Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Odkaz na messengeru, odchycen antivirem

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
bojimso
2. Stupeň Varování
Příspěvky: 282
Registrován: 08 bře 2007 14:56

Odkaz na messengeru, odchycen antivirem

#1 Příspěvek od bojimso »

Zdravím,

dnes se mi "podařilo" kliknout v messengeru na odkaz, který byl maskován jako Youtube odkaz a byl zachycen antivirem viz přílohy. Zajímalo by mě, jestli se nestalo něco dalšího. Děkuji!
e0901b2ef769cf837f233d53eb0a5bd0.png
e0901b2ef769cf837f233d53eb0a5bd0.png (12.65 KiB) Zobrazeno 2017 x
Logfile of random's system information tool 1.10 (written by random/random)
Run by David at 2020-07-18 19:22:24
Microsoft Windows 10 Home
System drive C: has 40 GB (17%) free of 228 GB
Total RAM: 8137 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:22:26, on 18.07.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files (x86)\Gyazo\GyStation.exe
C:\Program Files (x86)\Battle.net\Battle.net.exe
C:\ProgramData\Battle.net\Agent\Agent.7117\Agent.exe
C:\Program Files (x86)\Battle.net\Battle.net.exe
C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
C:\Program Files (x86)\Battle.net\Battle.net.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Battle.net\Battle.net.exe
C:\Program Files\trend micro\David.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL
O4 - HKCU\..\Run: [OneDrive] "C:\Users\David\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
O4 - HKCU\..\Run: [Battle.net] "C:\Program Files (x86)\Battle.net\Battle.net.exe" --autostarted
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TSMApplication] "C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Ubisoft Game Launcher] "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" -uplay_silent
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: chrome.lnk = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files\Microsoft Office\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Export do &Tahiti - C:\Program Files (x86)\LightComp eDoklady Skenováni\iehelper.html
O8 - Extra context menu item: Poslat do On&eNotu - res://C:\Program Files\Microsoft Office\Office16\ONBttnIE.dll/105
O9 - Extra button: Poslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Poslat do On&eNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_2c57b76 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HPSmartDeviceAgentBase - Unknown owner - c:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: Adaptér výkonu rozhraní WMI (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11570 bytes

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-96807a1c-15ac-4fdd-b4f8-95516cccc52c -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-7bdf6af2-0755-4372-afc7-a5ef72d0f27f -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-5c4fe196-0e6e-47cb-ae7f-290f0ecd98a0 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-37f16b32-47af-4999-b377-ca6f2a0741a3 -LifetimeId:97fbdcb5-63d5-414e-8f5a-fdc1469336c3 -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-644de057-873e-4062-9f27-4cbd5f6cea81 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-2710e808-ad23-4e84-82e8-e90798246a22 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-ac2d3ad3-94ce-4f86-a8c1-cb429deb56a3 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-cd9a472a-a2db-4d63-b276-2bc586a384c3 -LifetimeId:5bf7de1a-f787-4981-abd6-30056be1f913 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache

C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
dashost.exe {4149bd72-827b-4027-a3593079aae131ee}
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV

C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\Windows\system32\IProsetMonitor.exe
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc

C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k netsvcs
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="657BB4E2-6F8D-649D-1559-3BE26EDD4B9B" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe


C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager

C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding


C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"ctfmon.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20062.97.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\TiltWheelMouse.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Gyazo\GyStation.exe"
"C:\Program Files (x86)\Battle.net\Battle.net.exe" --autostarted
"C:\ProgramData\Battle.net\Agent\Agent.7117\Agent.exe" --session=5019270983387652203
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Battle.net\Battle.net.exe" --type=gpu-process --field-trial-handle=3856,3483317911573224914,2427468484647597223,131072 --disable-features=HardwareMediaKeyHandling --no-sandbox --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200718T105755.716275.log" --log-severity=error --product-version="Battle.net/1.23.1.12152 (retail) Chrome/75.0.3770.100" --lang=en-US --watch-browser-pid=2536 --gpu-preferences=KAAAAAAAAADgAAAgAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200718T105755.716275.log" --service-request-channel-token=652498151813366752 --mojo-platform-channel-handle=3892 /prefetch:2 --battle-net-helper=Battle.net.12152
"C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe"
"C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe" -uplay_silent
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\David\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\David\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\David\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=84.0.4147.89 --initial-client-data=0xdc,0xe0,0xe4,0xb0,0xe8,0x7ffbf268ed20,0x7ffbf268ed30,0x7ffbf268ed40
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --mojo-platform-channel-handle=1548 /prefetch:2
"C:\Program Files (x86)\Battle.net\Battle.net.exe" --type=utility --field-trial-handle=3856,3483317911573224914,2427468484647597223,131072 --disable-features=HardwareMediaKeyHandling --lang=en-US --service-sandbox-type=network --no-sandbox --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200718T105755.716275.log" --log-severity=error --product-version="Battle.net/1.23.1.12152 (retail) Chrome/75.0.3770.100" --lang=en-US --watch-browser-pid=2536 --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200718T105755.716275.log" --service-request-channel-token=51934318786574664 --mojo-platform-channel-handle=4692 /prefetch:8 --battle-net-helper=Battle.net.12152
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1828 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2884 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3416 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2356 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3448 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3460 /prefetch:1
"C:/Program Files (x86)/Ubisoft/Ubisoft Game Launcher/UplayWebCore.exe" --type=renderer --no-sandbox --disable-features=TouchpadAndWheelScrollLatching --service-pipe-token=2C5D7EEC3282B7861528C1982CEA902D --lang=en-US --locales-dir-path="C:/Program Files (x86)/Ubisoft/Ubisoft Game Launcher/locales/1/" --log-file="C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\debug.log" --disable-spell-checking --enable-system-flash --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2C5D7EEC3282B7861528C1982CEA902D --renderer-client-id=4 --mojo-platform-channel-handle=2624 /prefetch:1
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=6608,8651747503960969026,7399541407223894281,131072 --no-sandbox --log-file="C:\Users\David\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.5.2415)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAMAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --service-request-channel-token=18185449100740480747 --mojo-platform-channel-handle=7324 /prefetch:2
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --lang=cs --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=7128 /prefetch:8
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
"C:\WINDOWS\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\system32\AUDIODG.EXE 0x6ac
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19111.24110.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
taskhostw.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "D:\Marvels.Agents.of.S.H.I.E.L.D.S07E08.1080p.AMZN.WEBRip.DDP5.1.x264-T6D[rarbg]\Marvels.Agents.of.S.H.I.E.L.D.S07E08.1080p.AMZN.WEB-DL.DDP5.1.H.264-T6D.mkv"
"C:\Program Files (x86)\Battle.net\Battle.net.exe" --type=renderer --no-sandbox --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200718T105755.716275.log" --field-trial-handle=3856,3483317911573224914,2427468484647597223,131072 --disable-features=HardwareMediaKeyHandling --lang=en-US --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200718T105755.716275.log" --log-severity=error --product-version="Battle.net/1.23.1.12152 (retail) Chrome/75.0.3770.100" --disable-spell-checking --uncaught-exception-stack-size=10 --watch-browser-pid=2536 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=18156074867428618290 --renderer-client-id=12 --mojo-platform-channel-handle=692 /prefetch:1 --battle-net-helper=Battle.net.12152
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=661 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4024 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=747 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7628 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1512,4656283755707283502,15142401660756206143,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=749 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8480 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\David\Desktop\RSITx64.exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\3911gjs4.default

prefs.js - "browser.startup.homepage" - "https://www.facebook.com/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=4.0.0-dev]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13 2177328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13 1522480]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-14 84992]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-09-17 16404224]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2013-04-09 241152]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-06-23 36352]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2020-07-07 109160]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2018-11-02 3942936]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\David\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2020-02-07 1573224]
"Gyazo"=C:\Program Files (x86)\Gyazo\GyStation.exe [2018-10-04 1384840]
"Battle.net"=C:\Program Files (x86)\Battle.net\Battle.net.exe [2020-07-17 1136104]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-10-16 24552064]
"TSMApplication"=C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [2020-05-11 1623040]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2020-02-09 365160]
"Ubisoft Game Launcher"=C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [2020-07-17 471360]

C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"VIDC.RTV1"=rtvcvfw64.dll
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2020-07-17 05:09:31 ----D---- C:\WINDOWS\LastGood
2020-07-17 05:08:08 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-07-17 05:08:08 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2020-07-17 05:08:08 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-07-17 05:08:08 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2020-07-17 05:08:08 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2020-07-17 05:08:08 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-07-17 05:08:08 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2020-07-17 05:08:08 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-07-17 05:08:08 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2020-07-17 05:08:08 ----A---- C:\WINDOWS\system32\OpenCL.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\nvdispgenco6445167.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\nvdispco6445167.dll
2020-07-17 05:08:06 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2020-07-17 05:08:06 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2020-07-17 05:08:06 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2020-07-17 05:08:06 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2020-07-17 05:08:06 ----A---- C:\WINDOWS\system32\nvcuda.dll
2020-07-17 05:05:39 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2020-07-17 05:05:34 ----A---- C:\WINDOWS\system32\drivers\farflt.sys
2020-07-17 05:05:33 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2020-07-17 05:02:42 ----A---- C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-07-17 05:02:42 ----A---- C:\WINDOWS\system32\drivers\NvModuleTracker.sys
2020-07-16 00:35:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2020-07-16 00:35:55 ----A---- C:\WINDOWS\SYSWOW64\ConsoleLogon.dll
2020-07-16 00:35:55 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-16 00:35:55 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-16 00:35:55 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-07-16 00:35:55 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-16 00:35:51 ----A---- C:\WINDOWS\system32\APHostService.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\SYSWOW64\HoloShellRuntime.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-07-16 00:35:49 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-07-16 00:35:48 ----A---- C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-16 00:35:48 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-16 00:35:48 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-07-16 00:35:47 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2020-07-16 00:35:47 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2020-07-16 00:35:47 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-16 00:35:46 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-16 00:35:46 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-16 00:35:46 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\PrintWSDAHost.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-07-16 00:35:41 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-07-16 00:35:41 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-07-16 00:35:41 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiverExt.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\fdWSD.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\tsmf.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\tsgqec.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-16 00:35:39 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-07-16 00:35:38 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-07-16 00:35:38 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\werui.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\StorSvc.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\fdWSD.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\easwrt.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\dialserver.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\dialclient.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2020-07-16 00:35:36 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-07-16 00:35:36 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-07-16 00:35:36 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-07-16 00:35:32 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-07-16 00:35:32 ----A---- C:\WINDOWS\system32\upnphost.dll
2020-07-16 00:35:32 ----A---- C:\WINDOWS\system32\upnpcont.exe
2020-07-16 00:35:32 ----A---- C:\WINDOWS\system32\udhisapi.dll
2020-07-16 00:35:32 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-07-16 00:35:32 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowProxy.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Print.Workflow.Source.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\msimg32.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\keyiso.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Management.Workplace.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\sethc.exe
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\PickerPlatform.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\EaseOfAccessDialog.exe
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\wpnclient.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\DiagnosticInvoker.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Preview.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\windows.applicationmodel.datatransfer.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\useractivitybroker.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\ResourcePolicyClient.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\SystemUWPLauncher.exe
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\SystemEventsBrokerClient.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\AppExtension.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\SystemSettings.DataModel.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2020-07-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\rasapi32.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\pku2u.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\nlasvc.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\nlaapi.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\ncsi.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Family.Client.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\efswrt.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\usermgr.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\msimg32.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\mf3216.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\lpk.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\LockController.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\fontsub.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\edgeIso.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\dciman32.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\AxInstUI.exe
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\WerFault.exe
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\weretw.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\wer.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\utcutil.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\sechost.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\Faultrep.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\wdigest.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\schannel.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\profsvc.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\oleaut32.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\logoncli.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\keyiso.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\CoreShell.dll
2020-07-16 00:35:12 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2020-07-16 00:35:12 ----A---- C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-16 00:35:12 ----A---- C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-16 00:35:12 ----A---- C:\WINDOWS\system32\twinui.dll
2020-07-16 00:35:12 ----A---- C:\WINDOWS\system32\twinapi.dll
2020-07-16 00:35:11 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-07-16 00:35:11 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-07-16 00:35:11 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\shell32.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\sethc.exe
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\NotificationController.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\MtcModel.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\dcomp.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\CaptureService.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\win32u.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\win32k.sys
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\user32.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\SHCore.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\psmsrv.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\PickerPlatform.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\PeopleBand.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\wpnclient.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\wpnapps.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\Geolocation.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\WindowManagement.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\vaultcli.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\msxml6r.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\ISM.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\InputHost.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\FntCache.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\DWrite.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\dosvc.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\msxml6.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\useractivitybroker.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\AppExtension.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\AppContracts.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\ShareHost.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\cdprt.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\StartTileData.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\netman.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\kernel32.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-16 00:34:58 ----A---- C:\WINDOWS\splwow64.exe
2020-07-16 00:34:58 ----A---- C:\WINDOWS\explorer.exe
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Wpc.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-07-16 00:25:34 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-07-16 00:25:32 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-07-14 13:47:40 ----A---- C:\WINDOWS\system32\aswBoot.exe
2020-07-14 13:47:30 ----A---- C:\WINDOWS\system32\drivers\aswArDisk.sys
2020-07-14 13:46:24 ----ASH---- C:\pagefile.sys
2020-07-07 21:33:26 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2020-07-07 21:33:26 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2020-07-04 12:50:37 ----D---- C:\ProgramData\BlueStacks
2020-07-04 12:50:33 ----D---- C:\Program Files\BlueStacks
2020-07-02 02:14:59 ----A---- C:\WINDOWS\system32\drivers\MbamChameleon.sys
2020-07-02 02:01:35 ----D---- C:\Users\David\AppData\Roaming\Opera Software
2020-06-30 05:17:40 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2020-06-29 21:07:52 ----A---- C:\WINDOWS\system32\drivers\BthA2dp.sys
2020-06-29 06:48:56 ----D---- C:\FRST
2020-06-29 06:45:56 ----D---- C:\rsit

