Škodná na webu

[Alonzop]

Zdravím zase po čase

Mám tu pár logu a podezřeňí na sosač dat,nejede net, něco ho totálně vycucává .

Zde Adw :

# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-27-2020
# Duration: 00:00:04
# OS: Windows 10 Pro
# Cleaned: 12
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Lavasoft\Web Companion
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted C:\ProgramData\Lavasoft\Web Companion
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
Deleted C:\Users\Alonzop\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_MRPQ523XMEO0CM2M0N5VJ25Z3NZKGEP4
Deleted C:\Users\Alonzop\AppData\Roaming\Lavasoft\Web Companion

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{993F5746-4C15-42BC-99C1-064A1764271B}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{53d7f466-704b-4421-8f0a-a6288e7f839d}|DisplayIcon
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{53d7f466-704b-4421-8f0a-a6288e7f839d}|DisplayName

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2617 octets] - [27/07/2020 16:28:33]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Alonzop]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-07-2020
Ran by Alonzop (administrator) on X-COM (MSI MS-7721) (27-07-2020 16:39:33)
Running from C:\Users\Alonzop\Desktop
Loaded Profiles: Alonzop
Platform: Windows 10 Pro Version 1909 18363.959 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
() [File not signed] C:\Program Files (x86)\Gaming Keyboard\OSD.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atiesrxx.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(DESlock Limited -> DESlock Limited.) C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Huawei Technologies Co., Ltd. -> Huawei) C:\Program Files (x86)\HiSuite\HiSuite.exe
(Huawei Technologies Co., Ltd. -> Huawei) C:\Users\Alonzop\AppData\Local\HiSuite\userdata\hwtools\hdbtransport.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6846096 2012-11-19] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [185648 2020-07-11] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [502328 2012-10-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => C:\Program Files (x86)\Gaming Keyboard\Monitor.exe [270336 2013-03-30] () [File not signed]
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1591152 2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-06-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\Run: [Discord] => C:\Users\Alonzop\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {337762f5-a765-11ea-9bd3-86c2e77845eb} - "G:\setup.exe"
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {337765ef-a765-11ea-9bd3-86c2e77845eb} - "H:\setup.exe"
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {33776a8c-a765-11ea-9bd3-86c2e77845eb} - "I:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {7e80fa7e-a6e6-11ea-9bcc-8a71eca2ce4a} - "G:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {20D9D43D-2FF4-444E-856D-5C0E6EAFAE72} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {25F70205-B503-491F-BA36-11330BB09A00} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2742136 2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {3EC913AA-0A0B-4469-9B52-9066A9BD7DC5} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {59DE6F4A-9FB6-4D2D-8752-F0FB5A57ACDD} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {7B6A7488-2375-41A6-8355-2549EA023350} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {986EB67F-23DB-4B5B-AF24-52B2D735E22C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C92E2F0E-D579-4A6D-8B1D-8FD61116EB23} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MpCmdRun.exe [512272 2020-07-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DBFA7EDA-154A-4E07-B0C3-FA3DE70CE9E9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [124112 2020-07-10] (Mozilla Corporation -> Mozilla Foundation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{0d9a49fd-596d-4204-8b72-645929c26fbe}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9aff69de-12b1-4756-a5c7-50da15bba1ed}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{cb5d7317-eb45-4bc0-81ea-fa33ab5dd5ae}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT170603&iDate=2020-06-11 08:18:38&bName=

Edge:
======
DownloadDir: C:\Users\Alonzop\Downloads
Edge Profile: C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-27]

