nezvyklé dvojkliky u medial.souborů

[fram33]

dobrý den, prosím o pomoc...hijackthis skenuje pořád stejný log i po fixaci, u medialnich souborů se aktivuje nezvyklé chování myši...pak problem u všech souborů s oteviraním...někdy dvakrát někdy maže více atd... skenováno bylo onlinescanerem i Superantispywarem ..co najde vyčistí ale později opět naskočí stejný problém... prosím už si nevím rady...prosím o radu...děkuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-08-2020
Ran by fram33 (administrator) on FRAM33-ASUS (ASUSTeK Computer Inc. K53SC) (10-08-2020 12:47:40)
Running from C:\Users\fram33\Downloads\Programs
Loaded Profiles: fram33
Platform: Windows 10 Pro Version 1909 18363.959 (X64) Language: Čeština (Česko)
Default browser: IE
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [11224496 2020-08-03] (Support.com Inc -> SUPERAntiSpyware)
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {09c28161-a0c5-11ea-b368-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {75eba5d0-d2fd-11ea-b5c6-14dae964db71} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {832ef50a-b3a8-11ea-b5ad-14dae964db71} - "E:\startme.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {893d06af-cfe5-11ea-b5b7-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {a390779a-c1c3-11ea-b5b0-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {a3907b20-c1c3-11ea-b5b0-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {b16ff17f-d6fe-11ea-b5cb-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {cb9b24c6-b47d-11ea-b5ad-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {fbc76d12-c044-11ea-b5af-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\Windows\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series XPS: C:\Windows\system32\CNMXLMBA.DLL [392192 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\FPR9:: C:\Windows\system32\fpmon9-x64.dll [750600 2018-07-23] (FinePrint Software, LLC -> FinePrint Software, LLC)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116736 2019-06-06] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-30] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> "C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.48\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] ->
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] ->
AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvami.inf_amd64_1474122a0ce2f241\nvinitx.dll => No File
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\system32\DriverStore\FileRepository\nvami.inf_amd64_1474122a0ce2f241\nvinit.dll => No File
AppInit_DLLs-x32: ,C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155280 2015-07-23] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0617EF73-468B-4EE8-B0B6-10D90EA47572} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {083301D5-E662-4735-88A4-ADBD76283E75} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1AB5D3E2-2498-43ED-AC71-56543501EC66} - System32\Tasks\SUPERAntiSpyware Scheduled Task 57daf2f6-b7c7-4952-80c4-63d6d3d14fe7 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944 2013-11-07] (SUPERAntiSpyware.com -> SUPERAdBlocker.com)
Task: {469534F6-8F0F-47D0-8DB3-DE1152821938} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4A9559A9-1E46-44A9-BB45-D984D261706B} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\fram33\Downloads\APK 2020 06\esetonlinescanner.exe
Task: {61CBCA45-34C4-4680-9083-7DCA796FFE20} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {70C3E9F4-48D0-4D25-9251-94BF421C269E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8369E602-22DB-4FBD-A865-1F7CC81616DB} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\fram33\Downloads\APK 2020 06\esetonlinescanner.exe
Task: {8E2D0D52-C432-475A-B968-77228AD3B4E7} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {975A0647-F84B-41E5-952F-5228246C5099} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9BA7BABA-AAA3-4A87-B38D-E6C3C46FDD02} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-07-08] () [File not signed]
Task: {9CBDA53C-976A-4836-83D6-9C867E7B5C5E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A1740C98-2B76-4F0C-B3A9-A47F349C2B55} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A3610E99-F80D-482D-92A8-0634BAA7B37E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AF8E6286-8813-45D8-B85D-AFF2ACEDDD59} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CD2C7EC9-2663-474E-AFA8-B7659A27FF4E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EAA25E8C-330B-4882-A2F7-93A83BFEA333} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F4200D3A-F3A6-4D9D-A1C1-F22BBBC9034F} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization => C:\Program Files (x86)\Safer-Networking Ltd\Spybot Anti-Beacon\Spybot3AntiBeacon.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 57daf2f6-b7c7-4952-80c4-63d6d3d14fe7.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{22effb9c-836a-491f-b925-3154fdb42186}: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{37e50e8e-a108-4f63-a586-ae40907e3201}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/cs-cz/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-503818456-1414817836-1498445010-1001 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
IE Session Restore: HKU\S-1-5-21-503818456-1414817836-1498445010-1001 -> is enabled.

Edge:
======
DownloadDir: C:\Users\fram33\Downloads
Edge Profile: C:\Users\fram33\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-10]