======List of files/folders modified in the last 1 month======

2020-07-18 19:22:27 ----D---- C:\WINDOWS\Prefetch
2020-07-18 19:22:26 ----D---- C:\Program Files\trend micro
2020-07-18 19:19:01 ----D---- C:\WINDOWS\Temp
2020-07-18 19:14:21 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-07-18 19:06:00 ----D---- C:\WINDOWS\system32\sru
2020-07-18 16:51:11 ----D---- C:\Users\David\AppData\Roaming\vlc
2020-07-18 14:53:20 ----D---- C:\WINDOWS\system32\SleepStudy
2020-07-18 14:33:12 ----D---- C:\WINDOWS\system32\config
2020-07-18 14:31:08 ----D---- C:\WINDOWS\WinSxS
2020-07-18 14:30:57 ----RD---- C:\WINDOWS\Microsoft.NET
2020-07-18 14:30:54 ----D---- C:\WINDOWS\system32\DriverStore
2020-07-18 14:30:54 ----D---- C:\WINDOWS\System32
2020-07-18 14:30:54 ----D---- C:\WINDOWS\INF
2020-07-18 13:26:17 ----D---- C:\Users\David\AppData\Roaming\uTorrent
2020-07-18 13:00:29 ----D---- C:\ProgramData\NVIDIA
2020-07-18 00:47:52 ----AD---- C:\Program Files (x86)\Battle.net
2020-07-17 21:57:00 ----AD---- C:\World of Warcraft
2020-07-17 11:21:59 ----D---- C:\ProgramData\AVAST Software
2020-07-17 11:07:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-17 05:10:25 ----D---- C:\WINDOWS\system32\drivers
2020-07-17 05:09:33 ----D---- C:\WINDOWS\SysWOW64
2020-07-17 05:09:31 ----D---- C:\Windows
2020-07-17 05:05:34 ----D---- C:\WINDOWS\system32\catroot2
2020-07-17 05:03:19 ----D---- C:\ProgramData\NVIDIA Corporation
2020-07-17 05:03:07 ----D---- C:\WINDOWS\system32\Tasks
2020-07-17 05:02:52 ----D---- C:\Program Files\NVIDIA Corporation
2020-07-17 05:02:52 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2020-07-17 04:56:45 ----D---- C:\Users\David\AppData\Roaming\slobs-client
2020-07-16 20:52:43 ----AD---- C:\Users\David\AppData\Roaming\Curse Client
2020-07-16 17:05:22 ----RSD---- C:\WINDOWS\assembly
2020-07-16 17:01:52 ----D---- C:\WINDOWS\AppReadiness
2020-07-16 02:15:54 ----D---- C:\WINDOWS\SYSWOW64\en-US
2020-07-16 02:15:54 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-07-16 02:15:53 ----SD---- C:\WINDOWS\system32\DiagSvcs
2020-07-16 02:15:53 ----D---- C:\WINDOWS\SystemResources
2020-07-16 02:15:53 ----D---- C:\WINDOWS\system32\oobe
2020-07-16 02:15:53 ----D---- C:\WINDOWS\system32\en-US
2020-07-16 02:15:53 ----D---- C:\WINDOWS\system32\cs-CZ
2020-07-16 02:15:52 ----D---- C:\WINDOWS\ShellExperiences
2020-07-16 02:15:52 ----D---- C:\WINDOWS\bcastdvr
2020-07-16 02:15:52 ----D---- C:\Program Files\Windows Mail
2020-07-16 02:15:52 ----D---- C:\Program Files\Common Files\System
2020-07-16 02:15:52 ----D---- C:\Program Files (x86)\Windows Mail
2020-07-16 00:38:58 ----D---- C:\WINDOWS\CbsTemp
2020-07-16 00:25:24 ----SHD---- C:\System Volume Information
2020-07-16 00:20:41 ----HD---- C:\Program Files\WindowsApps
2020-07-16 00:17:44 ----D---- C:\WINDOWS\Logs
2020-07-14 13:47:40 ----HD---- C:\WINDOWS\ELAMBKUP
2020-07-14 07:57:29 ----D---- C:\WINDOWS\system32\LogFiles
2020-07-07 18:27:00 ----A---- C:\WINDOWS\system32\nvapi64.dll
2020-07-05 21:12:41 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2020-07-05 21:12:41 ----A---- C:\WINDOWS\system32\nvcpl.dll
2020-07-05 21:12:39 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2020-07-05 21:12:39 ----A---- C:\WINDOWS\system32\nvshext.dll
2020-07-05 21:12:38 ----A---- C:\WINDOWS\system32\nvmctray.dll
2020-07-05 21:12:38 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2020-07-05 21:12:38 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2020-07-04 12:53:25 ----RD---- C:\Program Files
2020-07-04 12:53:25 ----HD---- C:\ProgramData
2020-07-01 22:58:22 ----D---- C:\Users\David\AppData\Roaming\discord
2020-06-29 06:09:40 ----D---- C:\WINDOWS\Minidump
2020-06-23 16:20:44 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2020-06-23 16:20:40 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2020-06-23 16:20:40 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-06-23 01:08:10 ----A---- C:\WINDOWS\system32\SETDD4F.tmp
2020-06-22 03:45:13 ----A---- C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-06-19 15:43:27 ----D---- C:\Program Files (x86)\Mozilla Firefox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2020-07-14 37136]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2020-07-07 195648]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2020-07-07 60480]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2020-02-25 16304]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2020-07-07 84848]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2020-07-07 323272]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-06-23 1455552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-03-12 40960]
R1 AsrAppCharger;AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [2011-11-07 17192]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2020-07-07 205880]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2020-07-07 235584]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2020-07-07 42768]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2020-07-07 514448]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2020-07-07 109272]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2020-07-07 851600]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2020-07-07 466232]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\WINDOWS\system32\drivers\mbae64.sys [2020-07-02 153312]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2020-07-07 175192]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2020-07-07 216816]
R2 BlueStacksDrv;BlueStacks Hypervisor; \??\C:\Program Files\BlueStacks\BstkDrv_bgp.sys [2020-06-13 315976]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-05-14 457216]
R2 MBAMChameleon;MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [2020-07-02 216056]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-02-14 117264]
R3 dtlitescsibus;@oem26.inf,%DisplayName%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2020-02-09 42256]
R3 dtliteusbbus;@oem37.inf,%DisplayName%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2020-02-09 59360]
R3 e1dexpress;@oem27.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [2019-02-04 567880]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-09-17 4603136]
R3 MBAMFarflt;MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [2020-07-17 196456]
R3 MBAMProtection;MBAMProtection; \??\C:\WINDOWS\system32\DRIVERS\mbam.sys [2020-07-17 73368]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2020-06-07 248968]
R3 MBAMWebProtection;MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [2020-07-17 131728]
R3 MEIx64;@oem12.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2018-05-06 228992]
R3 NVHDA;@oem40.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2020-06-22 222112]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_87880f58b4724c5c\nvlddmkm.sys [2020-07-07 24682392]
R3 NvModuleTracker;@oem30.inf,%ServiceName%;NvModuleTracker; C:\WINDOWS\System32\drivers\NvModuleTracker.sys [2020-03-04 50592]
R3 nvvad_WaveExtensible;@oem22.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2019-03-19 69840]
R3 nvvhci;@oem8.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-03-11 67456]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 MbamElam;MbamElam; C:\WINDOWS\system32\DRIVERS\MbamElam.sys [2020-07-02 19912]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2020-04-20 151352]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-12 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-15 18432]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2020-03-12 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-03-12 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-03-12 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-03-12 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-03-12 99328]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 e1i65x64;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\System32\drivers\e1i65x64.sys [2019-03-19 553984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-21 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-10-04 64000]
S3 HPEWSFXBULK;HPEWSFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [2016-09-13 29248]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-04-20 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-15 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-14 986936]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2017-08-27 14024]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-03-19 33592]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2020-07-07 356824]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2020-07-14 58048]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_2c57b76;Uživatelská služba platformy připojených zařízení_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-06-23 18856]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2015-05-07 272352]
R2 MBAMService;Malwarebytes Service; C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe [2020-07-02 6970968]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-05-07 874472]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2020-07-05 874472]
R2 OneSyncSvc_2c57b76;Hostitel synchronizace_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2020-07-07 6514072]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_2c57b76;Uživatelská služba schránky_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2020-02-09 4506728]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_2c57b76;Data kontaktů_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-07 153752]
S2 HPSmartDeviceAgentBase;HPSmartDeviceAgentBase; c:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe [2017-10-25 68608]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_2c57b76;Agent Activation Runtime_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-20 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_2c57b76;Uživatelská služba pro GameDVR a vysílání her_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_2c57b76;Služba pro podporu uživatelů Bluetooth_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_2c57b76;CaptureService_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_2c57b76;ConsentUX_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-16 381152]
S3 CredentialEnrollmentManagerUserSvc_2c57b76;CredentialEnrollmentManagerUserSvc_2c57b76; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-16 381152]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_2c57b76;DeviceAssociationBroker_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_2c57b76;DevicePicker_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_2c57b76;Tok zařízení_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-07-16 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-09-21 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\elevation_service.exe [2020-07-11 1309680]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-07 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_2c57b76;Služba zasílání zpráv_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.40\elevation_service.exe [2020-07-16 1580424]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2020-04-08 244936]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 242864]
S3 OverwolfUpdater;Overwolf Updater Windows SCM; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2019-09-15 2431816]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_2c57b76;PrintWorkflow_2c57b76; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2019-11-28 474256]

-----------------EOF-----------------
Nahoru
bojimso
2. Stupeň Varování
Příspěvky: 282
Registrován: 08 bře 2007 14:56

Re: Odkaz na messengeru, odchycen antivirem

#2 Příspěvek od bojimso »

9e8eac2a06be246601b29fc5e6111c7a.png
9e8eac2a06be246601b29fc5e6111c7a.png (30.32 KiB) Zobrazeno 2016 x
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-07-2020 01
Ran by David (administrator) on DESKTOP-7D2FQ0G (18-07-2020 19:22:55)
Running from C:\Users\David\Desktop
Loaded Profiles: David
Platform: Windows 10 Home Version 1909 18363.959 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <4>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7117\Agent.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14>
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Intel Network Drivers -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Nota Inc. -> Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
(Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
(VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\vlc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16404224 2015-09-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942936 2018-11-02] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [1384840 2018-10-04] (Nota Inc. -> Nota Inc.)
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1136104 2020-07-17] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [TSMApplication] => C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2020-05-11] () [File not signed]
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365160 2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [Ubisoft Game Launcher] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [471360 2020-07-17] (Ubisoft Entertainment Sweden AB -> Ubisoft)
HKLM\...\Windows x64\Print Processors\hpcpp190: C:\Windows\System32\spool\prtprocs\x64\hpcpp190.dll [651176 2016-08-26] (HP Inc. -> HP Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp196: C:\Windows\System32\spool\prtprocs\x64\hpcpp196.dll [758000 2017-02-14] (HP Inc. -> HP Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp215: C:\Windows\System32\spool\prtprocs\x64\hpcpp215.dll [770232 2018-03-04] (HP Inc. -> HP Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp220: C:\Windows\System32\spool\prtprocs\x64\hpcpp220.dll [772280 2018-08-20] (HP Inc. -> HP Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp230: C:\Windows\System32\spool\prtprocs\x64\hpcpp230.dll [797832 2019-05-24] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\Windows\system32\HPMPW082.DLL [127624 2019-05-24] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\HPMLM190: C:\Windows\system32\hpmlm190.dll [310968 2018-08-20] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\HPMLM225: C:\Windows\system32\hpmlm225.dll [315528 2019-05-24] (HP Inc. -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\Installer\chrmstp.exe [2020-07-16] (Google LLC -> Google LLC)
Startup: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\chrome.lnk [2018-09-27]
ShortcutTarget: chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0BBED0A2-6DEE-4D1A-B7F5-B45DF33C72FD} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3339872 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
Task: {0C9BA02D-C39F-4C25-8CB3-FFAA5F64BEB1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {104B8479-2520-4DA4-81F8-5E3F3E9BBA8D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {1D44E45C-F9EE-4ECE-90F1-7189A0084E5A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1D7A9123-DE10-4848-BF3E-0A7AE7ED0B23} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [781808 2019-04-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {3906E0B8-DDDB-4B33-BFC5-F96E879E4D20} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {40FE9DE1-5C5B-42D5-9679-6D13C2740EA9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {430FEE59-1EE2-4DCE-A592-ABAC966AB81B} - System32\Tasks\Opera scheduled Autoupdate 1593648143 => C:\Users\David\AppData\Local\Programs\Opera\launcher.exe
Task: {4B515F5D-9B31-4DAD-ACFE-E132DDB5DAE8} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [752136 2020-06-18] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {4B5CFAC6-2DD7-4CAD-B746-784FEAC2AB2D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7F30558A-DBD9-475D-978F-8A0A9E95B26A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {90ACD96A-3CAD-4FEB-9905-3D55610C20E8} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9511A6F5-077F-4226-8E8A-A5D8D8C2693F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {952FF45B-D9C8-4257-8405-056578353803} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2018-10-04] (Nota Inc. -> Nota Inc.)
Task: {A5B5260C-77E7-4D9C-8B1F-EA765912E378} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A651D882-FF47-458A-A8A3-699C8A1EC3F1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A759CB3C-5883-47B3-A04F-A8F5F7D93DC5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {B6494C7C-46FF-4944-94A3-1209C263C877} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2018-10-04] (Nota Inc. -> Nota Inc.)
Task: {C2ABD97E-15AB-4077-BF0B-1F73CC68256D} - System32\Tasks\Opera scheduled assistant Autoupdate 1593648148 => C:\Users\David\AppData\Local\Programs\Opera\launcher.exe
Task: {C4B5A0E0-1D82-442E-9E73-146E56234B86} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_153_pepper.exe [1456128 2018-11-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {CBE51F93-5848-4293-8E76-337D9F0733E6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D3936408-0C8F-4EEA-BD6E-385B1F471175} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E2D294D6-E4D9-4AC0-98DB-381910868B51} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F10A0FAB-3E61-40F4-BB5B-A9E623F7C0E9} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2431816 2019-09-15] (Overwolf Ltd -> Overwolf LTD)
Task: {FEEB1248-CDD0-46F8-8D70-459B2F5E3C17} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-11-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 93.89.159.2 1.1.1.1
Tcpip\..\Interfaces\{b34a42e0-d16e-4479-92c1-0376d21a5832}: [DhcpNameServer] 93.89.159.2 1.1.1.1

Internet Explorer:
==================
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-07-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-07-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-07-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-07-12] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\David\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-10]

FireFox:
========
FF DefaultProfile: 3911gjs4.default
FF ProfilePath: C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\3911gjs4.default [2020-06-19]
FF Homepage: Mozilla\Firefox\Profiles\3911gjs4.default -> hxxps://www.facebook.com/
FF Notifications: Mozilla\Firefox\Profiles\3911gjs4.default -> hxxps://www.facebook.com
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=4.0.0-dev -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-12-10] (VideoLAN) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Default [2020-07-18]
CHR DownloadDir: C:\Users\David\Desktop
CHR Notifications: Default -> hxxps://www.misthub.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://facebook.com/
CHR StartupUrls: Default -> "hxxp://facebook.com/"
CHR DefaultSearchURL: Default -> hxxp://www.google.com/search?hl=en&q={searchTerms}
CHR DefaultSearchKeyword: Default -> google.cz_
CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR Extension: (BetterTTV) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-07-07]
CHR Extension: (Video Downloader PLUS) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-06-15]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-07-04]
CHR Extension: (Darkness - Beautiful Dark Themes) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\imilbobhamcfahccagbncamhpnbkaenm [2019-05-24]
CHR Extension: (Twitch Now) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2020-06-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Global Twitch Emotes) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgniedifoejifjkndekolimjeclnokkb [2020-06-15]
CHR Extension: (Chrome Media Router) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-17]
CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-06-03]
CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-28]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-11-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6514072 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [356824 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-07-14] (Avast Software s.r.o. -> AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S2 HPSmartDeviceAgentBase; c:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe [68608 2017-10-25] () [File not signed]
R2 MBAMService; C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-02] (Malwarebytes Inc -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-01] (HP Inc.) [File not signed]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [874472 2020-07-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2431816 2019-09-15] (Overwolf Ltd -> Overwolf LTD)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-01] (HP Inc.) [File not signed]
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2019-11-28] (Rockstar Games, Inc. -> Rockstar Games)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [17192 2011-11-07] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-07-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205880 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-02-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [514448 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [466232 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [216816 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [323272 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-06-13] (Bluestack Systems, Inc -> Bluestack System Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-07-02] (Malwarebytes Corporation -> Malwarebytes)
S3 HPEWSFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [29248 2016-09-13] (Hewlett-Packard Company -> Hewlett Packard)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-07-02] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [196456 2020-07-17] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73368 2020-07-17] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-06-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [131728 2020-07-17] (Malwarebytes Inc -> Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_87880f58b4724c5c\nvlddmkm.sys [24682392 2020-07-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\drivers\NvModuleTracker.sys [50592 2020-03-04] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-18 19:22 - 2020-07-18 19:23 - 000025414 _____ C:\Users\David\Desktop\FRST.txt
2020-07-18 19:14 - 2020-07-18 19:14 - 002292736 _____ (Farbar) C:\Users\David\Desktop\FRST64.exe
2020-07-18 19:12 - 2020-07-18 19:12 - 001222144 _____ C:\Users\David\Desktop\RSITx64.exe
2020-07-18 19:11 - 2020-07-18 19:11 - 000000000 ____D C:\Users\David\AppData\LocalLow\IGDump
2020-07-17 05:09 - 2020-07-17 05:09 - 000000000 ____D C:\WINDOWS\LastGood
2020-07-17 05:08 - 2020-07-07 18:31 - 001780952 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-07-17 05:08 - 2020-07-07 18:31 - 001780952 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-07-17 05:08 - 2020-07-07 18:31 - 001371352 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-07-17 05:08 - 2020-07-07 18:31 - 001371352 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-07-17 05:08 - 2020-07-07 18:31 - 001086680 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-07-17 05:08 - 2020-07-07 18:31 - 001086680 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-07-17 05:08 - 2020-07-07 18:31 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-07-17 05:08 - 2020-07-07 18:31 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-07-17 05:08 - 2020-07-07 18:30 - 000456600 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-07-17 05:08 - 2020-07-07 18:30 - 000349936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 002076560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 001569680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 001486744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 001146264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000816368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000812432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000674032 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000670616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000655592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000555928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000541936 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 006652816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 005883280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 003901672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 002367720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 001722088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445167.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 001482976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445167.dll
2020-07-17 05:08 - 2020-07-07 18:26 - 004716168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-07-17 05:05 - 2020-07-17 05:05 - 000196456 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-07-17 05:05 - 2020-07-17 05:05 - 000131728 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-07-17 05:05 - 2020-07-17 05:05 - 000073368 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-07-17 05:02 - 2020-03-04 14:54 - 001804784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-07-17 05:02 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-16 00:35 - 2020-07-16 00:35 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-16 00:35 - 2020-07-16 00:35 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-16 00:35 - 2020-07-16 00:35 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-16 00:35 - 2020-07-16 00:35 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-16 00:34 - 2020-07-16 00:35 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-16 00:34 - 2020-07-16 00:34 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-16 00:34 - 2020-07-16 00:34 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-16 00:34 - 2020-07-16 00:34 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-16 00:34 - 2020-07-16 00:34 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-16 00:34 - 2020-07-16 00:34 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-16 00:34 - 2020-07-16 00:34 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-16 00:34 - 2020-07-16 00:34 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-16 00:25 - 2020-06-30 06:32 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-16 00:25 - 2020-06-30 06:26 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-14 13:47 - 2020-07-14 13:47 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-07-14 13:47 - 2020-07-14 13:46 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-07-14 13:47 - 2020-07-07 21:33 - 000335976 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-07-09 19:16 - 2020-07-15 15:47 - 000000000 ____D C:\Users\David\Desktop\Vaníček hlášky
2020-07-07 21:33 - 2020-07-07 21:33 - 000216816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-07-07 21:33 - 2020-07-07 21:33 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-07-04 12:50 - 2020-07-04 12:53 - 000000000 ____D C:\ProgramData\BlueStacks
2020-07-04 12:50 - 2020-07-04 12:50 - 000000000 ____D C:\Program Files\BlueStacks
2020-07-02 02:15 - 2020-07-02 02:15 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-07-02 02:14 - 2020-07-02 02:14 - 000216056 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-07-02 02:02 - 2020-07-18 19:03 - 000003858 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1593648148
2020-07-02 02:02 - 2020-07-18 19:03 - 000003604 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1593648143
2020-07-02 02:02 - 2020-07-02 02:03 - 000000000 ____D C:\Users\David\AppData\Local\Opera Software
2020-07-02 02:01 - 2020-07-02 02:01 - 000000000 ____D C:\Users\David\AppData\Roaming\Opera Software
2020-06-30 05:17 - 2020-06-22 03:45 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-06-29 21:07 - 2020-03-12 01:46 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2020-06-29 07:06 - 2020-07-18 12:58 - 000000000 ____D C:\Users\David\AppData\Local\BitTorrentHelper
2020-06-29 06:48 - 2020-07-18 19:23 - 000000000 ____D C:\FRST
2020-06-29 06:45 - 2020-06-29 06:46 - 000000000 ____D C:\rsit
2020-06-29 06:09 - 2020-06-29 06:11 - 001211636 _____ C:\WINDOWS\Minidump\062920-7250-01.dmp
2020-06-29 06:09 - 2020-06-29 06:09 - 1140594067 _____ C:\WINDOWS\MEMORY.DMP
2020-06-22 14:41 - 2020-06-22 14:41 - 000002194 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Avast Passwords.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-18 19:22 - 2019-05-19 13:52 - 000000000 ____D C:\Program Files\trend micro
2020-07-18 19:19 - 2016-10-15 02:40 - 000000000 ____D C:\Users\David\AppData\Local\Battle.net
2020-07-18 19:14 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-18 19:05 - 2017-09-18 22:03 - 000000000 ____D C:\Users\David\AppData\Local\AVAST Software
2020-07-18 19:03 - 2020-06-10 12:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-18 19:03 - 2020-06-10 12:31 - 000003286 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-18 19:03 - 2019-12-05 05:00 - 000002966 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2020-07-18 19:03 - 2019-09-21 13:41 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-18 19:03 - 2019-09-21 13:41 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-18 19:03 - 2019-09-21 13:41 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-18 19:03 - 2019-09-21 13:41 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-18 19:03 - 2019-09-21 13:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-18 19:03 - 2019-09-21 13:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-18 19:03 - 2019-09-21 13:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-18 19:03 - 2019-09-21 13:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-18 19:03 - 2019-09-21 13:41 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-18 19:03 - 2019-09-21 13:41 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-18 19:03 - 2019-09-21 13:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-07-18 16:51 - 2017-12-11 07:31 - 000000000 ____D C:\Users\David\AppData\Roaming\vlc
2020-07-18 14:53 - 2019-09-21 13:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-18 14:30 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-18 13:26 - 2016-10-14 22:22 - 000000000 ____D C:\Users\David\AppData\Roaming\uTorrent
2020-07-18 13:00 - 2017-08-17 09:21 - 000000000 ____D C:\ProgramData\NVIDIA
2020-07-18 12:58 - 2016-10-24 21:54 - 000000000 ____D C:\Users\David\AppData\Local\Ubisoft Game Launcher
2020-07-18 00:47 - 2016-10-15 02:35 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-07-17 21:58 - 2020-06-10 12:31 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-17 21:57 - 2016-12-26 15:43 - 000000000 ____D C:\World of Warcraft
2020-07-17 11:21 - 2016-10-14 19:43 - 000000000 ____D C:\ProgramData\AVAST Software
2020-07-17 11:07 - 2019-09-21 13:42 - 001695456 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-17 11:07 - 2019-03-19 13:55 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-17 11:07 - 2019-03-19 13:55 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-17 05:09 - 2016-10-14 19:34 - 000000000 ____D C:\Users\David\AppData\Local\NVIDIA
2020-07-17 05:05 - 2019-09-21 13:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-17 05:05 - 2019-03-19 06:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2020-07-17 05:03 - 2017-08-17 09:21 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-07-17 05:02 - 2017-08-17 09:20 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-07-17 05:02 - 2017-08-17 09:20 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-07-17 04:56 - 2018-09-01 17:38 - 000000000 ____D C:\Users\David\AppData\Roaming\slobs-client
2020-07-17 04:23 - 2016-10-15 02:52 - 000000000 ____D C:\Users\David\AppData\Local\CrashDumps
2020-07-16 22:33 - 2016-10-07 13:13 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-16 20:52 - 2017-03-31 01:14 - 000000000 ____D C:\Users\David\AppData\Roaming\Curse Client
2020-07-16 17:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-16 12:18 - 2017-11-18 22:39 - 000000000 ___RD C:\Users\David\3D Objects
2020-07-16 12:18 - 2016-04-27 08:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-16 12:17 - 2019-09-21 13:31 - 000436632 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-16 00:38 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-16 00:20 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-14 13:47 - 2019-09-21 13:41 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-07-14 13:47 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-07-14 13:44 - 2017-03-23 18:53 - 000000000 ____D C:\Users\David\AppData\Local\ElevatedDiagnostics
2020-07-07 21:33 - 2020-04-22 03:11 - 000514448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-07-07 21:33 - 2019-01-14 17:24 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-07-07 21:33 - 2019-01-10 04:28 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-07-07 21:33 - 2019-01-10 04:28 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-07-07 21:33 - 2018-11-04 19:16 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-07-07 21:33 - 2017-11-21 13:05 - 000205880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-07-07 21:33 - 2016-10-14 19:45 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-07-07 21:33 - 2016-10-14 19:45 - 000466232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-07-07 21:33 - 2016-10-14 19:45 - 000323272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-07-07 21:33 - 2016-10-14 19:45 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-07-07 21:33 - 2016-10-14 19:45 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-07-07 18:27 - 2019-09-11 15:25 - 005399808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-07-06 23:40 - 2020-06-04 03:18 - 000000000 ____D C:\Users\David\Desktop\Pat a Mat memes
2020-07-06 01:26 - 2019-09-11 15:25 - 000058532 _____ C:\WINDOWS\system32\nvinfo.pb
2020-07-05 21:12 - 2017-08-17 09:21 - 005492712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 002633528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 001760232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 000991032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 000195560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 000121144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 000084456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-07-04 23:11 - 2019-11-22 10:41 - 000093633 _____ C:\Users\David\Desktop\trollings.txt
2020-07-04 12:53 - 2019-12-05 04:56 - 000002085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2020-07-04 12:53 - 2019-12-05 04:56 - 000001764 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2020-07-04 12:50 - 2019-12-05 04:43 - 000000000 ____D C:\Users\David\AppData\Local\BlueStacksSetup
2020-07-04 12:50 - 2019-12-02 06:40 - 000000000 ____D C:\Users\Public\BlueStacks
2020-07-04 12:50 - 2019-12-02 06:40 - 000000000 ____D C:\Users\David\AppData\Local\BlueStacks
2020-07-03 18:12 - 2017-08-17 09:21 - 009216447 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-07-02 02:37 - 2018-05-18 06:43 - 000000000 ____D C:\Users\David\AppData\Local\D3DSCache
2020-07-02 02:14 - 2020-02-17 12:26 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-07-02 02:14 - 2019-09-19 01:41 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-07-02 02:01 - 2016-10-14 22:22 - 000000876 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2020-07-01 22:58 - 2016-12-31 19:33 - 000000000 ____D C:\Users\David\AppData\Roaming\discord
2020-07-01 21:47 - 2016-10-20 22:47 - 000000000 ____D C:\Users\David\AppData\Local\Personify
2020-06-29 07:19 - 2019-09-21 13:34 - 000000000 ____D C:\Users\David
2020-06-29 06:09 - 2019-12-31 06:08 - 000000000 ____D C:\WINDOWS\Minidump
2020-06-26 10:47 - 2017-11-18 22:32 - 000000000 ____D C:\Users\David\AppData\Local\Packages
2020-06-24 20:09 - 2017-07-09 02:24 - 000000000 ____D C:\Users\David\AppData\Local\Overwolf
2020-06-23 16:20 - 2018-06-26 20:11 - 002754024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-06-23 16:20 - 2018-06-26 20:11 - 002122216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2020-06-23 16:20 - 2018-06-26 20:11 - 001295848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-06-23 01:08 - 2019-09-11 15:25 - 005383880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SETDD4F.tmp
2020-06-22 03:45 - 2019-09-11 15:25 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-06-22 03:45 - 2019-09-11 15:25 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-06-21 13:21 - 2020-06-15 20:30 - 000004608 _____ C:\Users\David\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-06-19 15:43 - 2020-04-08 22:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-06-19 15:43 - 2018-03-15 11:00 - 000000000 ____D C:\Users\David\AppData\LocalLow\Mozilla
2020-06-18 00:28 - 2016-10-21 01:59 - 000000000 ____D C:\Program Files (x86)\Steam