FireFox:
========
FF DefaultProfile: 71o20th8.default
FF ProfilePath: C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\71o20th8.default [2020-06-11]
FF NewTab: Mozilla\Firefox\Profiles\71o20th8.default -> hxxps://securesearch.org/homepage?hp=2&pId=BT170603&iDate=2020-06-11 08:18:38&bName=
FF ProfilePath: C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\hw45xjcg.default-release [2020-07-27]
FF Homepage: Mozilla\Firefox\Profiles\hw45xjcg.default-release -> hxxps://www.google.com/search?client=firefox-b-d&q=google
FF NewTab: Mozilla\Firefox\Profiles\hw45xjcg.default-release -> hxxps://securesearch.org/homepage?hp=2&pId=BT170603&iDate=2020-06-11 08:18:38&bName=
FF Notifications: Mozilla\Firefox\Profiles\hw45xjcg.default-release -> hxxps://www.youtube.com
FF Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\hw45xjcg.default-release\Extensions\@windscribeff.xpi [2020-06-05]
FF Extension: (AdBlocker Ultimate) - C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\hw45xjcg.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2020-07-18]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\hw45xjcg.default-release\Extensions\firefox@ghostery.com.xpi [2020-06-13]
FF Extension: (uBlock Origin) - C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\hw45xjcg.default-release\Extensions\uBlock0@raymondhill.net.xpi [2020-07-14]
FF Extension: (Pinned WhatsApp Web) - C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\hw45xjcg.default-release\Extensions\whatsapppanel@alejandrobrizuela.com.ar.xpi [2020-07-17]
FF Extension: (Worldwide Radio) - C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\hw45xjcg.default-release\Extensions\worldwide@radio.xpi [2020-06-05]
FF Extension: (Bitwarden – Bezplatný správce hesel) - C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\hw45xjcg.default-release\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2020-07-01]
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-07-27]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atiesrxx.exe [508008 2019-09-18] (Advanced Micro Devices, Inc. -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.) [File not signed]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4512448 2020-06-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 dlpsrv; C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe [542400 2019-10-02] (DESlock Limited -> DESlock Limited.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2371248 2020-07-11] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2371248 2020-07-11] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\FileSyncHelper.exe [2161016 2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [143416 2012-10-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\OneDriveUpdaterService.exe [2513256 2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2019-03-19] (Microsoft Windows -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-19] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atikmdag.sys [55249512 2019-09-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0346830.inf_amd64_f723e13ffb3b2652\B345901\atikmpag.sys [595048 2019-09-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [102832 2019-09-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [79528 2012-07-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [26280 2012-07-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110088 2017-03-31] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [136040 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 DLMFENC; C:\WINDOWS\System32\DRIVERS\DLMFENC.sys [174152 2019-10-02] (DESlock Limited -> DESlock Ltd.)
R0 DLPCRYPT; C:\WINDOWS\System32\DRIVERS\dlpcrypt.sys [121728 2019-10-02] (DESlock Limited -> DESlock Ltd.)
R0 dlpvdisk; C:\WINDOWS\System32\DRIVERS\dlpvdisk.sys [98296 2019-10-02] (DESlock Limited -> DESlock Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-06-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-06-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [159528 2020-07-11] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106640 2020-07-11] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2020-04-01] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [195456 2020-07-11] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [53064 2020-07-11] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [79536 2020-07-11] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116488 2020-07-11] (ESET, spol. s r.o. -> ESET)
R3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [57000 2012-06-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 VDLPToken2; C:\WINDOWS\System32\DRIVERS\vdlptkn2.sys [135672 2019-10-02] (DESlock Limited -> DESlock Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45976 2020-07-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [408816 2020-07-19] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-19] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-27 16:39 - 2020-07-27 16:40 - 000017471 _____ C:\Users\Alonzop\Desktop\FRST.txt
2020-07-27 16:39 - 2020-07-27 16:40 - 000000000 ____D C:\FRST
2020-07-27 16:27 - 2020-07-27 16:30 - 000000000 ____D C:\AdwCleaner
2020-07-27 16:24 - 2020-07-27 16:38 - 000007603 _____ C:\Users\Alonzop\AppData\Local\Resmon.ResmonCfg
2020-07-27 16:20 - 2020-07-27 16:27 - 008414384 _____ (Malwarebytes) C:\Users\Alonzop\Desktop\AdwCleaner.exe
2020-07-27 16:19 - 2020-07-27 16:21 - 002295808 _____ (Farbar) C:\Users\Alonzop\Desktop\FRST64.exe
2020-07-27 16:12 - 2020-07-27 16:13 - 000334072 _____ (Mozilla) C:\Users\Alonzop\Downloads\Firefox Installer.exe
2020-07-27 16:06 - 2020-07-27 16:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-3622225975-1328666760-5524277-1001
2020-07-27 05:23 - 2020-07-27 05:23 - 000000000 ___HD C:\$WINDOWS.~BT
2020-07-27 04:44 - 2020-07-27 04:44 - 000000000 ___HD C:\$WinREAgent
2020-07-20 03:45 - 2020-07-26 23:16 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-20 03:45 - 2020-07-26 23:16 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-07-20 03:45 - 2020-07-21 01:50 - 000003582 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-20 03:45 - 2020-07-21 01:50 - 000003458 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-19 05:50 - 2020-07-19 05:58 - 104984660 _____ C:\Users\Alonzop\Downloads\_TGirls__Peyton_Fucked_By_Soldier_Boi.mp4.z01
2020-07-19 03:40 - 2020-07-19 03:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MTG Arena
2020-07-19 00:32 - 2020-07-19 00:32 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-19 00:32 - 2020-07-19 00:32 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-19 00:32 - 2020-07-19 00:32 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-19 00:32 - 2020-07-19 00:32 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-19 00:32 - 2020-07-19 00:32 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-19 00:32 - 2020-07-19 00:32 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteFXvGPUDisablement.exe
2020-07-19 00:32 - 2020-07-19 00:32 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-19 00:32 - 2020-07-19 00:32 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-19 00:31 - 2020-07-19 00:31 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 003980800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-19 00:31 - 2020-07-19 00:31 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-19 00:31 - 2020-07-19 00:31 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-19 00:31 - 2020-07-19 00:31 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-19 00:31 - 2020-07-19 00:31 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-19 00:31 - 2020-07-19 00:31 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-19 00:31 - 2020-07-19 00:31 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-19 00:31 - 2020-07-19 00:31 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-19 00:31 - 2020-07-19 00:31 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-19 00:31 - 2020-07-19 00:31 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-19 00:20 - 2020-07-19 00:20 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-19 00:20 - 2020-07-19 00:20 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-17 14:50 - 2020-07-17 14:58 - 158318000 _____ (WhatsApp) C:\Users\Alonzop\Downloads\WhatsAppSetup.exe
2020-07-16 03:23 - 2020-07-16 03:23 - 000000000 ____D C:\Users\Alonzop\AppData\Roaming\Skype
2020-07-11 15:55 - 2020-07-17 08:54 - 000000000 ____D C:\Users\Alonzop\Desktop\Nová složka
2020-07-11 09:24 - 2020-07-19 03:41 - 000000994 _____ C:\Users\Alonzop\Desktop\MTG Arena.lnk
2020-07-10 18:10 - 2020-07-10 18:10 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-07-10 17:28 - 2020-07-11 08:11 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-07-02 00:07 - 2020-07-02 00:07 - 000000000 ____D C:\Users\Alonzop\AppData\LocalLow\Unity