FireFox:
========
FF DefaultProfile: 8hzc6kzw.default
FF ProfilePath: C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\8hzc6kzw.default [2020-07-31]
FF user.js: detected! => C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\8hzc6kzw.default\user.js [2019-11-15]
FF NewTab: Mozilla\Firefox\Profiles\8hzc6kzw.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10421__191001
FF ProfilePath: C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release [2020-08-10]
FF user.js: detected! => C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\user.js [2019-11-15]
FF DownloadDir: \\FRAM33-ASUS\Users\fram33\dwhelper
FF NewTab: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10421__191001
FF Session Restore: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> hxxps://www.slevydnes.cz
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Enabled: pavel.sherbakov@gmail.com
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Disabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Enabled: {814a14eb-b15c-49d7-ad8c-302875a54b45}
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Enabled: uBlock0@raymondhill.net
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Enabled: ddg@search.mozilla.org
FF Extension: (AdBlocker Ultimate) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2020-07-16]
FF Extension: (To Google Translate) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2019-11-29]
FF Extension: (New Tab Page) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\pavel.sherbakov@gmail.com.xpi [2020-07-15]
FF Extension: (Download Manager (S3)) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\s3download@statusbar.xpi [2019-07-10]
FF Extension: (Simple Translate) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\simple-translate@sienori.xpi [2020-07-15]
FF Extension: (uBlock Origin) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\uBlock0@raymondhill.net.xpi [2020-07-16]
FF Extension: (Download Facebook Video or Photo) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{059befdf-8453-432b-b308-13347f60e482}.xpi [2019-06-06]
FF Extension: (Tab Suspender) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{29780561-0607-49f3-aba9-fb8806d2f22d}.xpi [2020-07-15]
FF Extension: (Total Suspender) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{77497113-dd7f-4e91-b31f-9c1625e884c7}.xpi [2020-07-15]
FF Extension: (Facebook Videos Downloader) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{814a14eb-b15c-49d7-ad8c-302875a54b45}.xpi [2020-07-15]
FF Extension: (Google Translator with Right Click) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{92047279-0910-4abb-beb7-a7f2cd6cf04b}.xpi [2019-09-16]
FF Extension: (Auto Shutdown) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{9a71ec90-d0b6-44af-833f-efe418ff8454}.xpi [2020-07-15]
FF Extension: (Adobe Flash) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{abf6a41a-5038-4dd9-abef-b66ae700fe88}.xpi [2019-07-10]
FF Extension: (Video DownloadHelper) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-07-15]
FF Extension: (DownThemAll!) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2019-11-29]
FF HKLM\...\Firefox\Extensions: [{9ea472d6-41d7-49db-bb40-1c8306a23129}] - C:\Program Files (x86)\twengoo\ff\twengoo-1.0.0-fx.xpi
FF Extension: (Twengoo) - C:\Program Files (x86)\twengoo\ff\twengoo-1.0.0-fx.xpi [2019-09-22]
FF HKLM-x32\...\Firefox\Extensions: [{9ea472d6-41d7-49db-bb40-1c8306a23129}] - C:\Program Files (x86)\twengoo\ff\twengoo-1.0.0-fx.xpi
FF HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi => not found
FF HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\fram33\AppData\Roaming\IDM\idmmzcc5 => not found
FF HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => not found
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-08-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-08-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-07-23] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-07-23] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default [2020-08-10]
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Překladač Google) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-08-10]
CHR Extension: (Prezentace) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-08-10]
CHR Extension: (Dokumenty) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-08-10]
CHR Extension: (Disk Google) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-08-05]
CHR Extension: (Video Downloader professional) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\bacakpdjpomjaelpkpkabmedhkoongbi [2020-08-10]
CHR Extension: (MEGA) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2020-08-10]
CHR Extension: (YouTube) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-05]
CHR Extension: (uBlock Origin) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-08-10]
CHR Extension: (The New Tab - Customize Your Start Page) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddjdamcnphfdljlojajeoiogkanilahc [2020-08-10]
CHR Extension: (Tampermonkey) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-08-10]
CHR Extension: (Clean Master: Nejlepší Cleaner pro mezipaměť Chrome) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\eagiakjmjnblliacokhcalebgnhellfi [2020-08-10]
CHR Extension: (Tabulky) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-08-10]
CHR Extension: (Word Online) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2020-08-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-10]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-08-10]
CHR Extension: (TV4ever) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakgeikmiemocehnfkjdahojanjpjcch [2020-08-10]
CHR Extension: (PDF Mergy - Merge PDF files) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha [2020-08-05]
CHR Extension: (TV4ever Helper) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmpadaackcccnhpmcggjdapkmmefkadc [2020-08-10]
CHR Extension: (Pixlr Editor) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2020-08-05]
CHR Extension: (Excel Online) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2020-08-05]
CHR Extension: (Boční lišta záložek) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdbnofccmhefkmjbkkdkfiicjkgofkdh [2020-08-10]
CHR Extension: (Save to Facebook) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2020-08-10]
CHR Extension: (The Great Suspender) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2020-08-10]
CHR Extension: (Numerics Calculator & Converter) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe [2020-08-05]
CHR Extension: (Video DownloadHelper) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2020-08-10]
CHR Extension: (PowerPoint Online) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkgcbpnhp [2020-08-05]
CHR Extension: (ZIP Extractor) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmfcakoljjhncfphlflcedhgogfhpbcd [2020-08-05]
CHR Extension: (IDM Integration Module) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-08-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-08-10]
CHR Extension: (Video Cutter) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\nodkcjollmmjidmcnhloaoahmciabnai [2020-08-05]
CHR Extension: (TV4ever beta) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\oljkelfblcoffgnoiplbgdilcccfniek [2020-08-10]
CHR Extension: (Gmail) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-08-05]
CHR Extension: (Chrome Media Router) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-08-10]
CHR HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
S4 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192320 2020-06-29] (Huawei Technologies Co., Ltd. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-05-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\NisSrv.exe [2169568 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MsMpEng.exe [128376 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4321160 2019-07-01] (Qualcomm Atheros -> Qualcomm Atheros Communications, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2020-01-09] (Microsoft Corporation) [File not signed]
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [32384 2018-03-14] (Sony Mobile Communications AB -> Sony Mobile Communications)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 RkFlt; C:\Windows\System32\drivers\rkflt.sys [41616 2020-08-05] (Adlice -> )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [78216 2020-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [430320 2020-08-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98520 2020-08-05] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
U3 TrueSight; \??\C:\Windows\System32\drivers\truesight.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-10 12:43 - 2020-08-10 12:48 - 000000000 ____D C:\FRST
2020-08-10 11:54 - 2020-08-10 11:54 - 001089398 _____ C:\Users\fram33\AppData\Local\census.cache
2020-08-10 11:53 - 2020-08-10 11:53 - 000470956 _____ C:\Users\fram33\AppData\Local\ars.cache
2020-08-10 11:01 - 2020-08-10 11:01 - 000000010 _____ C:\Users\fram33\AppData\Local\sponge.last.runtime.cache
2020-08-10 10:58 - 2020-08-10 10:58 - 000000000 ____D C:\WINDOWS\Trend Micro
2020-08-10 10:58 - 2020-08-10 10:58 - 000000000 ____D C:\ProgramData\Trend Micro
2020-08-10 10:54 - 2020-08-10 10:54 - 000000036 _____ C:\Users\fram33\AppData\Local\housecall.guid.cache
2020-08-10 10:52 - 2020-08-10 10:54 - 000000000 ___HD C:\$WINDOWS.~BT
2020-08-10 10:46 - 2020-08-10 10:46 - 000000000 ___HD C:\$WinREAgent
2020-08-10 10:41 - 2020-08-10 12:30 - 000000000 ____D C:\Users\fram33\Downloads\GRAFIKA
2020-08-10 10:10 - 2020-08-10 10:10 - 000000000 ____D C:\Users\fram33\Downloads\DaVinci_Resolve_Studio_16.2.5_Windows
2020-08-10 09:36 - 2020-08-10 10:54 - 000000000 ____D C:\WINDOWS\Panther
2020-08-10 09:14 - 2020-08-10 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiJackThis Fork
2020-08-08 17:42 - 2020-08-06 11:29 - 069154627 _____ C:\Users\fram33\Downloads\00095290man_cs_de_en_es_fr_hu_it_nl_pl_pt_skxx2.pdf
2020-08-07 09:26 - 2020-08-07 09:26 - 022725243 _____ C:\Users\fram33\Desktop\bookmarks založky firefox 2020 08 06.html
2020-08-06 11:54 - 2020-08-06 11:54 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2020-08-06 11:24 - 2020-08-06 11:23 - 014860896 _____ (ESET spol. s r.o.) C:\esetonlinescanner.exe
2020-08-06 11:19 - 2020-08-06 11:08 - 053114992 _____ (SUPERAntiSpyware) C:\SUPERAntiSpyware.exe
2020-08-06 11:05 - 2020-08-06 11:05 - 000001635 _____ C:\Users\fram33\Desktop\xnview – zástupce (2).lnk
2020-08-06 10:57 - 2020-08-10 10:48 - 000000000 ____D C:\Users\fram33\AppData\Roaming\XnView
2020-08-06 10:38 - 2020-08-06 10:50 - 000000000 ____D C:\AdwCleaner
2020-08-06 09:02 - 2020-08-06 09:02 - 000000000 ____D C:\Users\fram33\AppData\Local\GHISLER