==================== Files in the root of some directories ========

2017-08-02 23:57 - 2018-04-05 16:53 - 000000006 _____ () C:\Users\David\AppData\Roaming\.nfe_lock
2019-10-05 23:29 - 2019-10-17 11:56 - 042738921 _____ () C:\Users\David\AppData\Roaming\gta5_patch.bin
2019-10-05 23:29 - 2019-10-05 23:29 - 000332800 _____ () C:\Users\David\AppData\Roaming\patcher.dll
2020-06-15 20:30 - 2020-06-21 13:21 - 000004608 _____ () C:\Users\David\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-12-18 23:22 - 2016-12-18 23:22 - 000029696 _____ () C:\Users\David\AppData\Local\MSGBOX.EXE

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
bojimso
2. Stupeň Varování
Příspěvky: 282
Registrován: 08 bře 2007 14:56

Re: Odkaz na messengeru, odchycen antivirem

#3 Příspěvek od bojimso »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by David (18-07-2020 19:24:27)
Running from C:\Users\David\Desktop
Windows 10 Home Version 1909 18363.959 (X64) (2019-09-21 11:41:31)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3482348820-1896476200-1895645591-500 - Administrator - Disabled)
David (S-1-5-21-3482348820-1896476200-1895645591-1002 - Administrator - Enabled) => C:\Users\David
DefaultAccount (S-1-5-21-3482348820-1896476200-1895645591-503 - Limited - Disabled)
Guest (S-1-5-21-3482348820-1896476200-1895645591-501 - Limited - Disabled)
Mamka (S-1-5-21-3482348820-1896476200-1895645591-1004 - Limited - Enabled) => C:\Users\bejja
WDAGUtilityAccount (S-1-5-21-3482348820-1896476200-1895645591-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\uTorrent) (Version: 3.5.5.45704 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{50229C72-539F-4E65-BEB5-F0491C5074B7}) (Version: 22.2.1 - HP Inc.) Hidden
Adobe Flash Player 31 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
APP Shop v1.0.21 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.21 - ASRock Inc.)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
Assassin's Creed Odyssey (HKLM-x32\...\Uplay Install 5059) (Version: - Ubisoft)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft)
Audacity 2.2.1 (HKLM-x32\...\Audacity_is1) (Version: 2.2.1 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.5.2415 - Avast Software)
Batman - Arkham Origins (HKLM-x32\...\Batman - Arkham Origins_is1) (Version: - )
Batman Arkham Knight v.1.0.4.5 (HKLM-x32\...\Batman Arkham Knight_is1) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.215.0.1019 - BlueStack Systems, Inc.)
Browser (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Overwolf_jgbnfkaeklillfmfafgkodhlcnfdgkmjmjngaaof) (Version: 1.0.0.0 - Overwolf app)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.75.1088 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
CPUID CPU-Z 1.89 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.89 - CPUID, Inc.)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Čeština do hry The Evil Within včetně 3 DLC v1.1 (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Čeština do hry The Evil Within včetně 3 DLC v1.1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1114 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Deus Ex - Human Revolution version 1.0 (HKLM-x32\...\{1146E8F3-4057-4F46-B39C-D18AB4BB1523}_is1) (Version: 1.0 - Square Enix)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Fallout 4 v.1.1.30 (HKLM-x32\...\Fallout 4_is1) (Version: - )
foobar2000 v1.3.12 (HKLM-x32\...\foobar2000) (Version: 1.3.12 - Peter Pawlowski)
Game Summary (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Overwolf_nafihghfcpikebhfhdhljejkcifgbdahdhngepfb) (Version: 215.9.49 - Overwolf app)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.89 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.24.15 - Google Inc.) Hidden
gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version: - Richard)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Gyazo 3.4.1.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
HearthArena Companion (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Overwolf_eldaohcjmecjpkpdhhoiolhhaeapcldppbdgbnbc) (Version: 1.5.0.2 - Overwolf app)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hearthstone Deck Tracker (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\HearthstoneDeckTracker) (Version: 1.6.9 - HearthSim)
HPSmartDeviceAgentBase (HKLM-x32\...\{F7270182-8AD0-420F-92A3-52438ED810A9}) (Version: 1.1.0.0 - HP Inc)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{657DFCCF-B080-44B1-9AEA-61676011A1AE}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Logitech-kameraindstillinger (HKLM-x32\...\LogiUCDPP) (Version: 1.1.87.0 - Logitech Europe S.A.)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.40 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Mozilla Firefox 75.0 (x64 cs) (HKLM\...\Mozilla Firefox 75.0 (x64 cs)) (Version: 75.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.7.2 - Mozilla)
MSI Afterburner 4.6.1 (HKLM-x32\...\Afterburner) (Version: 4.6.1 - MSI Co., LTD)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM\...\{90160000-001F-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM\...\{90160000-001F-041B-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.34 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.67 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.0.1 - OBS Project)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Ori and the Blind Forest Definitive Edition (HKLM-x32\...\Ori and the Blind Forest Definitive Edition_is1) (Version: - )
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.135.0.24 - Overwolf Ltd.)
Ovládací panel NVIDIA 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 451.67 - NVIDIA Corporation) Hidden
Personify ChromaCam (remove only) (HKLM-x32\...\Personify ChromaCam) (Version: 1.1.6.7 - Personify, Inc.)
PixelHealer (HKLM\...\PixelHealer) (Version: 1.5.0.30 - Aurelitec)
Print Conductor 5.4 (HKLM-x32\...\Print Conductor_is1) (Version: 5.4 - fCoder SIA)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7614 - Realtek Semiconductor Corp.)
Resident Evil 2 (HKLM-x32\...\Resident Evil 2_is1) (Version: - )
Resident Evil 7 Biohazard (HKLM-x32\...\{1ECBF8F3-7079-44CA-AD32-B2AECBCF636F}_is1) (Version: - Capcom)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.16.196 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
Skype™ 7.41 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.41.101 - Skype Technologies S.A.)
Someday Youll Return (HKLM-x32\...\Someday Youll Return_is1) (Version: - )
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.21.2 - General Workings, Inc.)
Super Seducer (HKLM\...\SKIDROW - Super Seducer) (Version: - SKIDROW)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
The Walking Dead A New Frontier Episode 1 (HKLM-x32\...\The Walking Dead A New Frontier Episode 1_is1) (Version: - )
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Twitch (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-012B-0405-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 4.0.0-dev - VideoLAN)
VooPoo version 1.5.1.30 (HKLM-x32\...\{63EEAD1F-3FC8-40F5-A415-E4BE098004C0}_is1) (Version: 1.5.1.30 - KunShan XW-TEC)
VueScan x64 (HKLM\...\VueScan x64) (Version: 9.7.13 - Hamrick Software)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - Blizzard Entertainment)
Warframe (HKLM-x32\...\{72BD42A9-6701-42EB-B77A-2AFC0C499F5E}) (Version: 1.0.0 - Digital Extremes)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)

Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.172.400.0_x86__kgqvnymyfvs32 [2020-07-09] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-09] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-29] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-07] (Microsoft Studios) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3482348820-1896476200-1895645591-1002_Classes\CLSID\{9a338598-86a1-4119-8b66-9d52715b6a76}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-07] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-17] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-07-05] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-17] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-07-17 21:55 - 2020-07-17 21:55 - 096130560 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\libcef.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000117760 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\libEGL.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 004342784 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\libGLESv2.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000053760 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_bz2.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000084992 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_ctypes.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000783360 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_hashlib.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000137216 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_lzma.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000047104 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_socket.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000039424 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\psutil._psutil_windows.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 001861120 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtCore.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 002002944 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtGui.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 004101120 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtWidgets.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000009728 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\select.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000075264 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\sip.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000758784 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\unicodedata.pyd
2014-11-10 11:12 - 2019-04-17 22:39 - 085372416 _____ () [File not signed] C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\libcef.dll
2019-04-17 22:39 - 2019-04-17 22:39 - 000043520 _____ () [File not signed] C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\libUbiCustomEvent.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 002741248 _____ (Python Software Foundation) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\python34.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000760832 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\chrome_elf.dll
2017-11-06 19:21 - 2019-04-17 22:39 - 000518144 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\chrome_elf.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000848896 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\icudt53.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 001580032 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\icuin53.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 001079296 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\icuuc53.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000036352 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qdds.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000022016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qgif.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000029184 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qicns.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000022016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qico.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000381952 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qjp2.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000206848 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qjpeg.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000218624 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qmng.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000016384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qtga.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000308736 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qtiff.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000015360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qwbmp.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000287232 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qwebp.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000991744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\platforms\qwindows.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 004182528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\Qt5Core.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 004877312 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\Qt5Gui.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 004490752 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\Qt5Widgets.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\audio\qtaudio_windows.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qgif.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qico.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qjpeg.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qmng.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qsvg.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qtiff.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\platforms\qwindows.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000041984 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQml\Models.2\modelsplugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick.2\qtquick2plugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000084480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000071680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000211456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick\Window.2\windowplugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Core.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Gui.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Multimedia.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Network.dll
2020-07-17 21:55 - 2020-07-17 21:56 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Qml.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Quick.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 000096256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5QuickControls2.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 000681472 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5QuickTemplates2.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Svg.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Widgets.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5WinExtras.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Xml.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000157715 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\libvlc.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 002707475 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\libvlccore.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_concat_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000053267 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_imem_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000083475 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_mms_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000117267 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_realrtsp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000039955 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_wasapi_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000020499 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libattachment_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000177683 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libcdda_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000889875 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000879123 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libdtv_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000207379 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000140307 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libdvdread_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000049683 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000091155 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libftp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000057363 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libhttp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000134163 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libhttps_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021011 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libidummy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022035 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libimem_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 002413587 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000794131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\liblive555_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000189459 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libnfs_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000652307 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\librtp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000056851 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libsatip_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027667 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libscreen_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000019987 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libsdp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000834579 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libsftp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023059 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libshm_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000049683 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libsmb_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000020499 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libtcp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000046099 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libtimecode_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022035 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libudp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000090643 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libvcd_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000086547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libvdr_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 002149907 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access\libvnc_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000018963 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_dummy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_file_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_http_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000659987 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_livehttp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000446483 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_shout_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\access_output\libaccess_output_udp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000032275 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000048147 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudiobargraph_a_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000033299 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libcompressor_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021011 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000059923 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libequalizer_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000020499 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libgain_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026643 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libheadphone_channel_mixer_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027667 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libchorus_flanger_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000019475 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libkaraoke_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000150547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmad_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027155 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmono_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023059 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libnormvol_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000030227 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libparam_eq_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027667 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libremap_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001501715 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000031763 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_pitch_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025619 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026643 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001066515 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspatialaudio_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000093203 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspatializer_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000031763 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspeex_resampler_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023571 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libstereo_widen_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000034323 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtospdif_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000020499 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000019987 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021011 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libinteger_mixer_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_output\libadummy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023059 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_output\libafile_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023571 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_output\libamem_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000038931 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000045075 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_output\libmmdevice_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000040467 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwasapi_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000039443 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000090131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\liba52_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000029715 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libadpcm_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024083 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000039955 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000329235 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libaribsub_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 019718675 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libavcodec_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000054291 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libcc_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026643 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000077843 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libcrystalhd_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027667 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libcvdsub_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000245267 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libd3d11va_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000194067 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libdca_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000045075 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libddummy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000042515 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libdmo_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000104467 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libdvbsub_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000203283 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libdxva2_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000018963 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libedummy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000282131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000432147 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000314387 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libfluidsynth_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000034835 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000221715 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libjpeg_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000077843 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libkate_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 002538003 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000126995 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\liblibmpeg2_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000031251 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000095763 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libmft_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000337939 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libmpg123_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023059 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\liboggspots_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000332307 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libopus_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000265235 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000185875 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libqsv_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023059 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000019475 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\librtpvideo_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libscte18_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000035859 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libscte27_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000674323 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libsdl_image_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001439763 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libspdif_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000148499 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000028179 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027155 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libstl_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000058387 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libsubsdec_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027155 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libsubstx3g_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000034323 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libsubsusf_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000019987 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libt140_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025619 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libtextst_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000318995 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000104467 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libttml_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000139795 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libtwolame_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libuleaddvaudio_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000764435 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 003693587 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libvpx_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000147475 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libwebvtt_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001013267 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libx264_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 004767763 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libx265_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001497107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\codec\libzvbi_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000020499 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\control\libdummy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027155 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\control\libgestures_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000066067 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\control\libnetsync_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000048147 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\control\libntservice_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000074771 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\control\liboldrc_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023571 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\control\libwin_hotkeys_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\control\libwin_msg_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000132627 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\d3d11\libdirect3d11_filters_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000078867 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\d3d9\libdirect3d9_filters_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 002148371 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libadaptive_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libaiff_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000103955 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libau_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000108563 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027155 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libcaf_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021011 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_cdg_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000086035 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_chromecast_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024083 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_stl_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libdemuxdump_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libdiracsys_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000020499 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libdirectory_demux_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000045075 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libes_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000092691 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000357907 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libgme_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000100883 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libh26x_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000031251 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libimage_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libmjpeg_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001681427 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000439315 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libmod_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000291347 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000088083 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021011 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libmpgv_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000019475 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libnoseek_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000058387 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libnsc_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libnsv_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000029203 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000330259 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libogg_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000149523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000050707 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libps_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libpva_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\librawaud_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023571 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\librawdv_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025619 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\librawvid_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000042515 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libreal_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001241107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libsid_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000029203 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000102931 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libsubtitle_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000582163 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libts_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libtta_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000042515 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libty_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libvc1_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000066579 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libvobsub_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024595 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libvoc_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000029715 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libwav_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021011 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\demux\libxa_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 017208863 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\gui\libqt_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 002141715 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\gui\libskins2_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000051219 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\keystore\libfile_keystore_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\keystore\libmemory_keystore_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000043539 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\logger\libconsole_logger_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000046611 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\logger\libfile_logger_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000346131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000044051 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001478675 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000088083 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\misc\libaddonsfsstorage_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000081427 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\misc\libaddonsvorepository_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000057875 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\misc\libaudioscrobbler_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000052243 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\misc\libexport_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000062483 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\misc\libfingerprinter_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001382419 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\misc\libgnutls_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000018963 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\misc\liblogger_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024595 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\misc\libstats_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000096787 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\misc\libvod_rtsp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001486867 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000043027 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_asf_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000038419 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_avi_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021011 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_dummy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000213523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_mp4_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000044051 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_mpjpeg_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000073235 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ogg_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000067603 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ps_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000142355 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ts_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024083 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_wav_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027155 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_a52_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_copy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000036371 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000030227 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dts_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000030739 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000128531 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000119827 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_hevc_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000038931 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000069651 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000034835 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026643 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegaudio_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000034323 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000042003 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024083 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmediadirs_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000096275 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmicrodns_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027667 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libpodcast_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000126483 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001025555 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libupnp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libwindrive_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000028691 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\spu\libaudiobargraph_v_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000028691 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\spu\liblogo_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027667 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\spu\libmarq_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000036371 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\spu\libmosaic_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000665107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\spu\libremoteosd_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000054803 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\spu\librss_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000031251 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\spu\libsubsdelay_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000403987 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_extractor\libarchive_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000020499 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libadf_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000048147 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libaribcam_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023059 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libcache_block_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024595 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libcache_read_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000061459 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhds_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000049683 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libinflate_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026643 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libprefetch_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021011 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libskiptags_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021011 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_autodel_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000050707 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_bridge_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023571 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_cycle_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_delay_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000020499 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_description_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_display_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000018963 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_dummy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000077843 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_duplicate_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025619 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_es_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022035 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_gather_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001248275 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_chromaprint_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001023507 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_chromecast_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000028691 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_mosaic_bridge_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000056339 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_record_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000771091 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_rtp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_setid_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024595 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_smem_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000052243 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_standard_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000046099 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_stats_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000052243 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_transcode_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001881619 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libfreetype_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027667 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libsapi_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000018963 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libtdummy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000048659 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libadjust_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libalphamask_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libanaglyph_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libantiflicker_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000031763 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libball_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000176659 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libblend_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023571 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libblendbench_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024083 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libbluescreen_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000047123 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcanvas_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024083 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcolorthres_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcroppadd_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000135699 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libdeinterlace_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libedgedetection_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025619 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\liberase_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libextract_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021011 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libfps_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libfreeze_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgaussianblur_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000029203 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradfun_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000034323 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradient_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000028691 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgrain_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000032787 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libhqdn3d_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libinvert_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025107 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmagnify_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmirror_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmotionblur_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027667 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmotiondetect_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000031251 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\liboldmovie_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026131 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libposterize_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000122899 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpostproc_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpsychedelic_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000086547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpuzzle_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023059 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libripple_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000065555 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\librotate_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000047123 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscene_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024083 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libsepia_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libsharpen_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000037395 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libtransform_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024083 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libvhs_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023059 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_filter\libwave_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023059 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000047635 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libchain_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000048659 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_10_p010_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000049171 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_nv12_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000061971 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_mmx_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000038931 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000125971 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_sse2_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000029203 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_mmx_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000026643 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000038419 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_sse2_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022035 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025619 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_mmx_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000025619 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000031763 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_sse2_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000020499 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\librv32_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000908307 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libswscale_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023571 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuvp_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000027667 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i420_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000024595 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000819731 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libcaca_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000277523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d11_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000203795 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d9_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000186387 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022035 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libdrawable_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000046099 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libflaschen_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000201747 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libgl_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000348179 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libglwin32_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000021523 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libvdummy_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000023059 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libvmem_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000203283 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libwgl_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000171027 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libwingdi_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000046099 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_output\libyuv_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000022547 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libclone_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000047635 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libpanoramix_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000062995 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libwall_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000036371 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\visualization\libglspectrum_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000205843 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\visualization\libgoom_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 001709587 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\visualization\libprojectm_plugin.dll
2017-12-10 06:59 - 2017-12-10 06:59 - 000050707 _____ (VideoLAN) [File not signed] C:\Program Files\VideoLAN\VLC\plugins\visualization\libvisual_plugin.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 09:24 - 2019-09-24 12:02 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\David\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\wp3662821-assassin-wallpapers.jpg
DNS Servers: 93.89.159.2 - 1.1.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{EA613B87-0798-4766-A039-C81BCAB8DFFE}C:\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) C:\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{037281B6-55E4-4E6B-A41A-47FB34BA2F4D}C:\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) C:\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{3AF034F5-FB2A-4042-9468-5CA7E033B4E7}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{05F735C0-7169-4805-A4E0-4555305419CD}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{2FFC3A6B-0473-4092-ABE1-5D39FD53A17E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{F2405F33-0AF3-431E-9652-1707CA01F1D4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A1F83455-609A-47AF-9B5A-D69FC68CF4A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Millie\Millie.exe () [File not signed]
FirewallRules: [{6C593DAD-8395-4F11-A590-F76DDDC9FE92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Millie\Millie.exe () [File not signed]
FirewallRules: [UDP Query User{302C507C-4DA4-49AB-B64A-8352BC41950E}C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{06AC170C-54F5-41D1-B2B9-6B5A0A08E0E1}C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{10D5C4D9-2E6B-4B67-A476-5281B56C5955}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{502EF961-5B71-4A32-969F-BA5D52140A00}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [UDP Query User{7EC9CC81-508D-4D45-8E81-DB52CCF2436E}C:\program files\microsoft office\office16\winword.exe] => (Allow) C:\program files\microsoft office\office16\winword.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{98050A6F-1373-48CC-83FA-4BBE97A3F9B5}C:\program files\microsoft office\office16\winword.exe] => (Allow) C:\program files\microsoft office\office16\winword.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3741751F-5BEE-45CB-837A-59E83B005968}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F9B04128-D8B4-493D-B96B-5A6BAD2795ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{7DA08C82-AB8E-46FE-83A4-6CCF7A8EAA24}C:\users\david\appdata\roaming\utorrent\updates\3.5.3_44494.exe] => (Allow) C:\users\david\appdata\roaming\utorrent\updates\3.5.3_44494.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{0329B052-4C9E-40FD-AD0B-127686849CB4}C:\users\david\appdata\roaming\utorrent\updates\3.5.3_44494.exe] => (Allow) C:\users\david\appdata\roaming\utorrent\updates\3.5.3_44494.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{32FF5D5F-AE6F-4F4E-9C6A-A44362281CD3}] => (Allow) C:\Users\David\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{30431157-60F2-404A-B781-4FC5A1FE4407}] => (Allow) C:\Users\David\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{AFC1F7F7-ED3C-4777-85B5-65678200DA35}C:\users\david\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\david\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{747FE15F-A487-4A02-A70A-A9E98014E198}C:\users\david\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\david\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{11522C14-B13A-4060-A2EB-03E1287F5182}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{4894D9CD-74EE-4F4D-B682-799DCF973BD9}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{28C2D19F-C193-4A94-97AD-664B24F1C348}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{72CA7C7D-10FB-4D96-B4E3-9AC3B9BB9EDB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{68FBEF50-D0C9-4B70-A3DA-FA8AB9F5C96E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{C03AB2BE-B25F-4357-9117-35F841408DDF}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2D1F0F24-59F0-49DC-9CBA-9166ED79341E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{215B305F-3793-4710-866F-AAAFC4D5A75D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{9526E725-5332-4491-900A-A5B3E00C15F8}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{95745F81-0967-4BC0-A61E-3A3E1F4555A8}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0AFE615F-ABD8-45F3-9AE8-F7117FC64CDC}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe (Plays.tv, Inc -> Copyright (c) 2018 Plays.tv, LLC)
FirewallRules: [{DE2DE3B5-8173-4FAC-896C-9FAC3AE29D46}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe (Plays.tv, Inc -> Copyright (c) 2018 Plays.tv, LLC)
FirewallRules: [{42216372-4873-4D06-8A71-3F90277E2E73}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{E09D3792-7521-4348-A40C-8F04F7EBBEC1}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{950A489C-6DC1-4369-A3DC-3DFAE6527798}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{60D42B90-ECC4-40D2-A604-71943C273C20}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{9587D4F0-7BDE-42AA-8234-5B4948E5084A}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{320922C1-99B3-4866-95D5-6D0C8792482C}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{52E113A4-D189-4112-826B-9019169D0858}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{B8A860D9-E58B-40DD-B63F-07CE2BEC9BA5}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{6F3AD882-084D-4F82-88D9-937FCC53BB4C}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe () [File not signed]
FirewallRules: [{42B2AA49-B47A-4C28-9490-87830D930524}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe () [File not signed]
FirewallRules: [TCP Query User{1A5E115A-10A8-458D-B3A0-0D08C151128D}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{A33F85DC-8C02-40B1-99C9-2E2A9F5F0587}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{ED2F8AD3-A6E8-4A1C-BE03-77568C5A9C31}] => (Allow) C:\Program Files\VueScan\vuescan.exe (Hamrick Software) [File not signed]
FirewallRules: [{24DF0275-31DF-480F-95AD-E9A62D964EA7}] => (Allow) C:\Program Files\VueScan\vuescan.exe (Hamrick Software) [File not signed]
FirewallRules: [{5A06E980-6786-4094-BB82-A017F5B88366}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{402159DD-49FA-48BE-83F6-0781AE48CA75}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{BD235299-EF0E-4922-B1EC-FC5A352AB385}] => (Allow) D:\Hry\Assassins Creed Odyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{55507DCB-965C-4C75-9957-E8B41A17E22D}] => (Allow) D:\Hry\Assassins Creed Odyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{C41E8E36-C825-4F32-A6E8-C2CEFE79A756}] => (Allow) C:\Users\David\AppData\Local\Programs\Opera\69.0.3686.36\opera.exe => No File
FirewallRules: [{6AC5F6E1-A6EE-44B6-9E94-4043E98FCE9E}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{EACE1279-430A-4FF2-950B-4B9CAE44F58A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F7C9A6A1-7EB0-467B-B0BB-558FD3575E8F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B8342AAF-69AB-4EA6-9BA0-29F4957FE7C2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BE24539C-7D43-4978-87E1-9FEC0CA6F023}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{95E3E803-D9F6-4CDB-98CF-CB0C36EBCB92}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{F46D583F-BFFD-4328-A985-6E194B84E4B6}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{40136A8F-97F3-4C74-85D5-E12E64BD19AF}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )

==================== Restore Points =========================

30-06-2020 21:33:41 Naplánovaný kontrolní bod
11-07-2020 18:23:42 Naplánovaný kontrolní bod
16-07-2020 00:25:16 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (07/18/2020 07:15:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program AvastUI.exe verze 20.5.5410.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: d00

Čas spuštění: 01d65cf24712cef6

Čas ukončení: 60000

Cesta k aplikaci: C:\Program Files\AVAST Software\Avast\AvastUI.exe

ID hlášení: 60938f08-f6c9-43b8-8b11-68308ab3f249

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (07/18/2020 12:57:36 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/18/2020 12:47:26 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/17/2020 09:54:15 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/17/2020 11:07:01 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/17/2020 05:05:33 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/17/2020 05:05:32 AM) (Source: SecurityCenter) (EventID: 18) (User: )
Description: Službě Centrum zabezpečení Windows se nepodařilo načíst instance objektu FirewallProduct z úložiště dat.

Error: (07/17/2020 04:23:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Wow.exe, verze: 8.3.0.34963, časové razítko: 0x5ef67f34
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.815, časové razítko: 0xb29ecf52
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000072a6
ID chybujícího procesu: 0xed0
Čas spuštění chybující aplikace: 0x01d65ba24ac86fe5
Cesta k chybující aplikaci: C:\World of Warcraft\_retail_\Wow.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: cd41ac09-86f2-4597-9eb6-9da8ddd1c7d7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (07/18/2020 01:38:10 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/18/2020 01:38:10 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/18/2020 01:38:10 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/18/2020 01:38:10 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/18/2020 01:38:10 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/18/2020 01:38:10 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/18/2020 01:38:10 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/18/2020 01:38:10 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===================================

Date: 2020-07-18 19:23:54.717
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-18 19:23:54.714
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-18 19:23:54.612
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-18 19:23:54.609
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-18 19:23:51.006
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-18 19:23:51.003
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-18 19:23:06.979
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-18 19:23:06.973
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. P2.80 01/26/2016
Motherboard: ASRock Z170 Extreme4
Processor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Percentage of memory in use: 65%
Total physical RAM: 8137.27 MB
Available physical RAM: 2772.89 MB
Total Virtual: 18889.27 MB
Available Virtual: 10233.13 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.18 GB) (Free:37.96 GB) NTFS
Drive d: () (Fixed) (Total:931.5 GB) (Free:211.82 GB) NTFS

\\?\Volume{153a7e41-9717-4114-b409-806cd10646b5}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{a57f3c44-5d42-4e0e-a549-233e2a1c34ff}\ () (Fixed) (Total:0.84 GB) (Free:0.41 GB) NTFS
\\?\Volume{138a95a2-35ad-430f-91a6-0617b595d599}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Odkaz na messengeru, odchycen antivirem

#4 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Spustit skenovani a pockaj na dokoncenie
  • V pripade nalezov nechaj vsetky nalezy oznacene a klikni na Karantena (ak nie su ziadne nalezy, tak na Spustit zakladni opravu)
  • V pripade, ze sa detekuje aj "predinstalovany software", tieto programy mozes, ale nemusis zmazat (toto nie su skodlive programy, ale iba zbytocnosti)
  • Potvrd vyzvu, pockaj na dokoncenie a potvrd restartovanie PC
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah skopiruj a vloz do dalsej odpovede
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
bojimso
2. Stupeň Varování
Příspěvky: 282
Registrován: 08 bře 2007 14:56

Re: Odkaz na messengeru, odchycen antivirem

#5 Příspěvek od bojimso »

Hotovo, zde je vysledek.