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-27 16:38 - 2020-06-05 17:26 - 000004210 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{53B039A4-20D0-4799-B13A-52DBBCDF144B}
2020-07-27 16:38 - 2020-06-05 05:51 - 000000000 ____D C:\Users\Alonzop\AppData\LocalLow\Mozilla
2020-07-27 16:38 - 2020-06-04 08:52 - 001606106 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-27 16:38 - 2019-03-19 13:57 - 000682526 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-27 16:38 - 2019-03-19 13:57 - 000137244 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-27 16:38 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-27 16:33 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-27 16:31 - 2020-06-05 17:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-27 16:31 - 2020-06-04 17:43 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-07-27 16:31 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-07-27 16:30 - 2020-06-11 22:18 - 000000000 ____D C:\Users\Alonzop\AppData\Roaming\Lavasoft
2020-07-27 16:30 - 2020-06-11 22:18 - 000000000 ____D C:\Users\Alonzop\AppData\Local\Lavasoft
2020-07-27 16:30 - 2020-06-11 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2020-07-27 16:30 - 2020-06-11 22:18 - 000000000 ____D C:\ProgramData\Lavasoft
2020-07-27 16:30 - 2020-06-11 22:18 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2020-07-27 16:09 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-07-27 16:06 - 2020-06-05 19:08 - 000000000 ____D C:\Users\Alonzop\AppData\Local\D3DSCache
2020-07-27 15:51 - 2020-06-05 17:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-27 13:09 - 2020-06-05 17:23 - 000000000 ____D C:\Users\Alonzop
2020-07-27 11:48 - 2020-06-04 12:36 - 000000000 ____D C:\Users\Alonzop\AppData\Roaming\vlc
2020-07-27 09:31 - 2020-06-04 12:39 - 000000000 ____D C:\Users\Alonzop\AppData\Roaming\dvdcss
2020-07-27 05:26 - 2020-06-05 15:56 - 000000000 ___DC C:\WINDOWS\Panther
2020-07-27 01:45 - 2020-06-05 08:16 - 000000000 ____D C:\Users\Alonzop\Documents\HiSuite
2020-07-27 00:26 - 2020-06-06 19:05 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2020-07-27 00:25 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-26 23:32 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-21 14:31 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-21 05:22 - 2020-06-14 23:36 - 000000000 ____D C:\Users\Alonzop\Desktop\CI-147_SW
2020-07-21 01:22 - 2020-06-06 19:07 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2020-07-21 01:22 - 2020-06-06 19:07 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-07-21 01:22 - 2020-06-04 08:50 - 000000000 ___RD C:\Users\Alonzop\OneDrive
2020-07-21 01:09 - 2020-06-05 18:49 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-07-20 03:46 - 2020-06-05 18:46 - 000000000 ___RD C:\Users\Alonzop\3D Objects
2020-07-20 03:46 - 2020-06-04 08:49 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-20 03:44 - 2020-06-05 17:19 - 000258096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-20 03:43 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-20 03:43 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-20 03:43 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-20 03:43 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-20 03:43 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-20 03:43 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-19 21:40 - 2020-06-12 10:14 - 000000000 ____D C:\Users\Alonzop\AppData\Roaming\qBittorrent
2020-07-19 15:56 - 2020-06-05 17:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-07-19 03:54 - 2020-06-07 04:18 - 000000000 ____D C:\Users\Alonzop\AppData\Roaming\CnCRemastered
2020-07-11 20:59 - 2020-04-02 13:43 - 000195456 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2020-07-11 20:59 - 2020-04-02 13:43 - 000159528 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2020-07-11 20:59 - 2020-04-02 13:43 - 000116488 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2020-07-11 20:59 - 2020-04-02 13:43 - 000106640 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2020-07-11 20:59 - 2020-04-02 13:43 - 000079536 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2020-07-11 20:59 - 2020-04-02 13:43 - 000053064 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2020-07-11 17:12 - 2020-06-05 23:47 - 000000000 ____D C:\Users\Alonzop\AppData\Local\PlaceholderTileLogoFolder
2020-07-11 17:12 - 2020-06-05 19:03 - 000000000 ____D C:\ProgramData\Packages
2020-07-11 17:12 - 2020-06-04 08:49 - 000000000 ____D C:\Users\Alonzop\AppData\Local\Packages
2020-07-11 08:11 - 2020-06-05 05:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-07-10 18:10 - 2020-06-05 05:51 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-07-07 03:53 - 2020-06-04 11:53 - 000000000 ____D C:\Users\Alonzop\AppData\Local\ElevatedDiagnostics
2020-07-06 19:20 - 2020-06-07 00:46 - 000000000 ____D C:\Users\Alonzop\AppData\Local\CrashDumps
2020-07-01 23:14 - 2020-06-04 17:42 - 000000000 ____D C:\ProgramData\Package Cache