2020-08-06 07:57 - 2020-08-06 07:57 - 000000000 ____D C:\Users\fram33\AppData\Local\MicrosoftEdge
2020-08-05 18:59 - 2020-08-06 07:26 - 000000536 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 57daf2f6-b7c7-4952-80c4-63d6d3d14fe7.job
2020-08-05 18:59 - 2020-08-05 18:59 - 000003774 _____ C:\WINDOWS\system32\Tasks\SUPERAntiSpyware Scheduled Task 57daf2f6-b7c7-4952-80c4-63d6d3d14fe7
2020-08-05 18:59 - 2020-08-05 18:59 - 000000000 ____D C:\Users\fram33\AppData\Roaming\SUPERAntiSpyware.com
2020-08-05 18:58 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2020-08-05 18:58 - 2020-08-10 10:48 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2020-08-05 18:58 - 2020-08-05 18:58 - 000001809 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Professional X.lnk
2020-08-05 18:58 - 2020-08-05 18:58 - 000001809 _____ C:\ProgramData\Desktop\SUPERAntiSpyware Professional X.lnk
2020-08-05 18:56 - 2020-08-05 18:56 - 000003824 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-08-05 18:56 - 2020-08-05 18:56 - 000003382 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-08-05 13:10 - 2020-08-10 10:44 - 000000000 ____D C:\Users\fram33\AppData\Local\ESET
2020-08-05 10:31 - 2020-08-05 11:33 - 000041616 _____ C:\WINDOWS\system32\Drivers\rkflt.sys
2020-08-05 09:14 - 2020-08-10 11:25 - 000000000 ____D C:\Users\fram33\AppData\Roaming\MPC-HC
2020-08-05 09:10 - 2020-08-05 09:10 - 000003186 _____ C:\WINDOWS\system32\Tasks\klcp_update
2020-08-05 09:08 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2020-08-05 09:07 - 2020-08-10 10:48 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2020-08-05 07:21 - 2020-08-05 07:21 - 000000000 ____D C:\Users\fram33\Documents\Bandicut
2020-08-05 07:20 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicut
2020-08-05 07:20 - 2020-08-10 10:48 - 000000000 ____D C:\Program Files (x86)\Bandicut
2020-08-05 07:20 - 2020-08-05 07:20 - 000001057 _____ C:\Users\Public\Desktop\Bandicut.lnk
2020-08-05 07:20 - 2020-08-05 07:20 - 000001057 _____ C:\ProgramData\Desktop\Bandicut.lnk
2020-08-05 07:19 - 2020-08-05 07:19 - 019134848 _____ (Bandicam Company) C:\Users\fram33\Desktop\bandicut-setup.exe
2020-08-04 13:04 - 2020-08-10 10:48 - 000000000 ____D C:\WINDOWS\SysWOW64\NV
2020-08-04 13:04 - 2020-08-10 10:48 - 000000000 ____D C:\WINDOWS\system32\NV
2020-08-04 13:04 - 2015-07-23 02:44 - 000572048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2020-08-04 13:03 - 2015-07-23 06:02 - 000112784 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-08-04 13:03 - 2015-07-23 06:02 - 000105288 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 006873928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 003493008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 002558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 001059984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 000937800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2020-08-04 13:03 - 2015-07-23 03:10 - 000385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 000074896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 000062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-08-04 13:03 - 2015-07-22 06:29 - 005121613 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-08-04 12:54 - 2015-07-23 06:02 - 042730312 _____ C:\WINDOWS\system32\nvcompiler.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 037749064 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 030518928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 022973584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 018376584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 016160440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 016011680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 015754192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 014511608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 013274904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 012973680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 011843384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 011142984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2020-08-04 12:54 - 2015-07-23 06:02 - 003351864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 002963208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 002360976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 002164040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 001898128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435362.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 001557648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435362.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 001165192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 001061008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 001053000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000991152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000983368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000976528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000155280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000150832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000031976 _____ C:\WINDOWS\system32\nvinfo.pb
2020-08-04 12:54 - 2015-07-23 06:02 - 000031376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2020-08-04 12:36 - 2020-08-04 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-08-04 12:36 - 2020-06-23 16:20 - 002754024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-08-04 12:36 - 2020-06-23 16:20 - 002122216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2020-08-04 12:36 - 2020-06-23 16:20 - 001295848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-08-04 12:35 - 2020-08-04 12:35 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 12:35 - 2020-08-04 12:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 12:35 - 2020-08-04 12:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 12:35 - 2020-08-04 12:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 12:35 - 2020-08-04 12:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 12:35 - 2020-03-11 21:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-08-04 12:35 - 2020-03-04 14:54 - 001804784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-08-04 12:35 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-08-04 11:51 - 2020-08-10 10:44 - 000000000 ____D C:\Users\fram33\AppData\Local\NVIDIA Corporation
2020-08-04 11:51 - 2020-08-04 12:36 - 000001403 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2020-08-04 11:51 - 2020-08-04 12:36 - 000001403 _____ C:\ProgramData\Desktop\GeForce Experience.lnk
2020-08-04 11:46 - 2020-08-04 12:35 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 11:46 - 2020-08-04 12:35 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 11:45 - 2020-05-29 07:34 - 000169968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2020-08-04 11:45 - 2020-05-29 07:34 - 000145904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2020-08-04 11:41 - 2020-03-06 12:03 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2020-08-03 16:11 - 2020-08-03 16:11 - 000002243 _____ C:\Users\fram33\Desktop\WhatsApp.lnk
2020-08-03 16:10 - 2020-08-03 16:11 - 000000000 ____D C:\Users\fram33\AppData\Local\WhatsApp
2020-08-03 11:50 - 2020-08-10 10:44 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2020-08-03 11:37 - 2020-08-10 10:31 - 000000000 ____D C:\Program Files\EnigmaSoft
2020-08-03 11:23 - 2020-08-03 16:11 - 000000000 ____D C:\Users\fram33\AppData\Local\SquirrelTemp
2020-08-03 11:18 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\UCheck
2020-08-03 10:52 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\RogueKiller
2020-07-31 09:34 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safer Networking
2020-07-31 09:34 - 2020-08-10 10:48 - 000000000 ____D C:\Program Files (x86)\Safer Networking
2020-07-31 09:00 - 2020-08-03 11:23 - 000000823 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-07-31 09:00 - 2020-08-03 11:23 - 000000823 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-07-31 06:35 - 2020-08-05 11:51 - 000000085 _____ C:\WINDOWS\wininit.ini
2020-07-31 06:15 - 2020-07-31 06:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD
2020-07-31 06:15 - 2020-07-31 06:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-07-30 21:06 - 2020-08-05 11:47 - 000001513 _____ C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Delphi Toasts App.lnk
2020-07-30 21:06 - 2020-07-30 21:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2020-07-30 21:05 - 2020-08-06 07:26 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-07-30 16:13 - 2020-08-10 12:17 - 089653248 _____ C:\WINDOWS\system32\config\software
2020-07-30 15:32 - 2020-07-30 15:32 - 000000000 ____D C:\ProgramData\XDMessagingv4
2020-07-30 15:29 - 2020-07-30 15:29 - 000000000 ____D C:\Users\fram33\AppData\Roaming\Abelssoft
2020-07-30 15:29 - 2020-07-30 15:29 - 000000000 ____D C:\Users\fram33\AppData\Local\Abelssoft
2020-07-30 15:24 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2020-07-30 11:51 - 2020-07-30 11:51 - 000000000 ____D C:\Users\fram33\AppData\Local\mbam
2020-07-30 11:51 - 2020-07-30 11:51 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2020-07-30 11:48 - 2020-07-30 11:48 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2020-07-30 09:52 - 2020-07-30 09:53 - 000000000 ____D C:\Users\fram33\.openshot_qt
2020-07-30 09:30 - 2020-07-30 09:30 - 000000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenShot Video Editor.lnk
2020-07-30 09:30 - 2020-07-30 09:30 - 000000959 _____ C:\Users\Public\Desktop\OpenShot Video Editor.lnk
2020-07-30 09:30 - 2020-07-30 09:30 - 000000959 _____ C:\ProgramData\Desktop\OpenShot Video Editor.lnk
2020-07-30 09:29 - 2020-07-30 09:30 - 000000000 ____D C:\Program Files\OpenShot Video Editor
2020-07-30 07:00 - 2020-07-30 07:00 - 000000000 ____D C:\Users\fram33\AppData\Roaming\XnConvert
2020-07-30 06:34 - 2020-08-10 10:48 - 000000000 ____D C:\Users\fram33\AppData\Roaming\XnViewMP
2020-07-29 12:45 - 2020-07-29 12:45 - 000001060 _____ C:\Users\Public\Desktop\HiSuite.lnk
2020-07-29 12:45 - 2020-07-29 12:45 - 000001060 _____ C:\ProgramData\Desktop\HiSuite.lnk
2020-07-29 12:45 - 2020-07-29 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2020-07-29 12:44 - 2020-07-29 12:45 - 000000000 ____D C:\Program Files (x86)\HiSuite
2020-07-29 10:15 - 2020-08-10 11:34 - 000000000 ____D C:\Users\fram33\Downloads\HLEBO