# -------------------------------
# Malwarebytes AdwCleaner 8.0.6.0
# -------------------------------
# Build: 06-24-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 07-18-2020
# Duration: 00:00:28
# OS: Windows 10 Home
# Scanned: 31836
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Odkaz na messengeru, odchycen antivirem

#6 Příspěvek od Conder »

Poprosim o obidva nove logy z FRST.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
bojimso
2. Stupeň Varování
Příspěvky: 282
Registrován: 08 bře 2007 14:56

Re: Odkaz na messengeru, odchycen antivirem

#7 Příspěvek od bojimso »

Logfile of random's system information tool 1.10 (written by random/random)
Run by David at 2020-07-21 05:28:22
Microsoft Windows 10 Home
System drive C: has 35 GB (15%) free of 228 GB
Total RAM: 8137 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:28:24, on 21.07.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files (x86)\Gyazo\GyStation.exe
C:\Program Files (x86)\Battle.net\Battle.net.exe
C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
C:\ProgramData\Battle.net\Agent\Agent.7117\Agent.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
C:\Program Files (x86)\Battle.net\Battle.net.exe
C:\Program Files (x86)\Battle.net\Battle.net.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Battle.net\Battle.net.exe
C:\Program Files\trend micro\David.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL
O4 - HKCU\..\Run: [OneDrive] "C:\Users\David\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
O4 - HKCU\..\Run: [Battle.net] "C:\Program Files (x86)\Battle.net\Battle.net.exe" --autostarted
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TSMApplication] "C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Ubisoft Game Launcher] "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" -uplay_silent
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: chrome.lnk = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files\Microsoft Office\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Export do &Tahiti - C:\Program Files (x86)\LightComp eDoklady Skenováni\iehelper.html
O8 - Extra context menu item: Poslat do On&eNotu - res://C:\Program Files\Microsoft Office\Office16\ONBttnIE.dll/105
O9 - Extra button: Poslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Poslat do On&eNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_12ceb28a - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HPSmartDeviceAgentBase - Unknown owner - c:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: Adaptér výkonu rozhraní WMI (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11570 bytes

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-96807a1c-15ac-4fdd-b4f8-95516cccc52c -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-7bdf6af2-0755-4372-afc7-a5ef72d0f27f -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-5c4fe196-0e6e-47cb-ae7f-290f0ecd98a0 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-37f16b32-47af-4999-b377-ca6f2a0741a3 -LifetimeId:97fbdcb5-63d5-414e-8f5a-fdc1469336c3 -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-644de057-873e-4062-9f27-4cbd5f6cea81 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-2710e808-ad23-4e84-82e8-e90798246a22 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-ac2d3ad3-94ce-4f86-a8c1-cb429deb56a3 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-cd9a472a-a2db-4d63-b276-2bc586a384c3 -LifetimeId:5bf7de1a-f787-4981-abd6-30056be1f913 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache

C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
dashost.exe {4149bd72-827b-4027-a3593079aae131ee}
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV

C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\Windows\system32\IProsetMonitor.exe
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc

C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k netsvcs
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="657BB4E2-6F8D-649D-1559-3BE26EDD4B9B" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding


C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager

C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\AUDIODG.EXE 0x6ac
C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20062.97.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\TiltWheelMouse.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Gyazo\GyStation.exe"
"C:\Program Files (x86)\Battle.net\Battle.net.exe" --autostarted
"C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe"
"C:\ProgramData\Battle.net\Agent\Agent.7117\Agent.exe" --session=10742744216348722612
"C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe" -uplay_silent
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Battle.net\Battle.net.exe" --type=gpu-process --field-trial-handle=3708,10741070295965515213,18370517472607422120,131072 --disable-features=HardwareMediaKeyHandling --no-sandbox --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200720T152335.537883.log" --log-severity=error --product-version="Battle.net/1.23.1.12152 (retail) Chrome/75.0.3770.100" --lang=en-US --watch-browser-pid=6460 --gpu-preferences=KAAAAAAAAADgAAAgAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200720T152335.537883.log" --service-request-channel-token=17601684528977774924 --mojo-platform-channel-handle=3744 /prefetch:2 --battle-net-helper=Battle.net.12152
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\David\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\David\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\David\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=84.0.4147.89 --initial-client-data=0xd4,0xd8,0xdc,0xb0,0xe0,0x7ffbf82eed20,0x7ffbf82eed30,0x7ffbf82eed40
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --mojo-platform-channel-handle=1520 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1812 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3464 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3608 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3612 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3684 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3676 /prefetch:1
"C:\Program Files (x86)\Battle.net\Battle.net.exe" --type=utility --field-trial-handle=3708,10741070295965515213,18370517472607422120,131072 --disable-features=HardwareMediaKeyHandling --lang=en-US --service-sandbox-type=network --no-sandbox --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200720T152335.537883.log" --log-severity=error --product-version="Battle.net/1.23.1.12152 (retail) Chrome/75.0.3770.100" --lang=en-US --watch-browser-pid=6460 --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200720T152335.537883.log" --service-request-channel-token=17206002983605736839 --mojo-platform-channel-handle=4944 /prefetch:8 --battle-net-helper=Battle.net.12152
"C:/Program Files (x86)/Ubisoft/Ubisoft Game Launcher/UplayWebCore.exe" --type=renderer --no-sandbox --disable-features=TouchpadAndWheelScrollLatching --service-pipe-token=16F131032D8777CA08962CCAD0F2B9D2 --lang=en-US --locales-dir-path="C:/Program Files (x86)/Ubisoft/Ubisoft Game Launcher/locales/1/" --log-file="C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\debug.log" --disable-spell-checking --enable-system-flash --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=16F131032D8777CA08962CCAD0F2B9D2 --renderer-client-id=4 --mojo-platform-channel-handle=2448 /prefetch:1
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --lang=cs --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4696 /prefetch:8
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=8988,7738554054722908109,16149548239320000415,131072 --no-sandbox --log-file="C:\Users\David\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.5.2415)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAMAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --service-request-channel-token=6232121441682075693 --mojo-platform-channel-handle=8732 /prefetch:2
"C:\WINDOWS\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=140 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10064 /prefetch:1
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20070.10002.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
taskhostw.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=389 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6832 /prefetch:1
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=439 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7876 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=440 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8068 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1544,177652965155831111,16264079595141619586,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=453 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5716 /prefetch:1
"C:\Program Files (x86)\Battle.net\Battle.net.exe" --type=renderer --no-sandbox --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200720T152335.537883.log" --field-trial-handle=3708,10741070295965515213,18370517472607422120,131072 --disable-features=HardwareMediaKeyHandling --lang=en-US --log-file="C:\Users\David\AppData\Local\Battle.net\Logs\libcef-20200720T152335.537883.log" --log-severity=error --product-version="Battle.net/1.23.1.12152 (retail) Chrome/75.0.3770.100" --disable-spell-checking --uncaught-exception-stack-size=10 --watch-browser-pid=6460 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=16771114179537381704 --renderer-client-id=12 --mojo-platform-channel-handle=820 /prefetch:1 --battle-net-helper=Battle.net.12152

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc

C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\David\Desktop\RSITx64.exe"
ig.exe reseed

=========Mozilla firefox=========

ProfilePath - C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\3911gjs4.default

prefs.js - "browser.startup.homepage" - "https://www.facebook.com/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=4.0.0-dev]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13 2177328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13 1522480]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-14 84992]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-09-17 16404224]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2013-04-09 241152]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-06-23 36352]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2020-07-07 109160]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2018-11-02 3942936]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\David\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2020-02-07 1573224]
"Gyazo"=C:\Program Files (x86)\Gyazo\GyStation.exe [2018-10-04 1384840]
"Battle.net"=C:\Program Files (x86)\Battle.net\Battle.net.exe [2020-07-17 1136104]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-10-16 24552064]
"TSMApplication"=C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [2020-05-11 1623040]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2020-02-09 365160]
"Ubisoft Game Launcher"=C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [2020-07-17 471360]

C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"VIDC.RTV1"=rtvcvfw64.dll
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2020-07-18 20:59:45 ----A---- C:\WINDOWS\system32\drivers\farflt.sys
2020-07-18 20:39:16 ----D---- C:\AdwCleaner
2020-07-17 05:09:31 ----D---- C:\WINDOWS\LastGood
2020-07-17 05:08:08 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-07-17 05:08:08 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2020-07-17 05:08:08 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-07-17 05:08:08 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2020-07-17 05:08:08 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2020-07-17 05:08:08 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-07-17 05:08:08 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2020-07-17 05:08:08 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-07-17 05:08:08 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2020-07-17 05:08:08 ----A---- C:\WINDOWS\system32\OpenCL.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\nvdispgenco6445167.dll
2020-07-17 05:08:07 ----A---- C:\WINDOWS\system32\nvdispco6445167.dll
2020-07-17 05:08:06 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2020-07-17 05:08:06 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2020-07-17 05:08:06 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2020-07-17 05:08:06 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2020-07-17 05:08:06 ----A---- C:\WINDOWS\system32\nvcuda.dll
2020-07-17 05:05:39 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2020-07-17 05:05:33 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2020-07-17 05:02:42 ----A---- C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-07-17 05:02:42 ----A---- C:\WINDOWS\system32\drivers\NvModuleTracker.sys
2020-07-16 00:35:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2020-07-16 00:35:55 ----A---- C:\WINDOWS\SYSWOW64\ConsoleLogon.dll
2020-07-16 00:35:55 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-16 00:35:55 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-16 00:35:55 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-07-16 00:35:55 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-16 00:35:51 ----A---- C:\WINDOWS\system32\APHostService.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\SYSWOW64\HoloShellRuntime.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-16 00:35:50 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-07-16 00:35:49 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-07-16 00:35:48 ----A---- C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-16 00:35:48 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-16 00:35:48 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-07-16 00:35:47 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2020-07-16 00:35:47 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2020-07-16 00:35:47 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-16 00:35:46 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-16 00:35:46 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-16 00:35:46 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\PrintWSDAHost.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-07-16 00:35:42 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-07-16 00:35:41 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-07-16 00:35:41 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-07-16 00:35:41 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiverExt.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\fdWSD.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2020-07-16 00:35:40 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\tsmf.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\tsgqec.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2020-07-16 00:35:40 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-16 00:35:39 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-07-16 00:35:38 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-07-16 00:35:38 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\werui.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\StorSvc.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\fdWSD.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\easwrt.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\dialserver.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\dialclient.dll
2020-07-16 00:35:37 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2020-07-16 00:35:36 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-07-16 00:35:36 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-07-16 00:35:36 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-07-16 00:35:32 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-07-16 00:35:32 ----A---- C:\WINDOWS\system32\upnphost.dll
2020-07-16 00:35:32 ----A---- C:\WINDOWS\system32\upnpcont.exe
2020-07-16 00:35:32 ----A---- C:\WINDOWS\system32\udhisapi.dll
2020-07-16 00:35:32 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-07-16 00:35:32 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowProxy.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Print.Workflow.Source.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\msimg32.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\keyiso.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2020-07-16 00:35:31 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Management.Workplace.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\sethc.exe
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\PickerPlatform.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\EaseOfAccessDialog.exe
2020-07-16 00:35:30 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\wpnclient.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2020-07-16 00:35:29 ----A---- C:\WINDOWS\SYSWOW64\DiagnosticInvoker.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Preview.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\windows.applicationmodel.datatransfer.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\useractivitybroker.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\ResourcePolicyClient.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2020-07-16 00:35:24 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\SystemUWPLauncher.exe
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\SystemEventsBrokerClient.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\AppExtension.dll
2020-07-16 00:35:23 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\SystemSettings.DataModel.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2020-07-16 00:35:22 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2020-07-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\rasapi32.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\pku2u.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\nlasvc.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\nlaapi.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\ncsi.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Family.Client.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2020-07-16 00:35:21 ----A---- C:\WINDOWS\system32\efswrt.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\usermgr.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\msimg32.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\mf3216.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\lpk.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\LockController.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\fontsub.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\edgeIso.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\dciman32.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\AxInstUI.exe
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2020-07-16 00:35:15 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\WerFault.exe
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\weretw.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\wer.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\utcutil.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\sechost.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\Faultrep.dll
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-07-16 00:35:14 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\wdigest.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\schannel.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\profsvc.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\oleaut32.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\logoncli.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\keyiso.dll
2020-07-16 00:35:13 ----A---- C:\WINDOWS\system32\CoreShell.dll
2020-07-16 00:35:12 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2020-07-16 00:35:12 ----A---- C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-16 00:35:12 ----A---- C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-16 00:35:12 ----A---- C:\WINDOWS\system32\twinui.dll
2020-07-16 00:35:12 ----A---- C:\WINDOWS\system32\twinapi.dll
2020-07-16 00:35:11 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-07-16 00:35:11 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-07-16 00:35:11 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\shell32.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\sethc.exe
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\NotificationController.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\MtcModel.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\dcomp.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-16 00:35:10 ----A---- C:\WINDOWS\system32\CaptureService.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\win32u.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\win32k.sys
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\user32.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\SHCore.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\psmsrv.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\PickerPlatform.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\PeopleBand.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-16 00:35:09 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\wpnclient.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\wpnapps.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-07-16 00:35:08 ----A---- C:\WINDOWS\system32\Geolocation.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\WindowManagement.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2020-07-16 00:35:03 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\vaultcli.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\msxml6r.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\ISM.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\InputHost.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\FntCache.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\DWrite.dll
2020-07-16 00:35:02 ----A---- C:\WINDOWS\system32\dosvc.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\msxml6.dll
2020-07-16 00:35:01 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\useractivitybroker.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\AppExtension.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\AppContracts.dll
2020-07-16 00:35:00 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\ShareHost.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\cdprt.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-16 00:34:59 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\StartTileData.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\netman.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\kernel32.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-16 00:34:58 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-16 00:34:58 ----A---- C:\WINDOWS\splwow64.exe
2020-07-16 00:34:58 ----A---- C:\WINDOWS\explorer.exe
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Wpc.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-16 00:34:57 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-07-16 00:25:34 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-07-16 00:25:32 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-07-14 13:47:40 ----A---- C:\WINDOWS\system32\aswBoot.exe
2020-07-14 13:47:30 ----A---- C:\WINDOWS\system32\drivers\aswArDisk.sys
2020-07-14 13:46:24 ----ASH---- C:\pagefile.sys
2020-07-07 21:33:26 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2020-07-07 21:33:26 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2020-07-04 12:50:37 ----D---- C:\ProgramData\BlueStacks
2020-07-04 12:50:33 ----D---- C:\Program Files\BlueStacks
2020-07-02 02:14:59 ----A---- C:\WINDOWS\system32\drivers\MbamChameleon.sys
2020-07-02 02:01:35 ----D---- C:\Users\David\AppData\Roaming\Opera Software
2020-06-30 05:17:40 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2020-06-29 21:07:52 ----A---- C:\WINDOWS\system32\drivers\BthA2dp.sys
2020-06-29 06:48:56 ----D---- C:\FRST
2020-06-29 06:45:56 ----D---- C:\rsit