==================== Files in the root of some directories ========

2020-07-27 16:24 - 2020-07-27 16:38 - 000007603 _____ () C:\Users\Alonzop\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================






Dodatek :


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-07-2020
Ran by Alonzop (27-07-2020 16:41:21)
Running from C:\Users\Alonzop\Desktop
Windows 10 Pro Version 1909 18363.959 (X64) (2020-06-05 15:26:12)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3622225975-1328666760-5524277-500 - Administrator - Disabled)
Alonzop (S-1-5-21-3622225975-1328666760-5524277-1001 - Administrator - Enabled) => C:\Users\Alonzop
DefaultAccount (S-1-5-21-3622225975-1328666760-5524277-503 - Limited - Disabled)
Guest (S-1-5-21-3622225975-1328666760-5524277-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3622225975-1328666760-5524277-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Disabled - Out of date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0816.1152.21357 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Balíček ovladače systému Windows - Lectrosonics, Inc. CDM Driver Package (02/17/2009 2.04.16) (HKLM\...\7E973AAFCC16B5BA9E13965B816AB2461F36FB15) (Version: 02/17/2009 2.04.16 - Lectrosonics, Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Codec Pack - All In 1 6.0.3.0 (HKLM-x32\...\Cool's_Codec_pack_4.12) (Version: - )
Command and Conquer Remastered Collection (HKLM-x32\...\Command and Conquer Remastered Collection_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1226 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
ESET Premium Line Encryption (HKLM\...\{9A6F6D1F-CEBC-4338-87EC-D7F208CFCED1}) (Version: 1.0.19 - ESET) Hidden
ESET Security (HKLM\...\{0C3F76CB-98AA-49B1-9B72-CD040E3E17E8}) (Version: 13.2.15.0 - ESET, spol. s r.o.)
Gaming Keyboard Driver (HKLM-x32\...\{B3CDED64-7DC2-429D-A325-BBC3CF793AA6}) (Version: 1.0 - Senbiz)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.44 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 20.114.0607.0002 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28720 (HKLM-x32\...\{7d607fb4-7e28-4c7a-a92f-3fcdaf555faf}) (Version: 14.26.28720.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Mozilla Firefox 78.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 78.0.2 (x64 cs)) (Version: 78.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 77.0.1 - Mozilla)
MTG Arena (HKLM\...\{46530058-EA0E-40C5-89AF-1084EA6E859B}) (Version: 0.1.3009 - Wizards of the Coast)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6782 - Realtek Semiconductor Corp.)
Sudden Strike 4 The Pacific War (HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\Sudden Strike 4 The Pacific War) (Version: - HOODLUM)
Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.014 - MSI)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN)
VS Revo Group v.4.3.1 - 22.04.2020 (HKLM-x32\...\VS Revo Group v.4.3.1 - 22.04.2020) (Version: v.4.3.1 - 22.04.2020 - Libbi)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)