2020-07-26 18:56 - 2020-07-26 18:56 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-26 18:56 - 2020-07-26 18:56 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-26 18:56 - 2020-07-26 18:56 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-26 18:56 - 2020-07-26 18:56 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-26 18:56 - 2020-07-26 18:56 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-26 18:56 - 2020-07-26 18:56 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-26 18:56 - 2020-07-26 18:56 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-26 18:56 - 2020-07-26 18:56 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-26 18:56 - 2020-07-26 18:56 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-26 18:56 - 2020-07-26 18:56 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteFXvGPUDisablement.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-26 18:55 - 2020-07-26 18:55 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-26 18:55 - 2020-07-26 18:55 - 003980800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-26 18:55 - 2020-07-26 18:55 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-26 18:55 - 2020-07-26 18:55 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-26 18:55 - 2020-07-26 18:55 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-26 18:55 - 2020-07-26 18:55 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-26 18:55 - 2020-07-26 18:55 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-26 18:55 - 2020-07-26 18:55 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-26 18:55 - 2020-07-26 18:55 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-26 18:48 - 2020-06-30 06:32 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-26 18:48 - 2020-06-30 06:26 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-16 18:00 - 2020-07-30 06:21 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-16 18:00 - 2020-07-30 06:21 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-07-16 18:00 - 2020-07-30 06:21 - 000002260 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-07-16 17:59 - 2020-07-16 18:00 - 000000000 ____D C:\Program Files (x86)\Google
2020-07-16 17:54 - 2020-07-16 17:54 - 000000000 ____D C:\WINDOWS\ABR
2020-07-16 11:54 - 2020-08-10 10:30 - 000000000 ____D C:\Users\fram33\Downloads\Video
2020-07-16 11:54 - 2020-08-10 10:19 - 000000000 ____D C:\Users\fram33\Downloads\Compressed
2020-07-16 11:54 - 2020-07-16 16:20 - 000000000 ____D C:\Users\fram33\AppData\Roaming\DMCache
2020-07-16 08:04 - 2020-08-10 11:09 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-07-15 15:41 - 2020-07-15 15:41 - 000001499 _____ C:\Users\fram33\Desktop\firefox – zástupce.lnk
2020-07-15 14:21 - 2020-07-30 11:41 - 000000000 ____D C:\ProgramData\F-Secure
2020-07-15 14:20 - 2020-07-30 11:55 - 000000000 ____D C:\Users\fram33\AppData\Local\FSDART
2020-07-15 13:37 - 2020-08-05 13:10 - 000000824 _____ C:\Users\fram33\Desktop\ESET Online Scanner.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-10 12:48 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-10 12:41 - 2019-08-18 13:49 - 000000000 ____D C:\Users\fram33\dwhelper
2020-08-10 12:30 - 2020-02-28 08:25 - 000000000 ____D C:\Users\fram33\Documents\Zálohy
2020-08-10 12:22 - 2020-05-23 12:58 - 001699488 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-10 12:22 - 2019-03-19 13:57 - 000718436 _____ C:\WINDOWS\system32\perfh005.dat
2020-08-10 12:22 - 2019-03-19 13:57 - 000145480 _____ C:\WINDOWS\system32\perfc005.dat
2020-08-10 12:22 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-08-10 12:20 - 2019-06-05 16:14 - 000000000 ____D C:\ProgramData\NVIDIA
2020-08-10 12:18 - 2019-06-06 08:14 - 000000000 ____D C:\Users\fram33\AppData\LocalLow\Mozilla
2020-08-10 12:17 - 2020-05-23 13:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-08-10 12:17 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-08-10 12:09 - 2020-07-02 11:33 - 000000000 ____D C:\Users\fram33\AppData\Roaming\WhatsApp
2020-08-10 11:25 - 2019-06-06 15:39 - 000000000 ____D C:\Users\fram33\AppData\Local\CrashDumps
2020-08-10 11:19 - 2020-05-23 13:02 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-08-10 11:19 - 2019-06-06 09:40 - 000000000 ____D C:\Program Files\CCleaner
2020-08-10 11:09 - 2019-06-06 08:14 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-08-10 10:48 - 2020-06-30 13:25 - 000000000 ____D C:\Users\fram33\AppData\Roaming\IrfanView
2020-08-10 10:48 - 2020-04-29 13:16 - 000000000 ____D C:\Users\fram33\AppData\Roaming\Astra Image
2020-08-10 10:48 - 2020-04-29 13:16 - 000000000 ____D C:\Program Files\Astra Image
2020-08-10 10:48 - 2019-12-18 11:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-08-10 10:48 - 2019-12-18 11:51 - 000000000 ____D C:\Program Files (x86)\Java
2020-08-10 10:48 - 2019-11-28 11:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CardRecovery
2020-08-10 10:48 - 2019-11-28 11:23 - 000000000 ____D C:\Program Files (x86)\CardRecovery
2020-08-10 10:48 - 2019-11-28 08:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CardRecoveryPro
2020-08-10 10:48 - 2019-11-28 08:56 - 000000000 ____D C:\Program Files (x86)\CardRecoveryPro
2020-08-10 10:48 - 2019-11-15 15:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AD Stahovač souborů
2020-08-10 10:48 - 2019-11-15 15:06 - 000000000 ____D C:\Program Files (x86)\AD Stahovač souborů
2020-08-10 10:48 - 2019-07-01 11:45 - 000000000 ____D C:\Users\fram33\AppData\Roaming\vlc
2020-08-10 10:48 - 2019-06-06 09:56 - 000000000 ____D C:\Program Files\Recuva
2020-08-10 10:48 - 2019-06-06 09:21 - 000000000 ____D C:\Users\fram33\AppData\Roaming\GHISLER
2020-08-10 10:48 - 2019-06-06 08:41 - 000000000 ____D C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2020-08-10 10:48 - 2019-06-06 08:24 - 000000000 ____D C:\Users\fram33\AppData\Roaming\XnView-BackupByXnViewPortable
2020-08-10 10:48 - 2019-06-06 08:22 - 000000000 ____D C:\_Programy
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\Nui
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Keywords
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\DDFs
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\System
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\security
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-08-10 10:46 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-10 10:44 - 2020-05-23 13:50 - 000000000 ____D C:\Windows.old1
2020-08-10 10:44 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\registration
2020-08-10 10:31 - 2020-05-23 13:50 - 000000000 ____D C:\Windows.old
2020-08-10 10:30 - 2020-06-29 14:30 - 000000000 ____D C:\Users\fram33\Downloads\C2600
2020-08-10 10:27 - 2020-02-14 15:25 - 000000000 ____D C:\Users\fram33\Documents\dovolená 2020
2020-08-10 10:06 - 2020-05-23 12:53 - 000000000 ____D C:\Users\fram33
2020-08-08 19:31 - 2020-05-23 12:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-07 09:39 - 2019-06-07 15:00 - 000000000 ____D C:\Users\fram33\AppData\Local\D3DSCache
2020-08-07 09:16 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-08-06 11:11 - 2020-06-30 13:14 - 000001012 _____ C:\Users\fram33\Desktop\XnView.lnk
2020-08-06 09:47 - 2020-05-23 13:01 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2020-08-06 09:47 - 2020-05-23 13:01 - 000001908 _____ C:\WINDOWS\diagerr.xml
2020-08-06 08:05 - 2020-05-23 13:02 - 000000000 ____D C:\WINDOWS\minidump
2020-08-05 13:11 - 2019-08-07 17:44 - 000000952 _____ C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-08-05 12:03 - 2019-06-05 15:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-08-05 11:52 - 2019-06-05 16:15 - 000000000 ____D C:\Users\fram33\AppData\Local\Packages
2020-08-04 13:04 - 2019-06-05 16:13 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-08-04 13:03 - 2019-06-05 16:13 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-08-04 13:03 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Help
2020-08-04 13:02 - 2019-06-05 16:13 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-08-04 11:52 - 2020-05-18 10:23 - 000000000 ____D C:\Users\fram33\AppData\Local\NVIDIA
2020-08-03 16:11 - 2020-07-02 11:33 - 000000000 ____D C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2020-08-03 13:38 - 2019-06-06 09:11 - 000000000 ____D C:\Program Files\WinRAR
2020-08-03 11:24 - 2019-12-18 11:52 - 000166056 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-08-03 11:22 - 2019-06-06 09:00 - 000000000 ____D C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-08-03 11:22 - 2019-06-06 09:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-08-03 08:34 - 2019-06-05 16:15 - 000000000 ____D C:\Users\fram33\AppData\Local\ConnectedDevicesPlatform
2020-07-31 10:04 - 2019-06-05 16:18 - 000000000 ____D C:\Users\fram33\AppData\Local\PlaceholderTileLogoFolder
2020-07-31 10:04 - 2019-06-05 16:15 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-31 09:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-07-31 09:00 - 2019-06-06 09:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-07-30 16:13 - 2020-06-22 17:17 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2020-07-30 15:14 - 2019-06-06 09:29 - 000000000 ____D C:\ProgramData\AVAST Software
2020-07-30 14:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-07-30 13:21 - 2020-06-10 09:32 - 000002508 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-30 13:21 - 2020-06-10 09:32 - 000002346 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-07-30 13:21 - 2020-06-10 09:32 - 000002346 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-07-30 13:10 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-07-30 13:08 - 2019-06-05 16:15 - 000000000 ____D C:\Users\fram33\AppData\Local\VirtualStore
2020-07-30 06:46 - 2019-06-06 08:37 - 000000000 ____D C:\Users\fram33\AppData\Local\Google
2020-07-29 12:46 - 2020-05-18 07:36 - 000000000 ____D C:\Users\fram33\AppData\Local\HiSuite
2020-07-29 07:47 - 2019-09-18 09:21 - 000000000 ____D C:\Users\fram33\Documents\_TANKOVÁNÍ - kopie
2020-07-26 19:06 - 2020-05-23 12:51 - 000447528 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-26 19:06 - 2019-06-05 16:15 - 000000000 ___RD C:\Users\fram33\3D Objects
2020-07-26 19:05 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-26 19:05 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-26 19:05 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-26 19:01 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-16 17:54 - 2019-06-11 11:01 - 000000374 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2020-07-16 17:54 - 2019-06-07 11:22 - 000000000 ____D C:\Program Files (x86)\PDF24
2020-07-16 14:23 - 2020-01-09 11:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-07-15 15:45 - 2019-06-06 08:14 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2020-07-15 15:45 - 2019-06-06 08:14 - 000000993 _____ C:\ProgramData\Desktop\Firefox.lnk
2020-07-15 13:28 - 2020-05-23 13:02 - 000002236 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-07-14 08:56 - 2019-07-10 11:36 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-07-13 13:33 - 2019-09-06 09:30 - 000000000 ____D C:\Users\fram33\Documents\EBAY

