB
Internal Name: npesnlaunch
Original Name: npesnlaunch.dll
Product: ESN Launch Mozilla Plugin
Description: 2.3.0
File Version: 2.3.0
Product Version: 2,3,0
Copyright: Copyright © ESN Social Software AB 2008-2012
VirusTotal: https://www.virustotal.com/gui/file/df1 ... 1472550879
====== End of File: ======
========================= File: C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe ========================
"C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe" => not found
====== End of File: ======
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{6981FF6E-57E6-4196-9A79-717A5EE831F5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6981FF6E-57E6-4196-9A79-717A5EE831F5}" => removed successfully
C:\WINDOWS\System32\Tasks\SmartShare => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartShare" => removed successfully
"Chrome Notifications" => removed successfully
C:\Users\dbube\Desktop\FRST-OlderVersion => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 26652217 B
Java, Flash, Steam htmlcache => 101278298 B
Windows/system/drivers => 86042 B
Edge => 0 B
Chrome => 367644905 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 10288 B
dbube => 13280123 B
Vlasťule => 49195209 B
RecycleBin => 3441033 B
EmptyTemp: => 545.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 11:53:25 ====
Re: Prosím o kontrolu logu
OK, nastala nejaka zmena?
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: Prosím o kontrolu logu
Ano, vypadá to, že to již nevyskakuje. Děkuji moc 
Re: Prosím o kontrolu logu
Tak este upraceme po pouzitych nastrojoch:
- Stiahni DelFix: https://toolslib.net/downloads/finish/2-delfix/
- Uloz na plochu a spusti
- Nechaj oznacenu moznost "Remove disinfection tools"
- Klikni na "Run"
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Přispějete na provoz fóra?