Packages:
=========
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_600.4.119.0_x64__8xx8rvfyw5nnt [2020-07-20] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-06-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-06-05] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.7162.0_x64__8wekyb3d8bbwe [2020-07-22] (Microsoft Studios) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-06-05] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-06-06] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-06-06] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Alonzop\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Alonzop\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Alonzop\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [ESD Shell Icon Overlay Identifier] -> {AF106685-9C86-48AF-8524-8F485C459E17} => C:\Program Files\ESET\ESET Secure Data\esdovrly.dll [2019-10-02] (DESlock Limited -> DESlock Limited)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-07-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-06-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-07-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-06-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.114.0607.0002\amd64\FileSyncShell64.dll [2020-07-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-07-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-06-14 23:37 - 2012-11-05 08:37 - 000061440 _____ () [File not signed] C:\Program Files (x86)\Gaming Keyboard\hiddriver.dll
2020-06-14 23:37 - 2012-11-05 08:09 - 000057344 _____ () [File not signed] C:\Program Files (x86)\Gaming Keyboard\lan.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2019-06-28 17:32 - 2019-06-28 17:32 - 003598336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2019-08-16 11:37 - 2019-08-16 11:37 - 000158208 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\SYSTEM32\amdihk64.dll
2020-06-05 22:03 - 2019-12-27 04:18 - 000102720 _____ (Huawei Technologies Co., Ltd. -> Google, inc) [File not signed] C:\Users\Alonzop\AppData\Local\HiSuite\userdata\hwtools\AdbWinApi.DLL
2020-06-05 22:03 - 2019-12-27 04:18 - 000067904 _____ (Huawei Technologies Co., Ltd. -> Google, inc) [File not signed] C:\Users\Alonzop\AppData\Local\HiSuite\userdata\hwtools\AdbWinUsbApi.dll
2020-06-05 22:03 - 2019-12-27 04:18 - 000420160 _____ (Huawei Technologies Co., Ltd. -> Microsoft Corporation) [File not signed] C:\Users\Alonzop\AppData\Local\HiSuite\userdata\hwtools\MSVCP100.dll
2020-06-05 22:03 - 2019-12-27 04:18 - 000772928 _____ (Huawei Technologies Co., Ltd. -> Microsoft Corporation) [File not signed] C:\Users\Alonzop\AppData\Local\HiSuite\userdata\hwtools\MSVCR100.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000414208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000516608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 001441280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-08-16 11:49 - 2019-08-16 11:49 - 005999104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 006413824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 001141760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000339968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 004143104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 003840000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000332800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000349184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 080959488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 005622272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 000190464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-06-28 17:32 - 2019-06-28 17:32 - 002825216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-06-28 17:33 - 2019-06-28 17:33 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-06-28 17:33 - 2019-06-28 17:33 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-06-28 17:33 - 2019-06-28 17:33 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-06-28 17:33 - 2019-06-28 17:33 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-06-28 17:33 - 2019-06-28 17:33 - 000137216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-06-28 17:33 - 2019-06-28 17:33 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-06-28 17:33 - 2019-06-28 17:33 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2019-06-28 17:33 - 2019-06-28 17:33 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 13:04 - 2015-07-10 13:02 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.42.129
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\StartupApproved\Run: => "Discord"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{92D774E6-0EA9-4AA6-9171-7D075B8E8FEA}] => (Allow) E:\torent\uTorrent.exe => No File
FirewallRules: [{B5128EFB-D5A1-41DA-8207-2D03E684683A}] => (Allow) E:\torent\uTorrent.exe => No File
FirewallRules: [{5E529512-EBE9-48D7-B9F7-2CAA0B4C0A5D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E499B7C2-FAE1-432F-9D37-0C0D8FAA0D02}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CAA01408-51A1-41E4-A3BF-78374D6A69F4}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{CFF6779B-F388-4E02-AF7D-61C09D330F71}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{5A33F34B-9131-4719-A55D-C0B0EEC3F8F5}] => (Allow) E:\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{84D394AA-DEA4-486A-B834-D908BFA24343}] => (Allow) E:\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{AB0A3378-4BE7-4D67-8137-89C3226739A2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0CD53F72-9107-4A50-AE3D-543AAE5224E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{22ABA4E5-5C1D-4B37-A55D-C0DD65825E80}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A371B3BA-51D6-4B90-924D-449393E3C0BE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:110.83 GB) (Free:84.32 GB) (76%)

==================== Faulty Device Manager Devices ============

Name: Časovač událostí s vysokou přesností
Description: Časovač událostí s vysokou přesností
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní systémová zařízení)
Service:
Problem: : This device is disabled because the firmware of the device did not give it the required resources. (Code 29)
Resolution: Enable the device in the BIOS of the device.