==================== Files in the root of some directories ========

2020-08-10 11:53 - 2020-08-10 11:53 - 000470956 _____ () C:\Users\fram33\AppData\Local\ars.cache
2020-08-10 11:54 - 2020-08-10 11:54 - 001089398 _____ () C:\Users\fram33\AppData\Local\census.cache
2020-08-10 10:54 - 2020-08-10 10:54 - 000000036 _____ () C:\Users\fram33\AppData\Local\housecall.guid.cache
2020-01-29 15:15 - 2020-01-29 15:15 - 000000017 _____ () C:\Users\fram33\AppData\Local\resmon.resmoncfg
2020-08-10 11:01 - 2020-08-10 11:01 - 000000010 _____ () C:\Users\fram33\AppData\Local\sponge.last.runtime.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[fram33]

dobrý den, děkuji za postup... AWD nenalezl nic viz scan ....
# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-10-2020
# Duration: 00:00:33
# OS: Windows 10 Pro
# Scanned: 31837
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [2034 octets] - [06/08/2020 10:40:05]
AdwCleaner[C00].txt - [2040 octets] - [06/08/2020 10:50:50]
AdwCleaner[S01].txt - [1527 octets] - [10/08/2020 16:13:57]
AdwCleaner[S02].txt - [1588 octets] - [10/08/2020 16:20:40]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S03].txt ##########

[Rudy]

Ano, to je OK. Přidejte ještě log Addition (je v souboru addition.txt v C:\Users\fram33\Downloads\Programs) a dočistíme ručně.

[fram33]

chtěl jsem stahnout malwarebytes ...zobrazila se mi iexplorer hláška zablokovani kvuli trojanu...
Jinak klikani...přeskakuje někdy se připne k souboru musím kliknout dvakrat aby to pustilo, někdy vykoná dvakrát ukon...tj když chci kopirovat..otevírá hned soubor , u internetovych strankach maže více panelů....atd...

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-08-2020
Ran by fram33 (10-08-2020 12:49:37)
Running from C:\Users\fram33\Downloads\Programs
Windows 10 Pro Version 1909 18363.959 (X64) (2020-05-23 11:02:40)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-503818456-1414817836-1498445010-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-503818456-1414817836-1498445010-503 - Limited - Disabled)
fram33 (S-1-5-21-503818456-1414817836-1498445010-1001 - Administrator - Enabled) => C:\Users\fram33
Guest (S-1-5-21-503818456-1414817836-1498445010-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-503818456-1414817836-1498445010-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
AD Stahovač souborů 1.2 (HKLM-x32\...\AD Stahovač souborů_is1) (Version: - PS Media s.r.o.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.56.1 - Asmedia Technology)
Astra Image PLUS 5.5.2.0 (HKLM\...\Astra Image PLUS_is1) (Version: 5.5.2.0 - lrepacks.ru)
Balíček ovladače systému Windows - Sony Mobile Communications (ggsomc) SOMCFlashDevice (12/06/2017 3.2.0.0) (HKLM\...\7AA77B236196DB9A6C04257060560ACDBB626F30) (Version: 12/06/2017 3.2.0.0 - Sony Mobile Communications)
Bandicut (HKLM-x32\...\Bandicut) (Version: 3.5.0.599 - Bandicam.com)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.7.0 - Canon Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.5.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.5.0 - Canon Inc.)
CardRecovery 6.10 (HKLM-x32\...\{88D68A69-D247-466B-90DD-575F6BE16230}_is1) (Version: - WinRecovery Software)
CardRecoveryPro 2.5.5 (HKLM-x32\...\{D4F48A8F-8E81-43E0-847F-04318383476F}_is1) (Version: 2.5.5 - LionSea SoftWare)
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
ELAN Touchpad 11.5.22.2_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.22.2 - ELAN Microelectronic Corp.)
FastCodec 1.0 beta (HKLM-x32\...\FastCodec) (Version: - )
FileAlyzer 2 (HKLM-x32\...\{29D3773E-54F4-23C2-D523-236A4453B845}_is1) (Version: 2.0.5.57 - Safer Networking Limited)
FinePrint (HKLM\...\FinePrint) (Version: 9.31 - FinePrint Software, LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.1.0.550 - Huawei Technologies Co., Ltd.)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
K-Lite Codec Pack 15.6.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.0 - KLCP)
LEDControl V2.0 (HKLM-x32\...\{5FAE725C-5E68-4AFB-B861-66C93CC6B71E}) (Version: 1.0.0 - LeyNew)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\OneDriveSetup.exe) (Version: 19.163.0818.0004 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Mozilla Firefox 80.0 (x64 cs) (HKLM\...\Mozilla Firefox 80.0 (x64 cs)) (Version: 80.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 79.0 - Mozilla)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.14 - F.J. Wechselberger)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.62 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.62 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
OpenShot Video Editor verze 2.5.1 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.5.1 - OpenShot Studios, LLC)
Ovládací panel NVIDIA 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 353.62 - NVIDIA Corporation) Hidden
PDF24 Creator 8.8.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.5.1 - pdfforge GmbH)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22925 - Microsoft Corporation)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.3.14 - Qualcomm Atheros)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.31 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.102 - Realtek Semiconductor Corp.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.2.1.1780 - Samsung Electronics)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
SD Card Formatter (HKLM-x32\...\{A61131DC-B92D-4AD8-A925-E2D6D5FE217C}) (Version: 5.0.1 - SD Association)
Služba Xperia Companion (HKLM\...\{D0CEE476-32BB-45F9-BAB0-8717579E50A6}) (Version: 2.9.2.0 - Sony) Hidden
Sony Mobile Software Update Drivers (HKLM\...\{4872001F-F67C-4C54-BC92-281C6A165251}) (Version: 3.2.0.3 - Sony Mobile Communications)
Sony Mobile Update Engine (HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\Update Engine) (Version: 2.20.6.202006041418 - Sony Mobile Communications Inc.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1206 - SUPERAntiSpyware.com)
twengoo (HKLM-x32\...\{F6B12BAA-E849-4296-8D8A-08F2ECE7D555}) (Version: 1.0.0.0 - Twengoo)
VdhCoApp 1.3.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
VSDC Free Video Editor version 6.4.7.155 (HKLM\...\VSDC Free Video Editor_is1) (Version: 6.4.7.155 - Flash-Integro LLC)
WhatsApp (HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\WhatsApp) (Version: 2.2031.4 - WhatsApp)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
XnConvert 1.85.1 (HKLM\...\XnConvert_is1) (Version: 1.85.1 - Gougelet Pierre-e)
XnView 2.49.3 (HKLM-x32\...\XnView_is1) (Version: 2.49.3 - Gougelet Pierre-e)
XnViewMP 0.96.3 (HKLM\...\XnViewMP_is1) (Version: 0.96.3 - Gougelet Pierre-e)
Xperia Companion (HKLM-x32\...\{0DAEA7C9-C970-4073-BE1E-3C1B487A33E2}) (Version: 2.9.2.0 - Sony) Hidden
Xperia Companion (HKLM-x32\...\{c525c199-1efa-4ccd-92ee-fdf41f467dfc}) (Version: 2.9.2.0 - Sony)