======List of files/folders modified in the last 1 month======

2020-07-21 05:28:24 ----D---- C:\WINDOWS\Prefetch
2020-07-21 05:28:23 ----D---- C:\Program Files\trend micro
2020-07-21 05:28:22 ----D---- C:\Users\David\AppData\Roaming\uTorrent
2020-07-21 05:25:32 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-07-21 05:23:17 ----D---- C:\WINDOWS\Temp
2020-07-21 05:16:52 ----AD---- C:\Users\David\AppData\Roaming\Curse Client
2020-07-21 04:55:10 ----D---- C:\Users\David\AppData\Roaming\slobs-client
2020-07-21 04:34:00 ----D---- C:\WINDOWS\system32\sru
2020-07-20 23:50:56 ----D---- C:\WINDOWS\AppReadiness
2020-07-20 18:28:10 ----D---- C:\WINDOWS\system32\catroot2
2020-07-20 17:29:19 ----SHD---- C:\WINDOWS\Installer
2020-07-20 17:29:19 ----D---- C:\ProgramData\Skype
2020-07-20 17:29:18 ----RD---- C:\Program Files (x86)\Skype
2020-07-20 17:29:18 ----D---- C:\Program Files (x86)\Common Files
2020-07-20 17:29:07 ----SHD---- C:\System Volume Information
2020-07-20 17:25:10 ----D---- C:\ProgramData\NVIDIA
2020-07-20 00:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2020-07-19 20:40:29 ----D---- C:\WINDOWS\system32\SleepStudy
2020-07-19 19:12:33 ----D---- C:\WINDOWS\system32\config
2020-07-19 19:12:30 ----RD---- C:\WINDOWS\Microsoft.NET
2020-07-19 13:26:02 ----D---- C:\Users\David\AppData\Roaming\Skype
2020-07-19 01:49:14 ----D---- C:\Users\David\AppData\Roaming\vlc
2020-07-19 00:18:06 ----HD---- C:\Program Files\WindowsApps
2020-07-18 20:59:48 ----D---- C:\WINDOWS\system32\drivers
2020-07-18 14:31:08 ----D---- C:\WINDOWS\WinSxS
2020-07-18 14:30:54 ----D---- C:\WINDOWS\system32\DriverStore
2020-07-18 14:30:54 ----D---- C:\WINDOWS\System32
2020-07-18 14:30:54 ----D---- C:\WINDOWS\INF
2020-07-18 00:47:52 ----AD---- C:\Program Files (x86)\Battle.net
2020-07-17 21:57:00 ----AD---- C:\World of Warcraft
2020-07-17 11:21:59 ----D---- C:\ProgramData\AVAST Software
2020-07-17 11:07:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-17 05:09:33 ----D---- C:\WINDOWS\SysWOW64
2020-07-17 05:09:31 ----D---- C:\Windows
2020-07-17 05:03:19 ----D---- C:\ProgramData\NVIDIA Corporation
2020-07-17 05:03:07 ----D---- C:\WINDOWS\system32\Tasks
2020-07-17 05:02:52 ----D---- C:\Program Files\NVIDIA Corporation
2020-07-17 05:02:52 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2020-07-16 17:05:22 ----RSD---- C:\WINDOWS\assembly
2020-07-16 02:15:54 ----D---- C:\WINDOWS\SYSWOW64\en-US
2020-07-16 02:15:54 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-07-16 02:15:53 ----SD---- C:\WINDOWS\system32\DiagSvcs
2020-07-16 02:15:53 ----D---- C:\WINDOWS\SystemResources
2020-07-16 02:15:53 ----D---- C:\WINDOWS\system32\oobe
2020-07-16 02:15:53 ----D---- C:\WINDOWS\system32\en-US
2020-07-16 02:15:53 ----D---- C:\WINDOWS\system32\cs-CZ
2020-07-16 02:15:52 ----D---- C:\WINDOWS\ShellExperiences
2020-07-16 02:15:52 ----D---- C:\WINDOWS\bcastdvr
2020-07-16 02:15:52 ----D---- C:\Program Files\Windows Mail
2020-07-16 02:15:52 ----D---- C:\Program Files\Common Files\System
2020-07-16 02:15:52 ----D---- C:\Program Files (x86)\Windows Mail
2020-07-16 00:38:58 ----D---- C:\WINDOWS\CbsTemp
2020-07-16 00:17:44 ----D---- C:\WINDOWS\Logs
2020-07-14 13:47:40 ----HD---- C:\WINDOWS\ELAMBKUP
2020-07-07 18:27:00 ----A---- C:\WINDOWS\system32\nvapi64.dll
2020-07-05 21:12:41 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2020-07-05 21:12:41 ----A---- C:\WINDOWS\system32\nvcpl.dll
2020-07-05 21:12:39 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2020-07-05 21:12:39 ----A---- C:\WINDOWS\system32\nvshext.dll
2020-07-05 21:12:38 ----A---- C:\WINDOWS\system32\nvmctray.dll
2020-07-05 21:12:38 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2020-07-05 21:12:38 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2020-07-04 12:53:25 ----RD---- C:\Program Files
2020-07-04 12:53:25 ----HD---- C:\ProgramData
2020-07-01 22:58:22 ----D---- C:\Users\David\AppData\Roaming\discord
2020-06-29 06:09:40 ----D---- C:\WINDOWS\Minidump
2020-06-23 16:20:44 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2020-06-23 16:20:40 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2020-06-23 16:20:40 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-06-23 01:08:10 ----A---- C:\WINDOWS\system32\SETDD4F.tmp
2020-06-22 03:45:13 ----A---- C:\WINDOWS\system32\nvhdagenco6420103.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2020-07-14 37136]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2020-07-07 195648]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2020-07-07 60480]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2020-02-25 16304]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2020-07-07 84848]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2020-07-07 323272]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-06-23 1455552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-03-12 40960]
R1 AsrAppCharger;AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [2011-11-07 17192]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2020-07-07 205880]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2020-07-07 235584]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2020-07-07 42768]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2020-07-07 514448]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2020-07-07 109272]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2020-07-07 851600]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2020-07-07 466232]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\WINDOWS\system32\drivers\mbae64.sys [2020-07-02 153312]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2020-07-07 175192]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2020-07-07 216816]
R2 BlueStacksDrv;BlueStacks Hypervisor; \??\C:\Program Files\BlueStacks\BstkDrv_bgp.sys [2020-06-13 315976]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-05-14 457216]
R2 MBAMChameleon;MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [2020-07-18 216056]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-02-14 117264]
R3 dtlitescsibus;@oem26.inf,%DisplayName%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2020-02-09 42256]
R3 dtliteusbbus;@oem37.inf,%DisplayName%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2020-02-09 59360]
R3 e1dexpress;@oem27.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [2019-02-04 567880]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-09-17 4603136]
R3 MBAMFarflt;MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [2020-07-18 197264]
R3 MBAMProtection;MBAMProtection; \??\C:\WINDOWS\system32\DRIVERS\mbam.sys [2020-07-18 73368]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2020-07-18 248968]
R3 MBAMWebProtection;MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [2020-07-18 131232]
R3 MEIx64;@oem12.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2018-05-06 228992]
R3 NVHDA;@oem40.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2020-06-22 222112]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_87880f58b4724c5c\nvlddmkm.sys [2020-07-07 24682392]
R3 NvModuleTracker;@oem30.inf,%ServiceName%;NvModuleTracker; C:\WINDOWS\System32\drivers\NvModuleTracker.sys [2020-03-04 50592]
R3 nvvad_WaveExtensible;@oem22.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2019-03-19 69840]
R3 nvvhci;@oem8.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-03-11 67456]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 MbamElam;MbamElam; C:\WINDOWS\system32\DRIVERS\MbamElam.sys [2020-07-02 19912]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2020-04-20 151352]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-12 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-15 18432]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2020-03-12 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-03-12 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-03-12 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-03-12 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-03-12 99328]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 e1i65x64;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\System32\drivers\e1i65x64.sys [2019-03-19 553984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-21 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-10-04 64000]
S3 HPEWSFXBULK;HPEWSFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [2016-09-13 29248]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-04-20 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-15 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-14 986936]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2017-08-27 14024]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-03-19 33592]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2020-07-07 356824]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2020-07-14 58048]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_12ceb28a;Uživatelská služba platformy připojených zařízení_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-06-23 18856]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2015-05-07 272352]
R2 MBAMService;Malwarebytes Service; C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe [2020-07-02 6970968]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-05-07 874472]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2020-07-05 874472]
R2 OneSyncSvc_12ceb28a;Hostitel synchronizace_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2020-07-07 6514072]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_12ceb28a;Uživatelská služba schránky_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2020-02-09 4506728]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_12ceb28a;Data kontaktů_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-07 153752]
S2 HPSmartDeviceAgentBase;HPSmartDeviceAgentBase; c:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe [2017-10-25 68608]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_12ceb28a;Agent Activation Runtime_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-20 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_12ceb28a;Uživatelská služba pro GameDVR a vysílání her_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_12ceb28a;Služba pro podporu uživatelů Bluetooth_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_12ceb28a;CaptureService_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_12ceb28a;ConsentUX_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-16 381152]
S3 CredentialEnrollmentManagerUserSvc_12ceb28a;CredentialEnrollmentManagerUserSvc_12ceb28a; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-16 381152]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_12ceb28a;DeviceAssociationBroker_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_12ceb28a;DevicePicker_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_12ceb28a;Tok zařízení_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-07-16 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-09-21 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\elevation_service.exe [2020-07-11 1309680]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-07 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_12ceb28a;Služba zasílání zpráv_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.40\elevation_service.exe [2020-07-16 1580424]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2020-04-08 244936]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 242864]
S3 OverwolfUpdater;Overwolf Updater Windows SCM; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2019-09-15 2431816]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_12ceb28a;PrintWorkflow_12ceb28a; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2019-11-28 474256]

-----------------EOF-----------------
Nahoru
bojimso
2. Stupeň Varování
Příspěvky: 282
Registrován: 08 bře 2007 14:56

Re: Odkaz na messengeru, odchycen antivirem

#8 Příspěvek od bojimso »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-07-2020
Ran by David (administrator) on DESKTOP-7D2FQ0G (21-07-2020 05:29:32)
Running from C:\Users\David\Desktop
Loaded Profiles: David
Platform: Windows 10 Home Version 1909 18363.959 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <4>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7117\Agent.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <17>
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Intel Network Drivers -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Nota Inc. -> Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
(Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16404224 2015-09-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942936 2018-11-02] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [1384840 2018-10-04] (Nota Inc. -> Nota Inc.)
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1136104 2020-07-17] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [TSMApplication] => C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2020-05-11] () [File not signed]
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365160 2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Run: [Ubisoft Game Launcher] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [471360 2020-07-17] (Ubisoft Entertainment Sweden AB -> Ubisoft)
HKLM\...\Windows x64\Print Processors\hpcpp190: C:\Windows\System32\spool\prtprocs\x64\hpcpp190.dll [651176 2016-08-26] (HP Inc. -> HP Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp196: C:\Windows\System32\spool\prtprocs\x64\hpcpp196.dll [758000 2017-02-14] (HP Inc. -> HP Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp215: C:\Windows\System32\spool\prtprocs\x64\hpcpp215.dll [770232 2018-03-04] (HP Inc. -> HP Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp220: C:\Windows\System32\spool\prtprocs\x64\hpcpp220.dll [772280 2018-08-20] (HP Inc. -> HP Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp230: C:\Windows\System32\spool\prtprocs\x64\hpcpp230.dll [797832 2019-05-24] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\Windows\system32\HPMPW082.DLL [127624 2019-05-24] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\HPMLM190: C:\Windows\system32\hpmlm190.dll [310968 2018-08-20] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\HPMLM225: C:\Windows\system32\hpmlm225.dll [315528 2019-05-24] (HP Inc. -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\Installer\chrmstp.exe [2020-07-16] (Google LLC -> Google LLC)
Startup: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\chrome.lnk [2018-09-27]
ShortcutTarget: chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0BBED0A2-6DEE-4D1A-B7F5-B45DF33C72FD} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3339872 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
Task: {0C9BA02D-C39F-4C25-8CB3-FFAA5F64BEB1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {104B8479-2520-4DA4-81F8-5E3F3E9BBA8D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {1D44E45C-F9EE-4ECE-90F1-7189A0084E5A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1D7A9123-DE10-4848-BF3E-0A7AE7ED0B23} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [781808 2019-04-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {3906E0B8-DDDB-4B33-BFC5-F96E879E4D20} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {40FE9DE1-5C5B-42D5-9679-6D13C2740EA9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {430FEE59-1EE2-4DCE-A592-ABAC966AB81B} - System32\Tasks\Opera scheduled Autoupdate 1593648143 => C:\Users\David\AppData\Local\Programs\Opera\launcher.exe
Task: {4B515F5D-9B31-4DAD-ACFE-E132DDB5DAE8} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [752136 2020-06-18] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {4B5CFAC6-2DD7-4CAD-B746-784FEAC2AB2D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7F30558A-DBD9-475D-978F-8A0A9E95B26A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {90ACD96A-3CAD-4FEB-9905-3D55610C20E8} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9511A6F5-077F-4226-8E8A-A5D8D8C2693F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {952FF45B-D9C8-4257-8405-056578353803} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2018-10-04] (Nota Inc. -> Nota Inc.)
Task: {A5B5260C-77E7-4D9C-8B1F-EA765912E378} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A651D882-FF47-458A-A8A3-699C8A1EC3F1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A759CB3C-5883-47B3-A04F-A8F5F7D93DC5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {B6494C7C-46FF-4944-94A3-1209C263C877} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2018-10-04] (Nota Inc. -> Nota Inc.)
Task: {C2ABD97E-15AB-4077-BF0B-1F73CC68256D} - System32\Tasks\Opera scheduled assistant Autoupdate 1593648148 => C:\Users\David\AppData\Local\Programs\Opera\launcher.exe
Task: {C4B5A0E0-1D82-442E-9E73-146E56234B86} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_153_pepper.exe [1456128 2018-11-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {CBE51F93-5848-4293-8E76-337D9F0733E6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D3936408-0C8F-4EEA-BD6E-385B1F471175} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E2D294D6-E4D9-4AC0-98DB-381910868B51} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F10A0FAB-3E61-40F4-BB5B-A9E623F7C0E9} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2431816 2019-09-15] (Overwolf Ltd -> Overwolf LTD)
Task: {FEEB1248-CDD0-46F8-8D70-459B2F5E3C17} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-11-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 93.89.159.2 1.1.1.1
Tcpip\..\Interfaces\{b34a42e0-d16e-4479-92c1-0376d21a5832}: [DhcpNameServer] 93.89.159.2 1.1.1.1

Internet Explorer:
==================
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-07-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-07-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-07-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-07-12] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\David\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-10]

FireFox:
========
FF DefaultProfile: 3911gjs4.default
FF ProfilePath: C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\3911gjs4.default [2020-06-19]
FF Homepage: Mozilla\Firefox\Profiles\3911gjs4.default -> hxxps://www.facebook.com/
FF Notifications: Mozilla\Firefox\Profiles\3911gjs4.default -> hxxps://www.facebook.com
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=4.0.0-dev -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-12-10] (VideoLAN) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Default [2020-07-21]
CHR DownloadDir: C:\Users\David\Desktop
CHR Notifications: Default -> hxxps://www.misthub.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://facebook.com/
CHR StartupUrls: Default -> "hxxp://facebook.com/"
CHR DefaultSearchURL: Default -> hxxp://www.google.com/search?hl=en&q={searchTerms}
CHR DefaultSearchKeyword: Default -> google.cz_
CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR Extension: (BetterTTV) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-07-20]
CHR Extension: (Video Downloader PLUS) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-06-15]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-07-04]
CHR Extension: (Darkness - Beautiful Dark Themes) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\imilbobhamcfahccagbncamhpnbkaenm [2019-05-24]
CHR Extension: (Twitch Now) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2020-06-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Global Twitch Emotes) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgniedifoejifjkndekolimjeclnokkb [2020-06-15]
CHR Extension: (Chrome Media Router) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-17]
CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-06-03]
CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-28]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-11-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6514072 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [356824 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-07-14] (Avast Software s.r.o. -> AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S2 HPSmartDeviceAgentBase; c:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe [68608 2017-10-25] () [File not signed]
R2 MBAMService; C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-02] (Malwarebytes Inc -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-01] (HP Inc.) [File not signed]
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2431816 2019-09-15] (Overwolf Ltd -> Overwolf LTD)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-01] (HP Inc.) [File not signed]
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2019-11-28] (Rockstar Games, Inc. -> Rockstar Games)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [17192 2011-11-07] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-07-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205880 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-02-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [514448 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [466232 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [216816 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [323272 2020-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-06-13] (Bluestack Systems, Inc -> Bluestack System Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-07-02] (Malwarebytes Corporation -> Malwarebytes)
S3 HPEWSFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [29248 2016-09-13] (Hewlett-Packard Company -> Hewlett Packard)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-07-18] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197264 2020-07-18] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73368 2020-07-18] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-07-18] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [131232 2020-07-18] (Malwarebytes Inc -> Malwarebytes)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-21 05:29 - 2020-07-21 05:29 - 000000000 ____D C:\Users\David\Desktop\FRST-OlderVersion
2020-07-18 20:59 - 2020-07-18 20:59 - 000197264 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-07-18 20:39 - 2020-07-18 20:39 - 008420016 _____ (Malwarebytes) C:\Users\David\Desktop\adwcleaner_8.0.6.exe
2020-07-18 20:39 - 2020-07-18 20:39 - 000000000 ____D C:\AdwCleaner
2020-07-18 19:24 - 2020-07-18 19:25 - 000111717 _____ C:\Users\David\Desktop\Addition.txt
2020-07-18 19:22 - 2020-07-21 05:30 - 000024566 _____ C:\Users\David\Desktop\FRST.txt
2020-07-18 19:14 - 2020-07-21 05:29 - 002293760 _____ (Farbar) C:\Users\David\Desktop\FRST64.exe
2020-07-18 19:12 - 2020-07-18 19:12 - 001222144 _____ C:\Users\David\Desktop\RSITx64.exe
2020-07-17 05:09 - 2020-07-17 05:09 - 000000000 ____D C:\WINDOWS\LastGood
2020-07-17 05:08 - 2020-07-07 18:31 - 001780952 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-07-17 05:08 - 2020-07-07 18:31 - 001780952 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-07-17 05:08 - 2020-07-07 18:31 - 001371352 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-07-17 05:08 - 2020-07-07 18:31 - 001371352 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-07-17 05:08 - 2020-07-07 18:31 - 001086680 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-07-17 05:08 - 2020-07-07 18:31 - 001086680 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-07-17 05:08 - 2020-07-07 18:31 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-07-17 05:08 - 2020-07-07 18:31 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-07-17 05:08 - 2020-07-07 18:30 - 000456600 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-07-17 05:08 - 2020-07-07 18:30 - 000349936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 002076560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 001569680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 001486744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 001146264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000816368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000812432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000674032 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000670616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000655592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000555928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-07-17 05:08 - 2020-07-07 18:29 - 000541936 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 006652816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 005883280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 003901672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 002367720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 001722088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445167.dll
2020-07-17 05:08 - 2020-07-07 18:28 - 001482976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445167.dll
2020-07-17 05:08 - 2020-07-07 18:26 - 004716168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-07-17 05:05 - 2020-07-18 20:59 - 000131232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-07-17 05:05 - 2020-07-18 20:59 - 000073368 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-07-17 05:02 - 2020-03-04 14:54 - 001804784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-07-17 05:02 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-16 00:35 - 2020-07-16 00:35 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-16 00:35 - 2020-07-16 00:35 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-16 00:35 - 2020-07-16 00:35 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-16 00:35 - 2020-07-16 00:35 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-16 00:35 - 2020-07-16 00:35 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-16 00:35 - 2020-07-16 00:35 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-16 00:35 - 2020-07-16 00:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-16 00:34 - 2020-07-16 00:35 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-16 00:34 - 2020-07-16 00:34 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-16 00:34 - 2020-07-16 00:34 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-16 00:34 - 2020-07-16 00:34 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-16 00:34 - 2020-07-16 00:34 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-16 00:34 - 2020-07-16 00:34 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-16 00:34 - 2020-07-16 00:34 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-16 00:34 - 2020-07-16 00:34 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-16 00:34 - 2020-07-16 00:34 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-16 00:25 - 2020-06-30 06:32 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-16 00:25 - 2020-06-30 06:26 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-14 13:47 - 2020-07-14 13:47 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-07-14 13:47 - 2020-07-14 13:46 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-07-14 13:47 - 2020-07-07 21:33 - 000335976 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-07-09 19:16 - 2020-07-20 19:39 - 000000000 ____D C:\Users\David\Desktop\Vaníček hlášky
2020-07-07 21:33 - 2020-07-07 21:33 - 000216816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-07-07 21:33 - 2020-07-07 21:33 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-07-04 12:50 - 2020-07-04 12:53 - 000000000 ____D C:\ProgramData\BlueStacks
2020-07-04 12:50 - 2020-07-04 12:50 - 000000000 ____D C:\Program Files\BlueStacks
2020-07-02 02:15 - 2020-07-02 02:15 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-07-02 02:14 - 2020-07-18 20:59 - 000216056 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-07-02 02:02 - 2020-07-21 05:28 - 000003858 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1593648148
2020-07-02 02:02 - 2020-07-21 05:28 - 000003604 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1593648143
2020-07-02 02:02 - 2020-07-02 02:03 - 000000000 ____D C:\Users\David\AppData\Local\Opera Software
2020-07-02 02:01 - 2020-07-02 02:01 - 000000000 ____D C:\Users\David\AppData\Roaming\Opera Software
2020-06-30 05:17 - 2020-06-22 03:45 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-06-29 21:07 - 2020-03-12 01:46 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2020-06-29 07:06 - 2020-07-21 05:16 - 000000000 ____D C:\Users\David\AppData\Local\BitTorrentHelper
2020-06-29 06:48 - 2020-07-21 05:29 - 000000000 ____D C:\FRST
2020-06-29 06:45 - 2020-06-29 06:46 - 000000000 ____D C:\rsit
2020-06-29 06:09 - 2020-06-29 06:11 - 001211636 _____ C:\WINDOWS\Minidump\062920-7250-01.dmp
2020-06-29 06:09 - 2020-06-29 06:09 - 1140594067 _____ C:\WINDOWS\MEMORY.DMP
2020-06-22 14:41 - 2020-06-22 14:41 - 000002194 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Avast Passwords.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-21 05:28 - 2020-06-10 12:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-21 05:28 - 2020-06-10 12:31 - 000003286 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-21 05:28 - 2019-12-05 05:00 - 000002966 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2020-07-21 05:28 - 2019-09-21 13:41 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-21 05:28 - 2019-09-21 13:41 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-21 05:28 - 2019-09-21 13:41 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-21 05:28 - 2019-09-21 13:41 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-21 05:28 - 2019-09-21 13:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-21 05:28 - 2019-09-21 13:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-21 05:28 - 2019-09-21 13:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-21 05:28 - 2019-09-21 13:41 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-21 05:28 - 2019-09-21 13:41 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-21 05:28 - 2019-09-21 13:41 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-21 05:28 - 2019-09-21 13:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-07-21 05:28 - 2019-05-19 13:52 - 000000000 ____D C:\Program Files\trend micro
2020-07-21 05:28 - 2016-10-14 22:22 - 000000000 ____D C:\Users\David\AppData\Roaming\uTorrent
2020-07-21 05:25 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-21 05:25 - 2016-10-15 02:40 - 000000000 ____D C:\Users\David\AppData\Local\Battle.net
2020-07-21 05:16 - 2017-03-31 01:14 - 000000000 ____D C:\Users\David\AppData\Roaming\Curse Client
2020-07-21 04:55 - 2018-09-01 17:38 - 000000000 ____D C:\Users\David\AppData\Roaming\slobs-client
2020-07-20 23:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-20 20:43 - 2019-11-22 10:41 - 000093652 _____ C:\Users\David\Desktop\trollings.txt
2020-07-20 17:29 - 2017-11-18 22:32 - 000000000 ____D C:\Users\David\AppData\Local\Packages
2020-07-20 17:29 - 2017-03-16 19:55 - 000000000 ___RD C:\Program Files (x86)\Skype
2020-07-20 17:29 - 2016-12-22 18:02 - 000000000 ____D C:\ProgramData\Skype
2020-07-20 17:25 - 2017-08-17 09:21 - 000000000 ____D C:\ProgramData\NVIDIA
2020-07-20 17:24 - 2017-09-18 22:03 - 000000000 ____D C:\Users\David\AppData\Local\AVAST Software
2020-07-20 17:23 - 2016-10-24 21:54 - 000000000 ____D C:\Users\David\AppData\Local\Ubisoft Game Launcher
2020-07-19 20:40 - 2019-09-21 13:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-19 14:29 - 2020-06-04 03:18 - 000000000 ____D C:\Users\David\Desktop\Pat a Mat memes
2020-07-19 13:26 - 2016-10-16 17:34 - 000000000 ____D C:\Users\David\AppData\Roaming\Skype
2020-07-19 13:26 - 2016-10-15 02:52 - 000000000 ____D C:\Users\David\AppData\Local\CrashDumps
2020-07-19 01:49 - 2017-12-11 07:31 - 000000000 ____D C:\Users\David\AppData\Roaming\vlc
2020-07-19 00:18 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-18 20:59 - 2020-06-01 21:53 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-07-18 14:30 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-18 00:47 - 2016-10-15 02:35 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-07-17 21:58 - 2020-06-10 12:31 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-17 21:57 - 2016-12-26 15:43 - 000000000 ____D C:\World of Warcraft
2020-07-17 11:21 - 2016-10-14 19:43 - 000000000 ____D C:\ProgramData\AVAST Software
2020-07-17 11:07 - 2019-09-21 13:42 - 001695456 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-17 11:07 - 2019-03-19 13:55 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-17 11:07 - 2019-03-19 13:55 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-17 05:09 - 2016-10-14 19:34 - 000000000 ____D C:\Users\David\AppData\Local\NVIDIA
2020-07-17 05:05 - 2019-09-21 13:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-17 05:05 - 2019-03-19 06:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2020-07-17 05:03 - 2017-08-17 09:21 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-07-17 05:02 - 2017-08-17 09:20 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-07-17 05:02 - 2017-08-17 09:20 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-07-16 22:33 - 2016-10-07 13:13 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-16 12:18 - 2017-11-18 22:39 - 000000000 ___RD C:\Users\David\3D Objects
2020-07-16 12:18 - 2016-04-27 08:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-16 12:17 - 2019-09-21 13:31 - 000436632 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-16 02:15 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-16 00:38 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-14 13:47 - 2019-09-21 13:41 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-07-14 13:47 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-07-14 13:44 - 2017-03-23 18:53 - 000000000 ____D C:\Users\David\AppData\Local\ElevatedDiagnostics
2020-07-07 21:33 - 2020-04-22 03:11 - 000514448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-07-07 21:33 - 2019-01-14 17:24 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-07-07 21:33 - 2019-01-10 04:28 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-07-07 21:33 - 2019-01-10 04:28 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-07-07 21:33 - 2018-11-04 19:16 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-07-07 21:33 - 2017-11-21 13:05 - 000205880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-07-07 21:33 - 2016-10-14 19:45 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-07-07 21:33 - 2016-10-14 19:45 - 000466232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-07-07 21:33 - 2016-10-14 19:45 - 000323272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-07-07 21:33 - 2016-10-14 19:45 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-07-07 21:33 - 2016-10-14 19:45 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-07-07 18:27 - 2019-09-11 15:25 - 005399808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-07-06 01:26 - 2019-09-11 15:25 - 000058532 _____ C:\WINDOWS\system32\nvinfo.pb
2020-07-05 21:12 - 2017-08-17 09:21 - 005492712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 002633528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 001760232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 000991032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 000195560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 000121144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-07-05 21:12 - 2017-08-17 09:21 - 000084456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-07-04 12:53 - 2019-12-05 04:56 - 000002085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2020-07-04 12:53 - 2019-12-05 04:56 - 000001764 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2020-07-04 12:50 - 2019-12-05 04:43 - 000000000 ____D C:\Users\David\AppData\Local\BlueStacksSetup
2020-07-04 12:50 - 2019-12-02 06:40 - 000000000 ____D C:\Users\Public\BlueStacks
2020-07-04 12:50 - 2019-12-02 06:40 - 000000000 ____D C:\Users\David\AppData\Local\BlueStacks
2020-07-03 18:12 - 2017-08-17 09:21 - 009216447 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-07-02 02:37 - 2018-05-18 06:43 - 000000000 ____D C:\Users\David\AppData\Local\D3DSCache
2020-07-02 02:14 - 2020-02-17 12:26 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-07-02 02:14 - 2019-09-19 01:41 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-07-02 02:01 - 2016-10-14 22:22 - 000000876 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2020-07-01 22:58 - 2016-12-31 19:33 - 000000000 ____D C:\Users\David\AppData\Roaming\discord
2020-07-01 21:47 - 2016-10-20 22:47 - 000000000 ____D C:\Users\David\AppData\Local\Personify
2020-06-29 07:19 - 2019-09-21 13:34 - 000000000 ____D C:\Users\David
2020-06-29 06:09 - 2019-12-31 06:08 - 000000000 ____D C:\WINDOWS\Minidump
2020-06-24 20:09 - 2017-07-09 02:24 - 000000000 ____D C:\Users\David\AppData\Local\Overwolf
2020-06-23 16:20 - 2018-06-26 20:11 - 002754024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-06-23 16:20 - 2018-06-26 20:11 - 002122216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2020-06-23 16:20 - 2018-06-26 20:11 - 001295848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-06-23 01:08 - 2019-09-11 15:25 - 005383880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SETDD4F.tmp
2020-06-22 03:45 - 2019-09-11 15:25 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-06-22 03:45 - 2019-09-11 15:25 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-06-21 13:21 - 2020-06-15 20:30 - 000004608 _____ C:\Users\David\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Files in the root of some directories ========