==================== Event log errors: ========================

Application errors:
==================
Error: (07/27/2020 04:40:31 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4684,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (07/27/2020 04:24:13 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10072,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (07/27/2020 04:14:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11440,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (07/27/2020 03:41:35 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (492,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (07/27/2020 03:16:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7776,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (07/27/2020 02:37:37 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6056,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (07/27/2020 01:31:01 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11340,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (07/27/2020 01:17:19 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5292,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (07/27/2020 04:34:56 PM) (Source: DCOM) (EventID: 10010) (User: X-COM)
Description: Server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/27/2020 04:32:05 PM) (Source: DCOM) (EventID: 10010) (User: X-COM)
Description: Server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/27/2020 04:30:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Disc Soft Lite Bus Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/27/2020 04:30:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI_SuperCharger byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/27/2020 04:30:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HuaweiHiSuiteService64.exe byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/27/2020 04:30:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD FUEL Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/27/2020 04:30:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD External Events Utility byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/27/2020 04:30:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba DESlock+ Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
===================================
Date: 2020-07-20 18:56:51.968
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {A809F428-D8FE-4E65-840F-89DAC8D4439E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-07-20 18:52:41.480
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {9E61807D-E2B2-4800-803A-9156D27AD92A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-07-20 18:01:57.406
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {050EA2D8-3786-4EF8-8841-1680DACEB5BB}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-06-06 03:41:04.769
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Alonzop\AppData\Local\Temp\3fo\paw.exe; process:_pid:9536,ProcessStart:132358812121996773
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Users\Alonzop\AppData\Local\Temp\3fo\paw.exe
Verze bezpečnostních informací: AV: 1.317.709.0, AS: 1.317.709.0, NIS: 1.317.709.0
Verze modulu: AM: 1.1.17100.2, NIS: 1.1.17100.2

Date: 2020-06-06 03:41:04.229
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Alonzop\AppData\Local\Temp\3fo\paw.exe; process:_pid:9536,ProcessStart:132358812121996773
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Users\Alonzop\AppData\Local\Temp\3fo\paw.exe
Verze bezpečnostních informací: AV: 1.317.709.0, AS: 1.317.709.0, NIS: 1.317.709.0
Verze modulu: AM: 1.1.17100.2, NIS: 1.1.17100.2

Date: 2020-07-27 12:53:43.297
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.319.2391.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17200.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2020-07-27 12:53:43.296
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.319.2391.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17200.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2020-07-27 03:02:35.383
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.319.1993.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17200.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2020-07-27 03:02:35.382
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.319.1993.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17200.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2020-07-27 03:02:35.382
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.319.1993.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17200.2
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===================================

Date: 2020-07-27 16:33:42.833
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-07-27 16:33:24.136
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-07-27 16:33:24.118
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-07-27 16:32:06.983
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-07-27 16:13:37.656
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-07-27 16:13:37.622
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-07-27 16:12:25.983
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-07-27 16:12:25.890
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. V11.1 05/02/2013
Motherboard: MSI FM2-A55M-P33 (MS-7721)
Processor: AMD Athlon(tm) X4 740 Quad Core Processor
Percentage of memory in use: 37%
Total physical RAM: 8145.84 MB
Available physical RAM: 5131.23 MB
Total Virtual: 11473.84 MB
Available Virtual: 5886.37 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:110.83 GB) (Free:84.32 GB) NTFS
Drive e: () (Fixed) (Total:488.59 GB) (Free:386.41 GB) NTFS
Drive f: (FULLFILED_SEXUAL_FANTASIES) (CDROM) (Total:3.99 GB) (Free:0 GB) UDF

\\?\Volume{db5a8614-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{350f029c-0000-0000-0000-102c7a000000}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{db5a8614-0000-0000-0000-c0d41b000000}\ () (Fixed) (Total:0.47 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 350F029C)
Partition 1: (Not Active) - (Size=100 MB) - (Type=06)
Partition 2: (Not Active) - (Size=488.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: DB5A8614)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=110.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=482 MB) - (Type=27)

==================== End of Addition.txt =======================

[Rudy]

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {337762f5-a765-11ea-9bd3-86c2e77845eb} - "G:\setup.exe"
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {337765ef-a765-11ea-9bd3-86c2e77845eb} - "H:\setup.exe"
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {33776a8c-a765-11ea-9bd3-86c2e77845eb} - "I:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {7e80fa7e-a6e6-11ea-9bcc-8a71eca2ce4a} - "G:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Alonzop\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Alonzop\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Alonzop\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
FirewallRules: [{92D774E6-0EA9-4AA6-9171-7D075B8E8FEA}] => (Allow) E:\torent\uTorrent.exe => No File
FirewallRules: [{B5128EFB-D5A1-41DA-8207-2D03E684683A}] => (Allow) E:\torent\uTorrent.exe => No File
C:\Users\Alonzop\AppData\Local\Temp