Packages:
=========
Arial Nova -> C:\Program Files\WindowsApps\Microsoft.ArialNova_1.0.1.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-08-10] (Canon Inc.)
Convection -> C:\Program Files\WindowsApps\Microsoft.Convection_1.0.1.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2020-08-10] (Facebook Inc)
Free Beautiful Wallpapers HD -> C:\Program Files\WindowsApps\OnionSoftware.FreeBeautifulWallpapersHD_1.1.0.0_x64__ervdxkv9fa05r [2020-08-10] (Opening Code LTD) [MS Ad]
Free Nature Wallpapers -> C:\Program Files\WindowsApps\OnionSoftware.FreeNatureWallpapers_1.1.2.0_x64__ervdxkv9fa05r [2020-08-10] (Opening Code LTD) [MS Ad]
Georgia Pro -> C:\Program Files\WindowsApps\Microsoft.GeorgiaPro_1.0.2.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Gill Sans Nova -> C:\Program Files\WindowsApps\Microsoft.GillSansNova_1.0.1.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
HiSuite -> C:\Program Files\WindowsApps\6530varisteGalois.HiSuite_1.1.0.0_x86__gcbhn7m1f6q1a [2020-08-10] (Évariste Galois)
Ink Draft -> C:\Program Files\WindowsApps\Microsoft.InkDraft_1.0.1.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Lake Baikal -> C:\Program Files\WindowsApps\Microsoft.LakeBaikal_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Live Sun -> C:\Program Files\WindowsApps\33630DanielLam.LiveSun_1.2.2.0_x64__agwpzyfba80hm [2020-08-10] (Daniel Lam) [MS Ad]
Mapy.cz -> C:\Program Files\WindowsApps\949FFEAB.Mapy.cz_6.12.23.0_x64__refxrrjvvv3cw [2020-08-10] (Seznam.cz a.s.)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_620.8.119.0_x64__8xx8rvfyw5nnt [2020-08-10] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation) [MS Ad]
Microsoft Font Maker -> C:\Program Files\WindowsApps\Microsoft.InkFont_1.1.27.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.7162.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Studios) [MS Ad]
Mountain's Majesty -> C:\Program Files\WindowsApps\Microsoft.MountainsMajesty_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Movie Maker 10 - FREE -> C:\Program Files\WindowsApps\21336V3TApps.MovieMaker-FREE_2.9.79.0_x64__bzg06mxvgh4fa [2020-08-10] (V3TApps)
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation) [MS Ad]
Natural Hearts PREMIUM -> C:\Program Files\WindowsApps\Microsoft.NaturalHeartsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Rockwell Nova -> C:\Program Files\WindowsApps\Microsoft.RockwellNova_1.0.2.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.138.558.0_x86__zpdnekdrzrea0 [2020-08-10] (Spotify AB) [Startup Task]
Verdana Pro -> C:\Program Files\WindowsApps\Microsoft.VerdanaPro_1.0.2.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Video Cutter & Compressor -> C:\Program Files\WindowsApps\24711Mixilab.VideoCutterCompressor_2.0.1.0_x64__c39s816dkej80 [2020-08-10] (Mixilab) [MS Ad]
Wooden Walkways PREMIUM -> C:\Program Files\WindowsApps\Microsoft.WoodenWalkwaysPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
World National Parks -> C:\Program Files\WindowsApps\Microsoft.WorldNationalParks_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6722448 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> [CC]{85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\Program Files (x86)\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger) [File not signed]
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2018-11-13] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2015-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [File not signed]
HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [File not signed]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [VIDC.FCKK] => C:\Windows\SysWOW64\fastcodec.dll [270336 2006-07-31] (Videosoft.org) [File not signed]
HKLM\...\Drivers32: [vidc.MPG4] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.MP42] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.MP43] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\TV4ever (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=hakgeikmiemocehnfkjdahojanjpjcch
ShortcutWithArgument: C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\TV4ever beta (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=oljkelfblcoffgnoiplbgdilcccfniek

==================== Loaded Modules (Whitelisted) =============

2019-07-15 14:52 - 2012-06-14 17:18 - 000359936 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2019-06-06 08:59 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-06-06 09:28 - 2019-06-06 09:28 - 000116736 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2020-08-05 11:48 - 000001334 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 analytics.ff.avast.com
0.0.0.0 analytics.ns1.ff.avast.com
0.0.0.0 v7event.stats.avcdn.net
0.0.0.0 v7.stats.avcdn.net
0.0.0.0 flow.lavasoft.com
0.0.0.0 telemetry.malwarebytes.com
0.0.0.0 ws.mcafee.com
0.0.0.0 analytics.ccs.mcafee.com
0.0.0.0 analyticsdcs.ccs.mcafee.com
0.0.0.0 carcharodon.trendmicro.com

2019-06-11 11:01 - 2020-07-16 17:54 - 000000374 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\FilExile;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "EaseUS EPM Tray Agent"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_A42D92C77981F72004D52358D3C8A519"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\StartupApproved\Run: => "UCheck"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\StartupApproved\Run: => "SUPERAntiSpyware"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{FB8F25BF-474D-4503-95FD-525F52D2B841}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{94279652-62FC-466C-8CAF-396B1A2AED8E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{0363720C-C989-4234-A0A6-1A7FF84D7DCD}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{C8A256B0-6D63-46A0-8E52-5AFA99B916A9}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

06-08-2020 11:53:33 Removed Java 8 Update 261
10-08-2020 11:07:16 2020 08 10 zaloha

==================== Faulty Device Manager Devices ============

Name: Sony sa0113 ADB Interface Driver
Description: Sony sa0113 ADB Interface Driver
Class Guid: {4da0f16f-b76d-472a-809d-d28c4b3a3abb}
Manufacturer: Sony
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Bluetooth Module
Description: Bluetooth Module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: ========================

Application errors:
==================
Error: (08/10/2020 12:09:17 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (08/10/2020 11:13:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program iexplore.exe verze 11.0.18362.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1d78

Čas spuštění: 01d66ef68db31ff0

Čas ukončení: 23

Cesta k aplikaci: C:\Program Files (x86)\Internet Explorer\iexplore.exe

ID hlášení: 358bc860-5c7a-4f83-8937-24af918aec07

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Top level window is idle

Error: (08/10/2020 09:36:35 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4108,R,98) SRUJet: Při otevírání souboru protokolu C:\WINDOWS\system32\SRU\SRU01EA7.log došlo k chybě -1811 (0xfffff8ed).

Error: (08/10/2020 09:16:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HiJackThis.exe, verze: 2.9.0.18, časové razítko: 0x5b7e5787
Název chybujícího modulu: MSVBVM60.DLL, verze: 6.0.98.15, časové razítko: 0x49b01fc3
Kód výjimky: 0xc0000005
Posun chyby: 0x0000ae87
ID chybujícího procesu: 0x12c4
Čas spuštění chybující aplikace: 0x01d66ee62d7b5f3e
Cesta k chybující aplikaci: E:\Program Files\MALWARE\HiJackThis_test\HiJackThis.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\MSVBVM60.DLL
ID zprávy: 03da1b95-4d24-44be-9be8-fbb9488c404b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/10/2020 09:16:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HiJackThis.exe, verze: 2.9.0.18, časové razítko: 0x5b7e5787
Název chybujícího modulu: HiJackThis.exe, verze: 2.9.0.18, časové razítko: 0x5b7e5787
Kód výjimky: 0xc00001a5
Posun chyby: 0x00006ab0
ID chybujícího procesu: 0x12c4
Čas spuštění chybující aplikace: 0x01d66ee62d7b5f3e
Cesta k chybující aplikaci: E:\Program Files\MALWARE\HiJackThis_test\HiJackThis.exe
Cesta k chybujícímu modulu: E:\Program Files\MALWARE\HiJackThis_test\HiJackThis.exe
ID zprávy: f95b1fcd-e005-428f-b27a-181838c0f491
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/06/2020 12:03:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.18362.959, časové razítko: 0x0ad0521f
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.815, časové razítko: 0xb29ecf52
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000000a1170
ID chybujícího procesu: 0x1b24
Čas spuštění chybující aplikace: 0x01d66bd464e22acb
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 8c3c95ad-c14c-488e-9970-4064391f242f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/06/2020 11:42:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SUPERAntiSpyware.exe, verze: 10.0.0.1206, časové razítko: 0x5f284b99
Název chybujícího modulu: dbgcore.DLL, verze: 10.0.18362.1, časové razítko: 0x17edc79f
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000008d14
ID chybujícího procesu: 0x2258
Čas spuštění chybující aplikace: 0x01d66bd470d3e212
Cesta k chybující aplikaci: C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\dbgcore.DLL
ID zprávy: e19bda36-e868-4dd7-a18c-7cc4d532137d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/06/2020 08:16:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mpc-hc64.exe, verze: 1.9.6.24, časové razítko: 0x5f05d7e6
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.815, časové razítko: 0xb29ecf52
Kód výjimky: 0xc000041d
Posun chyby: 0x0000000000007056
ID chybujícího procesu: 0x1d18
Čas spuštění chybující aplikace: 0x01d66bb92747470d
Cesta k chybující aplikaci: C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: f4c16a9d-116d-4d44-8a8d-150bf159a1ce
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (08/10/2020 11:35:27 AM) (Source: DCOM) (EventID: 10000) (User: FRAM33-ASUS)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (08/10/2020 11:25:44 AM) (Source: DCOM) (EventID: 10000) (User: FRAM33-ASUS)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (08/10/2020 10:03:02 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (11:31:30, ‎06.‎08.‎2020) bylo neočekávané.