2017-08-02 23:57 - 2018-04-05 16:53 - 000000006 _____ () C:\Users\David\AppData\Roaming\.nfe_lock
2019-10-05 23:29 - 2019-10-17 11:56 - 042738921 _____ () C:\Users\David\AppData\Roaming\gta5_patch.bin
2019-10-05 23:29 - 2019-10-05 23:29 - 000332800 _____ () C:\Users\David\AppData\Roaming\patcher.dll
2020-06-15 20:30 - 2020-06-21 13:21 - 000004608 _____ () C:\Users\David\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-12-18 23:22 - 2016-12-18 23:22 - 000029696 _____ () C:\Users\David\AppData\Local\MSGBOX.EXE

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
bojimso
2. Stupeň Varování
Příspěvky: 282
Registrován: 08 bře 2007 14:56

Re: Odkaz na messengeru, odchycen antivirem

#9 Příspěvek od bojimso »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-07-2020
Ran by David (21-07-2020 05:30:54)
Running from C:\Users\David\Desktop
Windows 10 Home Version 1909 18363.959 (X64) (2019-09-21 11:41:31)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3482348820-1896476200-1895645591-500 - Administrator - Disabled)
David (S-1-5-21-3482348820-1896476200-1895645591-1002 - Administrator - Enabled) => C:\Users\David
DefaultAccount (S-1-5-21-3482348820-1896476200-1895645591-503 - Limited - Disabled)
Guest (S-1-5-21-3482348820-1896476200-1895645591-501 - Limited - Disabled)
Mamka (S-1-5-21-3482348820-1896476200-1895645591-1004 - Limited - Enabled) => C:\Users\bejja
WDAGUtilityAccount (S-1-5-21-3482348820-1896476200-1895645591-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\uTorrent) (Version: 3.5.5.45704 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{50229C72-539F-4E65-BEB5-F0491C5074B7}) (Version: 22.2.1 - HP Inc.) Hidden
Adobe Flash Player 31 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
APP Shop v1.0.21 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.21 - ASRock Inc.)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
Assassin's Creed Odyssey (HKLM-x32\...\Uplay Install 5059) (Version: - Ubisoft)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft)
Audacity 2.2.1 (HKLM-x32\...\Audacity_is1) (Version: 2.2.1 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.5.2415 - Avast Software)
Batman - Arkham Origins (HKLM-x32\...\Batman - Arkham Origins_is1) (Version: - )
Batman Arkham Knight v.1.0.4.5 (HKLM-x32\...\Batman Arkham Knight_is1) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.215.0.1019 - BlueStack Systems, Inc.)
Browser (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Overwolf_jgbnfkaeklillfmfafgkodhlcnfdgkmjmjngaaof) (Version: 1.0.0.0 - Overwolf app)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.75.1088 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
CPUID CPU-Z 1.89 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.89 - CPUID, Inc.)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Čeština do hry The Evil Within včetně 3 DLC v1.1 (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Čeština do hry The Evil Within včetně 3 DLC v1.1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1114 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Deus Ex - Human Revolution version 1.0 (HKLM-x32\...\{1146E8F3-4057-4F46-B39C-D18AB4BB1523}_is1) (Version: 1.0 - Square Enix)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Fallout 4 v.1.1.30 (HKLM-x32\...\Fallout 4_is1) (Version: - )
foobar2000 v1.3.12 (HKLM-x32\...\foobar2000) (Version: 1.3.12 - Peter Pawlowski)
Game Summary (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Overwolf_nafihghfcpikebhfhdhljejkcifgbdahdhngepfb) (Version: 215.9.49 - Overwolf app)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.89 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.24.15 - Google Inc.) Hidden
gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version: - Richard)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Gyazo 3.4.1.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
HearthArena Companion (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Overwolf_eldaohcjmecjpkpdhhoiolhhaeapcldppbdgbnbc) (Version: 1.5.0.2 - Overwolf app)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hearthstone Deck Tracker (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\HearthstoneDeckTracker) (Version: 1.6.9 - HearthSim)
HPSmartDeviceAgentBase (HKLM-x32\...\{F7270182-8AD0-420F-92A3-52438ED810A9}) (Version: 1.1.0.0 - HP Inc)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{657DFCCF-B080-44B1-9AEA-61676011A1AE}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Logitech-kameraindstillinger (HKLM-x32\...\LogiUCDPP) (Version: 1.1.87.0 - Logitech Europe S.A.)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.40 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Mozilla Firefox 75.0 (x64 cs) (HKLM\...\Mozilla Firefox 75.0 (x64 cs)) (Version: 75.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.7.2 - Mozilla)
MSI Afterburner 4.6.1 (HKLM-x32\...\Afterburner) (Version: 4.6.1 - MSI Co., LTD)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM\...\{90160000-001F-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM\...\{90160000-001F-041B-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.34 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.67 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.0.1 - OBS Project)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Ori and the Blind Forest Definitive Edition (HKLM-x32\...\Ori and the Blind Forest Definitive Edition_is1) (Version: - )
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.135.0.24 - Overwolf Ltd.)
Ovládací panel NVIDIA 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 451.67 - NVIDIA Corporation) Hidden
Personify ChromaCam (remove only) (HKLM-x32\...\Personify ChromaCam) (Version: 1.1.6.7 - Personify, Inc.)
PixelHealer (HKLM\...\PixelHealer) (Version: 1.5.0.30 - Aurelitec)
Print Conductor 5.4 (HKLM-x32\...\Print Conductor_is1) (Version: 5.4 - fCoder SIA)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7614 - Realtek Semiconductor Corp.)
Resident Evil 2 (HKLM-x32\...\Resident Evil 2_is1) (Version: - )
Resident Evil 7 Biohazard (HKLM-x32\...\{1ECBF8F3-7079-44CA-AD32-B2AECBCF636F}_is1) (Version: - Capcom)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.16.196 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
Someday Youll Return (HKLM-x32\...\Someday Youll Return_is1) (Version: - )
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.21.2 - General Workings, Inc.)
Super Seducer (HKLM\...\SKIDROW - Super Seducer) (Version: - SKIDROW)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
The Walking Dead A New Frontier Episode 1 (HKLM-x32\...\The Walking Dead A New Frontier Episode 1_is1) (Version: - )
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Twitch (HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-012B-0405-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 4.0.0-dev - VideoLAN)
VooPoo version 1.5.1.30 (HKLM-x32\...\{63EEAD1F-3FC8-40F5-A415-E4BE098004C0}_is1) (Version: 1.5.1.30 - KunShan XW-TEC)
VueScan x64 (HKLM\...\VueScan x64) (Version: 9.7.13 - Hamrick Software)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - Blizzard Entertainment)
Warframe (HKLM-x32\...\{72BD42A9-6701-42EB-B77A-2AFC0C499F5E}) (Version: 1.0.0 - Digital Extremes)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)

Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.172.400.0_x86__kgqvnymyfvs32 [2020-07-09] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-09] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-29] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-07] (Microsoft Studios) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3482348820-1896476200-1895645591-1002_Classes\CLSID\{9a338598-86a1-4119-8b66-9d52715b6a76}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-07] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-17] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-07-05] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-17] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-07-17 21:55 - 2020-07-17 21:55 - 096130560 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\libcef.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000117760 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\libEGL.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 004342784 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\libGLESv2.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000053760 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_bz2.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000084992 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_ctypes.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000783360 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_hashlib.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000137216 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_lzma.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000047104 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_socket.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000039424 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\psutil._psutil_windows.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 001861120 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtCore.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 002002944 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtGui.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 004101120 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtWidgets.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000009728 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\select.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000075264 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\sip.pyd
2020-05-11 04:57 - 2020-05-11 04:56 - 000758784 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\unicodedata.pyd
2014-11-10 11:12 - 2019-04-17 22:39 - 085372416 _____ () [File not signed] C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\libcef.dll
2019-04-17 22:39 - 2019-04-17 22:39 - 000043520 _____ () [File not signed] C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\libUbiCustomEvent.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 002741248 _____ (Python Software Foundation) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\python34.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000760832 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\chrome_elf.dll
2017-11-06 19:21 - 2019-04-17 22:39 - 000518144 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\chrome_elf.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000848896 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\icudt53.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 001580032 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\icuin53.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 001079296 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\icuuc53.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000036352 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qdds.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000022016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qgif.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000029184 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qicns.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000022016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qico.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000381952 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qjp2.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000206848 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qjpeg.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000218624 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qmng.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000016384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qtga.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000308736 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qtiff.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000015360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qwbmp.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000287232 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qwebp.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 000991744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\platforms\qwindows.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 004182528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\Qt5Core.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 004877312 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\Qt5Gui.dll
2020-05-11 04:57 - 2020-05-11 04:56 - 004490752 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\Qt5Widgets.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\audio\qtaudio_windows.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qgif.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qico.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qjpeg.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qmng.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qsvg.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\imageformats\qtiff.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\platforms\qwindows.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000041984 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQml\Models.2\modelsplugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick.2\qtquick2plugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000084480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000071680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000211456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\qml\QtQuick\Window.2\windowplugin.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Core.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Gui.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Multimedia.dll
2020-07-17 21:55 - 2020-07-17 21:55 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Network.dll
2020-07-17 21:55 - 2020-07-17 21:56 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Qml.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Quick.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 000096256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5QuickControls2.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 000681472 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5QuickTemplates2.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Svg.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Widgets.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5WinExtras.dll
2020-07-17 21:56 - 2020-07-17 21:56 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.12152\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 09:24 - 2019-09-24 12:02 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\David\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\wp3662821-assassin-wallpapers.jpg
DNS Servers: 93.89.159.2 - 1.1.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3482348820-1896476200-1895645591-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{EA613B87-0798-4766-A039-C81BCAB8DFFE}C:\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) C:\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{037281B6-55E4-4E6B-A41A-47FB34BA2F4D}C:\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) C:\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{3AF034F5-FB2A-4042-9468-5CA7E033B4E7}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{05F735C0-7169-4805-A4E0-4555305419CD}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{2FFC3A6B-0473-4092-ABE1-5D39FD53A17E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{F2405F33-0AF3-431E-9652-1707CA01F1D4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A1F83455-609A-47AF-9B5A-D69FC68CF4A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Millie\Millie.exe () [File not signed]
FirewallRules: [{6C593DAD-8395-4F11-A590-F76DDDC9FE92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Millie\Millie.exe () [File not signed]
FirewallRules: [UDP Query User{302C507C-4DA4-49AB-B64A-8352BC41950E}C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{06AC170C-54F5-41D1-B2B9-6B5A0A08E0E1}C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{10D5C4D9-2E6B-4B67-A476-5281B56C5955}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{502EF961-5B71-4A32-969F-BA5D52140A00}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [UDP Query User{7EC9CC81-508D-4D45-8E81-DB52CCF2436E}C:\program files\microsoft office\office16\winword.exe] => (Allow) C:\program files\microsoft office\office16\winword.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{98050A6F-1373-48CC-83FA-4BBE97A3F9B5}C:\program files\microsoft office\office16\winword.exe] => (Allow) C:\program files\microsoft office\office16\winword.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3741751F-5BEE-45CB-837A-59E83B005968}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F9B04128-D8B4-493D-B96B-5A6BAD2795ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{7DA08C82-AB8E-46FE-83A4-6CCF7A8EAA24}C:\users\david\appdata\roaming\utorrent\updates\3.5.3_44494.exe] => (Allow) C:\users\david\appdata\roaming\utorrent\updates\3.5.3_44494.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{0329B052-4C9E-40FD-AD0B-127686849CB4}C:\users\david\appdata\roaming\utorrent\updates\3.5.3_44494.exe] => (Allow) C:\users\david\appdata\roaming\utorrent\updates\3.5.3_44494.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{32FF5D5F-AE6F-4F4E-9C6A-A44362281CD3}] => (Allow) C:\Users\David\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{30431157-60F2-404A-B781-4FC5A1FE4407}] => (Allow) C:\Users\David\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{AFC1F7F7-ED3C-4777-85B5-65678200DA35}C:\users\david\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\david\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{747FE15F-A487-4A02-A70A-A9E98014E198}C:\users\david\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\david\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{11522C14-B13A-4060-A2EB-03E1287F5182}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{4894D9CD-74EE-4F4D-B682-799DCF973BD9}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{28C2D19F-C193-4A94-97AD-664B24F1C348}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{72CA7C7D-10FB-4D96-B4E3-9AC3B9BB9EDB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{68FBEF50-D0C9-4B70-A3DA-FA8AB9F5C96E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe => No File
FirewallRules: [UDP Query User{C03AB2BE-B25F-4357-9117-35F841408DDF}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe => No File
FirewallRules: [{2D1F0F24-59F0-49DC-9CBA-9166ED79341E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{215B305F-3793-4710-866F-AAAFC4D5A75D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{9526E725-5332-4491-900A-A5B3E00C15F8}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{95745F81-0967-4BC0-A61E-3A3E1F4555A8}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0AFE615F-ABD8-45F3-9AE8-F7117FC64CDC}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe (Plays.tv, Inc -> Copyright (c) 2018 Plays.tv, LLC)
FirewallRules: [{DE2DE3B5-8173-4FAC-896C-9FAC3AE29D46}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe (Plays.tv, Inc -> Copyright (c) 2018 Plays.tv, LLC)
FirewallRules: [{42216372-4873-4D06-8A71-3F90277E2E73}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{E09D3792-7521-4348-A40C-8F04F7EBBEC1}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{950A489C-6DC1-4369-A3DC-3DFAE6527798}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{60D42B90-ECC4-40D2-A604-71943C273C20}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{9587D4F0-7BDE-42AA-8234-5B4948E5084A}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{320922C1-99B3-4866-95D5-6D0C8792482C}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{52E113A4-D189-4112-826B-9019169D0858}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{B8A860D9-E58B-40DD-B63F-07CE2BEC9BA5}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{6F3AD882-084D-4F82-88D9-937FCC53BB4C}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe () [File not signed]
FirewallRules: [{42B2AA49-B47A-4C28-9490-87830D930524}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe () [File not signed]
FirewallRules: [TCP Query User{1A5E115A-10A8-458D-B3A0-0D08C151128D}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{A33F85DC-8C02-40B1-99C9-2E2A9F5F0587}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{ED2F8AD3-A6E8-4A1C-BE03-77568C5A9C31}] => (Allow) C:\Program Files\VueScan\vuescan.exe (Hamrick Software) [File not signed]
FirewallRules: [{24DF0275-31DF-480F-95AD-E9A62D964EA7}] => (Allow) C:\Program Files\VueScan\vuescan.exe (Hamrick Software) [File not signed]
FirewallRules: [{5A06E980-6786-4094-BB82-A017F5B88366}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{402159DD-49FA-48BE-83F6-0781AE48CA75}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{BD235299-EF0E-4922-B1EC-FC5A352AB385}] => (Allow) D:\Hry\Assassins Creed Odyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{55507DCB-965C-4C75-9957-E8B41A17E22D}] => (Allow) D:\Hry\Assassins Creed Odyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{C41E8E36-C825-4F32-A6E8-C2CEFE79A756}] => (Allow) C:\Users\David\AppData\Local\Programs\Opera\69.0.3686.36\opera.exe => No File
FirewallRules: [{6AC5F6E1-A6EE-44B6-9E94-4043E98FCE9E}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{EACE1279-430A-4FF2-950B-4B9CAE44F58A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F7C9A6A1-7EB0-467B-B0BB-558FD3575E8F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B8342AAF-69AB-4EA6-9BA0-29F4957FE7C2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BE24539C-7D43-4978-87E1-9FEC0CA6F023}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{95E3E803-D9F6-4CDB-98CF-CB0C36EBCB92}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{F46D583F-BFFD-4328-A985-6E194B84E4B6}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{40136A8F-97F3-4C74-85D5-E12E64BD19AF}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{4AF092A6-463B-479D-8EB4-0047C4E628FD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F788FE0A-8BA7-42BE-897F-83FBC2EC8A96}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7D71C875-EC8F-4B1F-B0C0-444D7EA81450}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5F6D0D58-5EDE-40FB-8DF2-8AFB62F19755}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

30-06-2020 21:33:41 Naplánovaný kontrolní bod
11-07-2020 18:23:42 Naplánovaný kontrolní bod
16-07-2020 00:25:16 Windows Update
20-07-2020 17:28:59 Removed Skype™ 7.41

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (07/20/2020 05:23:14 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/20/2020 01:46:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/19/2020 01:26:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamtray.exe, verze: 4.0.0.748, časové razítko: 0x5f04c8fb
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x5e8272e4
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219d05
ID chybujícího procesu: 0x3a3c
Čas spuštění chybující aplikace: 0x01d65dbf4fa6a743
Cesta k chybující aplikaci: C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbamtray.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: 3744246b-6257-49c8-8151-23055d512567
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (07/19/2020 01:25:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/19/2020 12:04:44 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/18/2020 07:15:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program AvastUI.exe verze 20.5.5410.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: d00

Čas spuštění: 01d65cf24712cef6

Čas ukončení: 60000

Cesta k aplikaci: C:\Program Files\AVAST Software\Avast\AvastUI.exe

ID hlášení: 60938f08-f6c9-43b8-8b11-68308ab3f249

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (07/18/2020 12:57:36 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/18/2020 12:47:26 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.


System errors:
=============
Error: (07/21/2020 03:49:13 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {D18705BE-FC2F-44C8-AEFF-1CD49AEA8FC1} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/21/2020 03:47:13 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {D18705BE-FC2F-44C8-AEFF-1CD49AEA8FC1} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/21/2020 03:45:13 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {D18705BE-FC2F-44C8-AEFF-1CD49AEA8FC1} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/21/2020 03:43:13 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {D18705BE-FC2F-44C8-AEFF-1CD49AEA8FC1} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/21/2020 02:51:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {D18705BE-FC2F-44C8-AEFF-1CD49AEA8FC1} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/21/2020 01:48:42 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {D18705BE-FC2F-44C8-AEFF-1CD49AEA8FC1} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/21/2020 01:35:15 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {F53321FA-34F8-4B7F-B9A3-361877CB94CF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/21/2020 12:37:43 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7D2FQ0G)
Description: Server {F53321FA-34F8-4B7F-B9A3-361877CB94CF} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===================================

Date: 2020-07-21 05:31:55.963
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-21 05:31:55.960
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-21 05:31:54.875
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-21 05:31:54.871
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-21 05:29:07.098
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-21 05:29:07.095
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-21 05:29:01.206
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-21 05:29:01.203
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. P2.80 01/26/2016
Motherboard: ASRock Z170 Extreme4
Processor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Percentage of memory in use: 65%
Total physical RAM: 8137.27 MB
Available physical RAM: 2789.89 MB
Total Virtual: 19827.12 MB
Available Virtual: 11017.58 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.18 GB) (Free:33.34 GB) NTFS
Drive d: () (Fixed) (Total:931.5 GB) (Free:261.05 GB) NTFS

\\?\Volume{153a7e41-9717-4114-b409-806cd10646b5}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{a57f3c44-5d42-4e0e-a549-233e2a1c34ff}\ () (Fixed) (Total:0.84 GB) (Free:0.41 GB) NTFS
\\?\Volume{138a95a2-35ad-430f-91a6-0617b595d599}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Odkaz na messengeru, odchycen antivirem

#10 Příspěvek od Conder »

Ak posielas FRST logy, tak RSIT logy uz nie su potrebne :)

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
File: C:\Users\David\AppData\Roaming\gta5_patch.bin
File: C:\Users\David\AppData\Roaming\patcher.dll
ExportKey: HKLM\SOFTWARE\Policies\Mozilla\Firefox
ExportKey: HKLM\SOFTWARE\Policies\Google
Folder: C:\WINDOWS\Minidump

CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
2020-07-21 05:29 - 2020-07-21 05:29 - 000000000 ____D C:\Users\David\Desktop\FRST-OlderVersion
2020-07-18 19:12 - 2020-07-18 19:12 - 001222144 _____ C:\Users\David\Desktop\RSITx64.exe
2020-06-29 06:45 - 2020-06-29 06:46 - 000000000 ____D C:\rsit
2020-07-21 05:28 - 2019-05-19 13:52 - 000000000 ____D C:\Program Files\trend micro
2019-10-05 23:29 - 2019-10-17 11:56 - 042738921 _____ () C:\Users\David\AppData\Roaming\gta5_patch.bin
2019-10-05 23:29 - 2019-10-05 23:29 - 000332800 _____ () C:\Users\David\AppData\Roaming\patcher.dll
2016-12-18 23:22 - 2016-12-18 23:22 - 000029696 _____ () C:\Users\David\AppData\Local\MSGBOX.EXE

Hosts:
EmptyTemp:
End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
bojimso
2. Stupeň Varování
Příspěvky: 282
Registrován: 08 bře 2007 14:56

Re: Odkaz na messengeru, odchycen antivirem

#11 Příspěvek od bojimso »

Zdravim, log hotov :James008:

Fix result of Farbar Recovery Scan Tool (x64) Version: 22-07-2020
Ran by David (22-07-2020 17:23:55) Run:1
Running from C:\Users\David\Desktop
Loaded Profiles: David
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
File: C:\Users\David\AppData\Roaming\gta5_patch.bin
File: C:\Users\David\AppData\Roaming\patcher.dll
ExportKey: HKLM\SOFTWARE\Policies\Mozilla\Firefox
ExportKey: HKLM\SOFTWARE\Policies\Google
Folder: C:\WINDOWS\Minidump

CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
2020-07-21 05:29 - 2020-07-21 05:29 - 000000000 ____D C:\Users\David\Desktop\FRST-OlderVersion
2020-07-18 19:12 - 2020-07-18 19:12 - 001222144 _____ C:\Users\David\Desktop\RSITx64.exe
2020-06-29 06:45 - 2020-06-29 06:46 - 000000000 ____D C:\rsit
2020-07-21 05:28 - 2019-05-19 13:52 - 000000000 ____D C:\Program Files\trend micro
2019-10-05 23:29 - 2019-10-17 11:56 - 042738921 _____ () C:\Users\David\AppData\Roaming\gta5_patch.bin
2019-10-05 23:29 - 2019-10-05 23:29 - 000332800 _____ () C:\Users\David\AppData\Roaming\patcher.dll
2016-12-18 23:22 - 2016-12-18 23:22 - 000029696 _____ () C:\Users\David\AppData\Local\MSGBOX.EXE

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 1529
Average :
Sum : 908572650
Maximum :
Minimum :
Property : Length




========= End of Powershell: =========


========================= File: C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe ========================

C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
File not signed
MD5: 72C4380EE0D19B7B76196B488E2DFD39
Creation and modification date: 2020-07-22 17:23 - 2020-05-11 04:56
Size: 001623040
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: https://www.virustotal.com/gui/file/066 ... 1591104622

====== End of File: ======


========================= File: C:\Users\David\AppData\Roaming\gta5_patch.bin ========================

C:\Users\David\AppData\Roaming\gta5_patch.bin
File not signed
MD5: 753DADAFE24303FC96F33899ED6F95C9
Creation and modification date: 2019-10-05 23:29 - 2019-10-17 11:56
Size: 042738921
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: 0

====== End of File: ======


========================= File: C:\Users\David\AppData\Roaming\patcher.dll ========================

C:\Users\David\AppData\Roaming\patcher.dll
File not signed
MD5: 39D8EF19F3C377F290F9C9A6B60FDB36
Creation and modification date: 2019-10-05 23:29 - 2019-10-05 23:29
Size: 000332800
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: https://www.virustotal.com/gui/file/db1 ... 1582208811

====== End of File: ======

================== ExportKey: ===================

[HKLM\SOFTWARE\Policies\Mozilla\Firefox]
[HKLM\SOFTWARE\Policies\Mozilla\Firefox\Certificates]
"ImportEnterpriseRoots"="1"

=== End of ExportKey ===
================== ExportKey: ===================

[HKLM\SOFTWARE\Policies\Google]
[HKLM\SOFTWARE\Policies\Google\Chrome]

=== End of ExportKey ===

========================= Folder: C:\WINDOWS\Minidump ========================

2020-04-29 16:14 - 2020-04-29 16:15 - 000796428 ____A [95970FEFC8EAFCD4AD0F65B52F0B8CC2] () C:\WINDOWS\Minidump\042920-6328-01.dmp
2020-05-19 03:13 - 2020-05-19 03:14 - 001236684 ____A [6F6C7F17B403A975827ACEC81BEC6373] () C:\WINDOWS\Minidump\051920-7312-01.dmp
2020-05-21 03:43 - 2020-05-21 03:44 - 000777764 ____A [CEEA17D83CB3CF22BECE7331BFEBA806] () C:\WINDOWS\Minidump\052120-6531-01.dmp
2020-05-29 05:37 - 2020-05-29 05:37 - 001019388 ____A [CDA00B456A89A771F55FA840C9A59860] () C:\WINDOWS\Minidump\052920-9515-01.dmp
2020-06-01 21:38 - 2020-06-01 21:38 - 000763716 ____A [39B0AD6E3DFCBE3C6951BFAA012E8EFC] () C:\WINDOWS\Minidump\060120-8359-01.dmp
2020-06-01 21:20 - 2020-06-01 21:21 - 000964268 ____A [29F3137F53AE6DEECFA125A3EFF73CC1] () C:\WINDOWS\Minidump\060120-8750-01.dmp
2020-06-14 01:52 - 2020-06-14 01:53 - 000886252 ____A [F95C4068A534CEA70F9ECCDDDCFAF6D6] () C:\WINDOWS\Minidump\061420-12406-01.dmp
2020-06-29 06:09 - 2020-06-29 06:11 - 001211636 ____A [E24CC57B9059B481DB23C5BEBD1AFDAA] () C:\WINDOWS\Minidump\062920-7250-01.dmp

====== End of Folder: ======

"Chrome DefaultSuggestURL" => removed successfully
C:\Users\David\Desktop\FRST-OlderVersion => moved successfully
C:\Users\David\Desktop\RSITx64.exe => moved successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully
C:\Users\David\AppData\Roaming\gta5_patch.bin => moved successfully
C:\Users\David\AppData\Roaming\patcher.dll => moved successfully
C:\Users\David\AppData\Local\MSGBOX.EXE => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 397513251 B
Java, Flash, Steam htmlcache => 24264186 B
Windows/system/drivers => 2763307 B
Edge => 144185 B
Chrome => 613900636 B
Firefox => 36015104 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 262172 B
NetworkService => 262172 B
David => 51947085 B
bejja => 51947085 B

RecycleBin => 2222710 B
EmptyTemp: => 1.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:26:09 ====
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Odkaz na messengeru, odchycen antivirem

#12 Příspěvek od Conder »

:arrow: Logy vyzeraju OK co sa tyka malware.

:arrow: Ako to vyzera s PC? Su nejake problemy? Vidim, ze v poslednej dobe sa pomerne velakrat vyskytla BSOD (modra obrazovka smrti).

:arrow: Spusti kontrolu integrity systemovych suborov:
  • Otvor Start, napis "cmd" (bez uvodzoviek), klikni pravym tlacitkom mysi na Prikazovy riadok a klikni na Spustit ako spravca
  • Skopiruj a spusti prikaz:

    Kód: Vybrat vše

    DISM.exe /Online /Cleanup-image /Restorehealth
  • Po dokonceni skopiruj a spusti druhy prikaz:

    Kód: Vybrat vše

    sfc /scannow
  • Po dokonceni obidvoch prikazov skopiruj a spusti tento prikaz:

    Kód: Vybrat vše

    findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt" && copy %windir%\logs\dism\dism.log %userprofile%\desktop\dism.txt
  • Na ploche sa vytvoria subory sfcdetails.txt a dism.txt, tieto subory zabal ho do archivu RAR alebo ZIP a posli ako prilohu k dalsiemu prispevku
  • Restartuj PC a napis ako sa chova PC
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
bojimso
2. Stupeň Varování
Příspěvky: 282
Registrován: 08 bře 2007 14:56

Re: Odkaz na messengeru, odchycen antivirem

#13 Příspěvek od bojimso »

PC vypadá v pořádku, co se týče malware. Modrou smrt jsem už řesil nedávno zde

https://forum.viry.cz/viewtopic.php?f=13&t=157246

ale kouknu na to asi pro jistotu ještě jednou, za chvíli bych poslal log :James008:
Nahoru
bojimso
2. Stupeň Varování
Příspěvky: 282
Registrován: 08 bře 2007 14:56

Re: Odkaz na messengeru, odchycen antivirem

#14 Příspěvek od bojimso »

Hotovo,
v příloze jsou logy. :|
Přílohy
Desktop.rar
(122.99 KiB) Staženo 38 x
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Odkaz na messengeru, odchycen antivirem

#15 Příspěvek od Conder »

:arrow: OK, kedze dalsie BSOD ani ine problemy sa zatial nevyskytli a logy vyzeraju OK, tak si myslim, ze dalsie kroky nateraz nie su potrebne.

:arrow: Tak este upraceme po pouzitych nastrojoch: :arrow: Este jeden tip - ako blokovac reklam odporucam vyskusat uBlock Origin.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“