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Alonzop]

Fix result of Farbar Recovery Scan Tool (x64) Version: 26-07-2020
Ran by Alonzop (27-07-2020 17:33:33) Run:1
Running from C:\Users\Alonzop\Desktop
Loaded Profiles: Alonzop
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {337762f5-a765-11ea-9bd3-86c2e77845eb} - "G:\setup.exe"
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {337765ef-a765-11ea-9bd3-86c2e77845eb} - "H:\setup.exe"
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {33776a8c-a765-11ea-9bd3-86c2e77845eb} - "I:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\...\MountPoints2: {7e80fa7e-a6e6-11ea-9bcc-8a71eca2ce4a} - "G:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Alonzop\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Alonzop\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Alonzop\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
FirewallRules: [{92D774E6-0EA9-4AA6-9171-7D075B8E8FEA}] => (Allow) E:\torent\uTorrent.exe => No File
FirewallRules: [{B5128EFB-D5A1-41DA-8207-2D03E684683A}] => (Allow) E:\torent\uTorrent.exe => No File
C:\Users\Alonzop\AppData\Local\Temp

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{337762f5-a765-11ea-9bd3-86c2e77845eb} => removed successfully
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{337765ef-a765-11ea-9bd3-86c2e77845eb} => removed successfully
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{33776a8c-a765-11ea-9bd3-86c2e77845eb} => removed successfully
HKU\S-1-5-21-3622225975-1328666760-5524277-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7e80fa7e-a6e6-11ea-9bcc-8a71eca2ce4a} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => removed successfully
HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => removed successfully
HKU\S-1-5-21-3622225975-1328666760-5524277-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{92D774E6-0EA9-4AA6-9171-7D075B8E8FEA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B5128EFB-D5A1-41DA-8207-2D03E684683A}" => removed successfully
C:\Users\Alonzop\AppData\Local\Temp => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7495696 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 78264802 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 5464805 B
Edge => 1722076 B
Chrome => 0 B
Firefox => 1170360893 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 8192 B
Users => 8192 B
ProgramData => 8192 B
Public => 8192 B
systemprofile => 8192 B
systemprofile32 => 37043477 B
LocalService => 37237507 B
NetworkService => 37348589 B
Alonzop => 44164228 B

RecycleBin => 19890 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:34:49 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[Alonzop]

Nedovedu posouďit , nicméně přetrvává problém s načítáním stránek i na ostatních prohlížečích,jak bych chtěl načítat 2 stránky , tak to vypadá na konec světa. Podotknu , že jedu přes dat. kábl a hotspot, všechna omezení off , jak na winech tak i na mob ( kde je neomezeno s rychl 3mb/s . před plácnu 14 dny to švihalo jakoby normálně, nevím zda li pomůže tohle info,ale radši to napíšu. :ú

[Rudy]

Zkusíme vyčistit prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

[Alonzop]

Zoek :

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Alonzop on 31.07.2020 at 16:19:36,90.
Microsoft Windows 10 Pro 10.0.18363 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Alonzop\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

31.07.2020 16:21:17 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\PROGRA~3\ssh deleted successfully
C:\Users\Alonzop\AppData\Local\PeerDistRepub deleted successfully
C:\Users\Alonzop\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\x0lwbb1a.default-release\prefs.js:
user_pref("browser.startup.homepage", "https://www.google.com/search?client=fi ... d&q=google");

Added to C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\x0lwbb1a.default-release\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\x0lwbb1a.default-release

user.js not found
---- Lines searchengine removed from prefs.js ----
user_pref("browser.pageActions.persistedActions", "{\"version\":1,\"ids\":[\"bookmark\",\"pinTab\",\"bookmarkSeparator\",\"copyURL\",\"emailLink\",\"a
---- FireFox user.js and prefs.js backups ----