Error: (08/10/2020 09:39:54 AM) (Source: DCOM) (EventID: 10010) (User: FRAM33-ASUS)
Description: Server {40ECCDBB-2202-4FDF-83ED-272187326B7A} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/10/2020 09:38:35 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (08/10/2020 09:36:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SDUpdateService neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (08/10/2020 09:36:33 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby SDUpdateService bylo dosaženo časového limitu (45000 ms).

Error: (08/10/2020 09:36:29 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:58:01, ‎04.‎08.‎2020) bylo neočekávané.


Windows Defender:
===================================
Date: 2020-08-10 11:19:08.340
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\CCleaner\temp_ccupdate\ccupdate5.70.7909.exe provádění změn v paměti.
Čas detekce: 2020-08-10T09:19:08.340Z
Uživatel: FRAM33-ASUS\fram33
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\CCleaner\temp_ccupdate\ccupdate5.70.7909.exe
Verze bezpečnostních informací: 1.321.1070.0
Verze modulu: 1.1.17300.4
Verze produktu: 4.18.2007.8

Date: 2020-08-10 11:16:44.192
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\Internet Explorer\iexplore.exe možnost upravit %userprofile%\Favorites.
Čas detekce: 2020-08-10T09:16:44.191Z
Uživatel: FRAM33-ASUS\fram33
Cesta: %userprofile%\Favorites
Název procesu: C:\Program Files\Internet Explorer\iexplore.exe
Verze bezpečnostních informací: 1.321.1070.0
Verze modulu: 1.1.17300.4
Verze produktu: 4.18.2007.8

Date: 2020-08-10 11:13:35.953
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\Internet Explorer\iexplore.exe možnost upravit %userprofile%\Favorites.
Čas detekce: 2020-08-10T09:13:35.952Z
Uživatel: FRAM33-ASUS\fram33
Cesta: %userprofile%\Favorites
Název procesu: C:\Program Files\Internet Explorer\iexplore.exe
Verze bezpečnostních informací: 1.321.1070.0
Verze modulu: 1.1.17300.4
Verze produktu: 4.18.2007.8

Date: 2020-08-10 10:49:41.705
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\Internet Explorer\iexplore.exe možnost upravit %userprofile%\Favorites.
Čas detekce: 2020-08-10T08:49:41.704Z
Uživatel: FRAM33-ASUS\fram33
Cesta: %userprofile%\Favorites
Název procesu: C:\Program Files\Internet Explorer\iexplore.exe
Verze bezpečnostních informací: 1.321.1070.0
Verze modulu: 1.1.17300.4
Verze produktu: 4.18.2007.8

Date: 2020-08-10 09:16:14.121
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\Internet Explorer\iexplore.exe možnost upravit %userprofile%\Favorites.
Čas detekce: 2020-08-10T07:16:14.120Z
Uživatel: FRAM33-ASUS\fram33
Cesta: %userprofile%\Favorites
Název procesu: C:\Program Files\Internet Explorer\iexplore.exe
Verze bezpečnostních informací: 1.321.1070.0
Verze modulu: 1.1.17300.4
Verze produktu: 4.18.2007.8

Date: 2020-08-10 10:03:08.016
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o načtení bezpečnostních informací a pokusí se o obnovení poslední známé funkční verze.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

Date: 2020-08-10 09:36:52.011
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o načtení bezpečnostních informací a pokusí se o obnovení poslední známé funkční verze.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

CodeIntegrity:
===================================

Date: 2020-08-10 09:36:39.990
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-05 11:33:30.721
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-05 10:31:30.010
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-04 12:58:04.658
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-03 13:39:04.962
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-03 10:19:05.182
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-07-31 11:12:07.269
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-07-31 11:11:41.939
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. K53SC.221 04/09/2012
Motherboard: ASUSTeK Computer Inc. K53SC
Processor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz
Percentage of memory in use: 55%
Total physical RAM: 8102.7 MB
Available physical RAM: 3644.64 MB
Total Virtual: 16294.7 MB
Available Virtual: 11597.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:475.77 GB) (Free:115.44 GB) NTFS
Drive e: () (Removable) (Total:59.59 GB) (Free:16.5 GB) exFAT

\\?\Volume{0ebeb270-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.57 GB) (Free:0.53 GB) NTFS
\\?\Volume{0ebeb270-0000-0000-0000-d01577000000}\ () (Fixed) (Total:0.6 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 0EBEB270)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=475.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=611 MB) - (Type=27)

==========================================================
Disk: 1 (Protective MBR) (Size: 59.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

[fram33]

zde je

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum události ochrany: 10.08.20
Čas události ochrany: 17:14
Logovací soubor: 27876db4-db1c-11ea-b9b4-14dae964db71.json

-Informace o softwaru-
Verze: 4.1.2.73
Verze komponentů: 1.0.1003
Aktualizovat verzi balíku komponent: 1.0.28261
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 18362.959)
CPU: x64
Systém souborů: NTFS
Uživatel: System

-Podrobnosti o zablokovaném webu-
Škodlivý web: 1
, C:\Program Files\Mozilla Firefox\firefox.exe, Zablokováno, -1, -1, 0.0.0, ,

-Údaje o webu-
Kategorie: Trojský kůň
Doména: forum.viry.cz
IP Adresa: 89.221.217.81
Port: 443
Typ: Odchozí
Soubor: C:\Program Files\Mozilla Firefox\firefox.exe



(end)

[Rudy]

FRST se některým AV nelíbí. Vir to ale není, běžně ho tu používáme. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> [CC]{85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {09c28161-a0c5-11ea-b368-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {75eba5d0-d2fd-11ea-b5c6-14dae964db71} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {832ef50a-b3a8-11ea-b5ad-14dae964db71} - "E:\startme.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {893d06af-cfe5-11ea-b5b7-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {a390779a-c1c3-11ea-b5b0-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {a3907b20-c1c3-11ea-b5b0-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {b16ff17f-d6fe-11ea-b5cb-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {cb9b24c6-b47d-11ea-b5ad-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {fbc76d12-c044-11ea-b5af-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] ->
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] ->
AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvami.inf_amd64_1474122a0ce2f241\nvinitx.dll => No File
AppInit_DLLs-x32: C:\WINDOWS\system32\DriverStore\FileRepository\nvami.inf_amd64_1474122a0ce2f241\nvinit.dll => No File
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-503818456-1414817836-1498445010-1001 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
U1 aswbdisk; no ImagePath

EmptyTemp:
Hosts:
End

Uložte do C:\Users\fram33\Downloads\Programs jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[fram33]

vkládám první soubor ze dvou
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-08-2020
Ran by fram33 (administrator) on FRAM33-ASUS (ASUSTeK Computer Inc. K53SC) (11-08-2020 09:10:10)
Running from C:\Users\fram33\Downloads\Programs
Loaded Profiles: fram33
Platform: Windows 10 Pro Version 1909 18363.959 (X64) Language: Čeština (Česko)
Default browser: IE
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Franz Josef Wechselberger -> F.J. Wechselberger) C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {09c28161-a0c5-11ea-b368-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {75eba5d0-d2fd-11ea-b5c6-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {832ef50a-b3a8-11ea-b5ad-14dae964db71} - "E:\startme.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {893d06af-cfe5-11ea-b5b7-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {a390779a-c1c3-11ea-b5b0-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {a3907b20-c1c3-11ea-b5b0-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {b16ff17f-d6fe-11ea-b5cb-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {cb9b24c6-b47d-11ea-b5ad-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {fbc76d12-c044-11ea-b5af-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\Windows\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series XPS: C:\Windows\system32\CNMXLMBA.DLL [392192 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\FPR9:: C:\Windows\system32\fpmon9-x64.dll [750600 2018-07-23] (FinePrint Software, LLC -> FinePrint Software, LLC)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116736 2019-06-06] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-30] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> "C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.48\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] ->
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] ->
AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvami.inf_amd64_1474122a0ce2f241\nvinitx.dll => No File
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\system32\DriverStore\FileRepository\nvami.inf_amd64_1474122a0ce2f241\nvinit.dll => No File
AppInit_DLLs-x32: ,C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155280 2015-07-23] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0617EF73-468B-4EE8-B0B6-10D90EA47572} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {083301D5-E662-4735-88A4-ADBD76283E75} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1AB5D3E2-2498-43ED-AC71-56543501EC66} - \SUPERAntiSpyware Scheduled Task 57daf2f6-b7c7-4952-80c4-63d6d3d14fe7 -> No File <==== ATTENTION
Task: {469534F6-8F0F-47D0-8DB3-DE1152821938} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4A9559A9-1E46-44A9-BB45-D984D261706B} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\fram33\Downloads\APK 2020 06\esetonlinescanner.exe
Task: {5A5B9030-7AD5-42FD-A540-4C448EDB0A41} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {61CBCA45-34C4-4680-9083-7DCA796FFE20} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8369E602-22DB-4FBD-A865-1F7CC81616DB} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\fram33\Downloads\APK 2020 06\esetonlinescanner.exe
Task: {8E2D0D52-C432-475A-B968-77228AD3B4E7} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {975A0647-F84B-41E5-952F-5228246C5099} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9B9121EF-E2D8-46DE-B6BD-6323F326DD51} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9BA7BABA-AAA3-4A87-B38D-E6C3C46FDD02} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-07-08] () [File not signed]
Task: {9CBDA53C-976A-4836-83D6-9C867E7B5C5E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A1740C98-2B76-4F0C-B3A9-A47F349C2B55} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A3610E99-F80D-482D-92A8-0634BAA7B37E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E15AB66A-5B1C-4911-968B-5AC91ECAE7BF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E8EB73E8-D406-4B19-ABD0-9B5CA2F65D10} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F4200D3A-F3A6-4D9D-A1C1-F22BBBC9034F} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization => C:\Program Files (x86)\Safer-Networking Ltd\Spybot Anti-Beacon\Spybot3AntiBeacon.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{22effb9c-836a-491f-b925-3154fdb42186}: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{37e50e8e-a108-4f63-a586-ae40907e3201}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/cs-cz/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-503818456-1414817836-1498445010-1001 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
IE Session Restore: HKU\S-1-5-21-503818456-1414817836-1498445010-1001 -> is enabled.