prefs__1639_.backup

==== Deleting Files \ Folders ======================

C:\Users\Alonzop\.android deleted
C:\PROGRA~3\Package Cache deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165c5b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165c6d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165c7e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165c90.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165ca1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165ce2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165d80.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165d82.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165d94.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165da5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165da7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165db9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165dcb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165ddc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165dee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165e00.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165e02.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165e13.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11f4-1a0-165e25.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9cf96.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9cfb7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9cfb9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9cfdb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9cfdd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9cfdf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9cff0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d002.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d014.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d025.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d037.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d048.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d04a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d05c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d06e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d070.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d081.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d093.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1658-1644-9d0a5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573c37.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573c49.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573c5a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573c5c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573c6e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573c70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573c82.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573c93.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573ca5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573ca7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573cb8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573cca.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573cdc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573ced.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573cff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573d01.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573d13.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573d24.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f18-1d88-1573d36.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f6fe5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f6ff7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f7008.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f700a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f702b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f702d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f703f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f7051.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f7053.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f7064.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f7066.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f7097.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f70a9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f70ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f70bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f70ce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f70e0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f70e2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1f9c-dc0-f70f3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-685085.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-6850a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-6850b8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-6850ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-6850cb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-6850ed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-6850fe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-685100.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-685112.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-685123.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-685125.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-685137.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-685149.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-68515a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-68516c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-68517e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-685180.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-6851a1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-1a20-6851b2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862a2e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862a8e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862ade.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862b4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862b5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862b90.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862bb1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862bf2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862c13.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862c54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862c75.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862ca6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862cd7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862ce8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862d0a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862d1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862d2d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862d5e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3ac-1b88-862d8f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34ebb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34ecd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34ecf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34ee0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34ee2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34ef4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34ef6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f08.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f0a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f2f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f31.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f42.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f44.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f56.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f6a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-514-518-34f6c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f3751.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f3772.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f3783.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f3795.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f37b6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f37c8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f37da.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f37eb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f37fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f381e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f3830.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f3841.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f3863.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f3884.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f38a5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f38b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f38c8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f38da.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-80c-5e8-f38ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9e90.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9ea2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9ea4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9eb5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9ed7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9ee8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9eea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9efc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9f0e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9f1f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9f31.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9f42.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9f54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9f66.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9f77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9f79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9f8b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9f9d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dec-27f8-22f9fae.tmp deleted
C:\Users\Alonzop\AppData\LocalLow\Unity deleted
"C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\x0lwbb1a.default-release\extensions\firefox@ghostery.com.xpi" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\x0lwbb1a.default-release
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Alonzop\AppData\Roaming\Mozilla\Firefox\Profiles\x0lwbb1a.default-release
- short_ Windscribe - %ProfilePath%\extensions\@windscribeff.xpi
- short_ __MSG_short_name__ - %ProfilePath%\extensions\adblockultimate@adblockultimate.net.xpi
- short_ uBlock\u2080 - %ProfilePath%\extensions\uBlock0@raymondhill.net.xpi
- Pinned WhatsApp Web - %ProfilePath%\extensions\whatsapppanel@alejandrobrizuela.com.ar.xpi
- short_ __MSG_extension_name__ - %ProfilePath%\extensions\worldwide@radio.xpi
- short_ __MSG_appName__ - %ProfilePath%\extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi
- Dishita - %ProfilePath%\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi

==== Firefox Plugins ======================


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://securesearch.org/homepage?hp=2& ... 2020-06-11 08:18:38&bName="
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IE8SRC

==== Reset Google Chrome ======================

C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Web Data will be reset at reboot
C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal will be reset at reboot

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Alonzop\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Alonzop\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Alonzop\AppData\Local\Mozilla\Firefox\Profiles\x0lwbb1a.default-release\cache2 emptied successfully

==== Empty Edge Cache ======================

Edge Cache Emptied Successfully

==== Empty Chrome Cache ======================

C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Cache will be emptied at reboot

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=17 folders=189 22850403 bytes)

==== Empty Temp Folders ======================

C:\Users\Alonzop\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Alonzop\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Web Data" not found
"C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal" not found
"C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_0" deleted
"C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_1" deleted
"C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_2" deleted
"C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_3" deleted
"C:\Users\Alonzop\AppData\Local\Microsoft\Edge\User Data\Default\Cache\index" deleted

==== EOF on 31.07.2020 at 17:12:26,11 ======================
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Enterprise x64
Ran by Alonzop (Administrator) on 31.07.2020 at 17:19:11,20
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 2

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 31.07.2020 at 17:20:21,56
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



Znovu nemohu posoudit, nicméně sem zjistil v čem byl kámen úrazu , byl to telefon , nic konkrétně nevím. neš sem se dostal ke stáhnutí zoeku , přestal net fungovat úplně, přitom plný signál i přístup,včetně dat byl, tak sem skusil přeinstalovat vidle a net stále pokulhával. Problém sem vyřešil příjmem netu mimo telefon, okamžitě začalo vše šlapat, po sléze sem udělal ten zoek. Co vy na to ?

[Rudy]

Cosi smazal, takže by prohlížeče měly být čipernější. Nevěřil bych, že právě toto může být příčinou. Stále se něčemu učíme.

[Alonzop]

Souhlasím a děkuji za věnovaný čas , skvěla práce jako vždy .

Zase za čas a užijte si léta . Naschle : )

[Rudy]

Děkuji a mějte se!