Edge:
======
DownloadDir: C:\Users\fram33\Downloads
Edge Profile: C:\Users\fram33\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-10]

FireFox:
========
FF DefaultProfile: 8hzc6kzw.default
FF ProfilePath: C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\8hzc6kzw.default [2020-07-31]
FF user.js: detected! => C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\8hzc6kzw.default\user.js [2019-11-15]
FF NewTab: Mozilla\Firefox\Profiles\8hzc6kzw.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10421__191001
FF ProfilePath: C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release [2020-08-11]
FF user.js: detected! => C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\user.js [2019-11-15]
FF DownloadDir: \\FRAM33-ASUS\Users\fram33\dwhelper
FF NewTab: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10421__191001
FF Session Restore: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> hxxps://www.slevydnes.cz
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Enabled: pavel.sherbakov@gmail.com
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Disabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Enabled: {814a14eb-b15c-49d7-ad8c-302875a54b45}
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Enabled: uBlock0@raymondhill.net
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\0wxoaz9y.default-release -> Enabled: ddg@search.mozilla.org
FF Extension: (AdBlocker Ultimate) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2020-07-16]
FF Extension: (To Google Translate) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2019-11-29]
FF Extension: (New Tab Page) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\pavel.sherbakov@gmail.com.xpi [2020-07-15]
FF Extension: (Download Manager (S3)) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\s3download@statusbar.xpi [2019-07-10]
FF Extension: (Simple Translate) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\simple-translate@sienori.xpi [2020-07-15]
FF Extension: (uBlock Origin) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\uBlock0@raymondhill.net.xpi [2020-07-16]
FF Extension: (Download Facebook Video or Photo) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{059befdf-8453-432b-b308-13347f60e482}.xpi [2019-06-06]
FF Extension: (Tab Suspender) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{29780561-0607-49f3-aba9-fb8806d2f22d}.xpi [2020-07-15]
FF Extension: (Total Suspender) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{77497113-dd7f-4e91-b31f-9c1625e884c7}.xpi [2020-07-15]
FF Extension: (Facebook Videos Downloader) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{814a14eb-b15c-49d7-ad8c-302875a54b45}.xpi [2020-07-15]
FF Extension: (Google Translator with Right Click) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{92047279-0910-4abb-beb7-a7f2cd6cf04b}.xpi [2019-09-16]
FF Extension: (Auto Shutdown) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{9a71ec90-d0b6-44af-833f-efe418ff8454}.xpi [2020-07-15]
FF Extension: (Adobe Flash) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{abf6a41a-5038-4dd9-abef-b66ae700fe88}.xpi [2019-07-10]
FF Extension: (Video DownloadHelper) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-07-15]
FF Extension: (DownThemAll!) - C:\Users\fram33\AppData\Roaming\Mozilla\Firefox\Profiles\0wxoaz9y.default-release\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2019-11-29]
FF HKLM\...\Firefox\Extensions: [{9ea472d6-41d7-49db-bb40-1c8306a23129}] - C:\Program Files (x86)\twengoo\ff\twengoo-1.0.0-fx.xpi
FF Extension: (Twengoo) - C:\Program Files (x86)\twengoo\ff\twengoo-1.0.0-fx.xpi [2019-09-22]
FF HKLM-x32\...\Firefox\Extensions: [{9ea472d6-41d7-49db-bb40-1c8306a23129}] - C:\Program Files (x86)\twengoo\ff\twengoo-1.0.0-fx.xpi
FF HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi => not found
FF HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\fram33\AppData\Roaming\IDM\idmmzcc5 => not found
FF HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => not found
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-08-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-08-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-07-23] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-07-23] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default [2020-08-10]
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Překladač Google) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-08-10]
CHR Extension: (Prezentace) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-08-10]
CHR Extension: (Dokumenty) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-08-10]
CHR Extension: (Disk Google) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-08-05]
CHR Extension: (Video Downloader professional) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\bacakpdjpomjaelpkpkabmedhkoongbi [2020-08-10]
CHR Extension: (MEGA) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2020-08-10]
CHR Extension: (YouTube) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-05]
CHR Extension: (uBlock Origin) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-08-10]
CHR Extension: (The New Tab - Customize Your Start Page) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddjdamcnphfdljlojajeoiogkanilahc [2020-08-10]
CHR Extension: (Tampermonkey) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-08-10]
CHR Extension: (Clean Master: Nejlepší Cleaner pro mezipaměť Chrome) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\eagiakjmjnblliacokhcalebgnhellfi [2020-08-10]
CHR Extension: (Tabulky) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-08-10]
CHR Extension: (Word Online) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2020-08-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-10]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-08-10]
CHR Extension: (TV4ever) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakgeikmiemocehnfkjdahojanjpjcch [2020-08-10]
CHR Extension: (PDF Mergy - Merge PDF files) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha [2020-08-05]
CHR Extension: (TV4ever Helper) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmpadaackcccnhpmcggjdapkmmefkadc [2020-08-10]
CHR Extension: (Pixlr Editor) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2020-08-05]
CHR Extension: (Excel Online) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2020-08-05]
CHR Extension: (Boční lišta záložek) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdbnofccmhefkmjbkkdkfiicjkgofkdh [2020-08-10]
CHR Extension: (Save to Facebook) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2020-08-10]
CHR Extension: (The Great Suspender) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2020-08-10]
CHR Extension: (Numerics Calculator & Converter) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe [2020-08-05]
CHR Extension: (Video DownloadHelper) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2020-08-10]
CHR Extension: (PowerPoint Online) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkgcbpnhp [2020-08-05]
CHR Extension: (ZIP Extractor) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmfcakoljjhncfphlflcedhgogfhpbcd [2020-08-05]
CHR Extension: (IDM Integration Module) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-08-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-08-10]
CHR Extension: (Video Cutter) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\nodkcjollmmjidmcnhloaoahmciabnai [2020-08-05]
CHR Extension: (TV4ever beta) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\oljkelfblcoffgnoiplbgdilcccfniek [2020-08-10]
CHR Extension: (Gmail) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-08-05]
CHR Extension: (Chrome Media Router) - C:\Users\fram33\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-08-10]
CHR HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192320 2020-06-29] (Huawei Technologies Co., Ltd. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-05-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\NisSrv.exe [2169568 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MsMpEng.exe [128376 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4321160 2019-07-01] (Qualcomm Atheros -> Qualcomm Atheros Communications, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2020-01-09] (Microsoft Corporation) [File not signed]
R3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [32384 2018-03-14] (Sony Mobile Communications AB -> Sony Mobile Communications)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-08-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 RkFlt; C:\Windows\System32\drivers\rkflt.sys [41616 2020-08-05] (Adlice -> )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [78216 2020-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [430320 2020-08-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98520 2020-08-05] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
U3 TrueSight; \??\C:\Windows\System32\drivers\truesight.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-10 17:32 - 2020-08-10 17:38 - 000070081 _____ C:\Users\fram33\Desktop\mb-clean-results.txt
2020-08-10 17:27 - 2020-08-10 17:27 - 000000781 _____ C:\Users\fram33\Downloads\trojsky kun.txt
2020-08-10 17:27 - 2020-08-10 17:27 - 000000781 _____ C:\trojsky kun.txt
2020-08-10 17:26 - 2020-08-10 17:26 - 002296320 _____ (Farbar) C:\Users\fram33\Downloads\FRSTEnglish.exe
2020-08-10 17:25 - 2020-08-10 17:25 - 009167384 _____ C:\Users\fram33\Downloads\MB-SupportTool.exe
2020-08-10 17:12 - 2020-08-10 17:12 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-08-10 17:12 - 2020-08-10 17:12 - 000002032 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-08-10 17:11 - 2020-08-10 17:11 - 000000000 ____D C:\Program Files\Malwarebytes
2020-08-10 16:10 - 2020-08-10 16:06 - 008414384 _____ (Malwarebytes) C:\Users\fram33\Desktop\AdwCleaner.exe
2020-08-10 12:43 - 2020-08-11 09:11 - 000000000 ____D C:\FRST
2020-08-10 11:54 - 2020-08-10 11:54 - 001089398 _____ C:\Users\fram33\AppData\Local\census.cache
2020-08-10 11:53 - 2020-08-10 11:53 - 000470956 _____ C:\Users\fram33\AppData\Local\ars.cache
2020-08-10 11:01 - 2020-08-10 11:01 - 000000010 _____ C:\Users\fram33\AppData\Local\sponge.last.runtime.cache
2020-08-10 10:58 - 2020-08-10 10:58 - 000000000 ____D C:\WINDOWS\Trend Micro
2020-08-10 10:58 - 2020-08-10 10:58 - 000000000 ____D C:\ProgramData\Trend Micro
2020-08-10 10:54 - 2020-08-10 10:54 - 000000036 _____ C:\Users\fram33\AppData\Local\housecall.guid.cache
2020-08-10 10:52 - 2020-08-10 10:54 - 000000000 ___HD C:\$WINDOWS.~BT
2020-08-10 10:46 - 2020-08-10 10:46 - 000000000 ___HD C:\$WinREAgent
2020-08-10 10:41 - 2020-08-10 17:32 - 000000000 ____D C:\Users\fram33\Downloads\GRAFIKA
2020-08-10 10:10 - 2020-08-10 10:10 - 000000000 ____D C:\Users\fram33\Downloads\DaVinci_Resolve_Studio_16.2.5_Windows
2020-08-10 09:36 - 2020-08-10 10:54 - 000000000 ____D C:\WINDOWS\Panther
2020-08-10 09:14 - 2020-08-10 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiJackThis Fork
2020-08-08 17:42 - 2020-08-06 11:29 - 069154627 _____ C:\Users\fram33\Downloads\00095290man_cs_de_en_es_fr_hu_it_nl_pl_pt_skxx2.pdf
2020-08-07 09:26 - 2020-08-07 09:26 - 022725243 _____ C:\Users\fram33\Desktop\bookmarks založky firefox 2020 08 06.html
2020-08-06 11:54 - 2020-08-06 11:54 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2020-08-06 11:24 - 2020-08-06 11:23 - 014860896 _____ (ESET spol. s r.o.) C:\esetonlinescanner.exe
2020-08-06 11:19 - 2020-08-06 11:08 - 053114992 _____ (SUPERAntiSpyware) C:\SUPERAntiSpyware.exe
2020-08-06 11:05 - 2020-08-06 11:05 - 000001635 _____ C:\Users\fram33\Desktop\xnview – zástupce (2).lnk
2020-08-06 10:57 - 2020-08-10 10:48 - 000000000 ____D C:\Users\fram33\AppData\Roaming\XnView
2020-08-06 10:38 - 2020-08-06 10:50 - 000000000 ____D C:\AdwCleaner
2020-08-06 09:02 - 2020-08-06 09:02 - 000000000 ____D C:\Users\fram33\AppData\Local\GHISLER
2020-08-06 07:57 - 2020-08-06 07:57 - 000000000 ____D C:\Users\fram33\AppData\Local\MicrosoftEdge
2020-08-05 18:56 - 2020-08-05 18:56 - 000003824 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-08-05 18:56 - 2020-08-05 18:56 - 000003382 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-08-05 13:10 - 2020-08-10 10:44 - 000000000 ____D C:\Users\fram33\AppData\Local\ESET
2020-08-05 10:31 - 2020-08-05 11:33 - 000041616 _____ C:\WINDOWS\system32\Drivers\rkflt.sys
2020-08-05 09:14 - 2020-08-10 17:32 - 000000000 ____D C:\Users\fram33\AppData\Roaming\MPC-HC
2020-08-05 09:10 - 2020-08-05 09:10 - 000003186 _____ C:\WINDOWS\system32\Tasks\klcp_update
2020-08-05 09:08 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2020-08-05 09:07 - 2020-08-10 10:48 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2020-08-05 07:21 - 2020-08-05 07:21 - 000000000 ____D C:\Users\fram33\Documents\Bandicut
2020-08-05 07:20 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicut
2020-08-05 07:20 - 2020-08-10 10:48 - 000000000 ____D C:\Program Files (x86)\Bandicut
2020-08-05 07:20 - 2020-08-05 07:20 - 000001057 _____ C:\Users\Public\Desktop\Bandicut.lnk
2020-08-05 07:20 - 2020-08-05 07:20 - 000001057 _____ C:\ProgramData\Desktop\Bandicut.lnk
2020-08-05 07:19 - 2020-08-05 07:19 - 019134848 _____ (Bandicam Company) C:\Users\fram33\Desktop\bandicut-setup.exe
2020-08-04 13:04 - 2020-08-10 10:48 - 000000000 ____D C:\WINDOWS\SysWOW64\NV
2020-08-04 13:04 - 2020-08-10 10:48 - 000000000 ____D C:\WINDOWS\system32\NV
2020-08-04 13:04 - 2015-07-23 02:44 - 000572048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2020-08-04 13:03 - 2015-07-23 06:02 - 000112784 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-08-04 13:03 - 2015-07-23 06:02 - 000105288 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 006873928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 003493008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 002558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 001059984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 000937800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2020-08-04 13:03 - 2015-07-23 03:10 - 000385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 000074896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-08-04 13:03 - 2015-07-23 03:10 - 000062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-08-04 13:03 - 2015-07-22 06:29 - 005121613 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-08-04 12:54 - 2015-07-23 06:02 - 042730312 _____ C:\WINDOWS\system32\nvcompiler.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 037749064 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 030518928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 022973584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 018376584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 016160440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 016011680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 015754192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 014511608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 013274904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 012973680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 011843384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 011142984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2020-08-04 12:54 - 2015-07-23 06:02 - 003351864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 002963208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 002360976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 002164040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 001898128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435362.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 001557648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435362.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 001165192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 001061008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 001053000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000991152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000983368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000976528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000155280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000150832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2020-08-04 12:54 - 2015-07-23 06:02 - 000031976 _____ C:\WINDOWS\system32\nvinfo.pb
2020-08-04 12:54 - 2015-07-23 06:02 - 000031376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2020-08-04 12:36 - 2020-08-04 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-08-04 12:36 - 2020-06-23 16:20 - 002754024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-08-04 12:36 - 2020-06-23 16:20 - 002122216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2020-08-04 12:36 - 2020-06-23 16:20 - 001295848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-08-04 12:35 - 2020-08-04 12:35 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 12:35 - 2020-08-04 12:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 12:35 - 2020-08-04 12:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 12:35 - 2020-08-04 12:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 12:35 - 2020-08-04 12:35 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 12:35 - 2020-03-11 21:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-08-04 12:35 - 2020-03-04 14:54 - 001804784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-08-04 12:35 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-08-04 11:51 - 2020-08-10 10:44 - 000000000 ____D C:\Users\fram33\AppData\Local\NVIDIA Corporation
2020-08-04 11:51 - 2020-08-04 12:36 - 000001403 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2020-08-04 11:51 - 2020-08-04 12:36 - 000001403 _____ C:\ProgramData\Desktop\GeForce Experience.lnk
2020-08-04 11:46 - 2020-08-04 12:35 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 11:46 - 2020-08-04 12:35 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-04 11:45 - 2020-05-29 07:34 - 000169968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2020-08-04 11:45 - 2020-05-29 07:34 - 000145904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2020-08-04 11:41 - 2020-03-06 12:03 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2020-08-03 16:11 - 2020-08-03 16:11 - 000002243 _____ C:\Users\fram33\Desktop\WhatsApp.lnk
2020-08-03 16:10 - 2020-08-03 16:11 - 000000000 ____D C:\Users\fram33\AppData\Local\WhatsApp
2020-08-03 11:37 - 2020-08-10 10:31 - 000000000 ____D C:\Program Files\EnigmaSoft
2020-08-03 11:23 - 2020-08-03 16:11 - 000000000 ____D C:\Users\fram33\AppData\Local\SquirrelTemp
2020-08-03 11:18 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\UCheck
2020-08-03 10:52 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\RogueKiller
2020-07-31 09:34 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safer Networking
2020-07-31 09:34 - 2020-08-10 10:48 - 000000000 ____D C:\Program Files (x86)\Safer Networking
2020-07-31 09:00 - 2020-08-03 11:23 - 000000823 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-07-31 09:00 - 2020-08-03 11:23 - 000000823 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-07-31 06:35 - 2020-08-05 11:51 - 000000085 _____ C:\WINDOWS\wininit.ini
2020-07-31 06:15 - 2020-07-31 06:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD
2020-07-31 06:15 - 2020-07-31 06:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-07-30 21:06 - 2020-08-05 11:47 - 000001513 _____ C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Delphi Toasts App.lnk
2020-07-30 21:06 - 2020-07-30 21:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2020-07-30 21:05 - 2020-08-06 07:26 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-07-30 16:13 - 2020-08-10 17:33 - 089653248 _____ C:\WINDOWS\system32\config\software
2020-07-30 15:32 - 2020-07-30 15:32 - 000000000 ____D C:\ProgramData\XDMessagingv4
2020-07-30 15:29 - 2020-07-30 15:29 - 000000000 ____D C:\Users\fram33\AppData\Roaming\Abelssoft
2020-07-30 15:29 - 2020-07-30 15:29 - 000000000 ____D C:\Users\fram33\AppData\Local\Abelssoft
2020-07-30 15:24 - 2020-08-10 10:48 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2020-07-30 11:51 - 2020-07-30 11:51 - 000000000 ____D C:\Users\fram33\AppData\Local\mbam
2020-07-30 11:51 - 2020-07-30 11:51 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2020-07-30 11:48 - 2020-07-30 11:48 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2020-07-30 09:52 - 2020-07-30 09:53 - 000000000 ____D C:\Users\fram33\.openshot_qt
2020-07-30 09:30 - 2020-07-30 09:30 - 000000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenShot Video Editor.lnk
2020-07-30 09:30 - 2020-07-30 09:30 - 000000959 _____ C:\Users\Public\Desktop\OpenShot Video Editor.lnk
2020-07-30 09:30 - 2020-07-30 09:30 - 000000959 _____ C:\ProgramData\Desktop\OpenShot Video Editor.lnk
2020-07-30 09:29 - 2020-07-30 09:30 - 000000000 ____D C:\Program Files\OpenShot Video Editor
2020-07-30 07:00 - 2020-07-30 07:00 - 000000000 ____D C:\Users\fram33\AppData\Roaming\XnConvert
2020-07-30 06:34 - 2020-08-10 10:48 - 000000000 ____D C:\Users\fram33\AppData\Roaming\XnViewMP
2020-07-29 12:45 - 2020-07-29 12:45 - 000001060 _____ C:\Users\Public\Desktop\HiSuite.lnk
2020-07-29 12:45 - 2020-07-29 12:45 - 000001060 _____ C:\ProgramData\Desktop\HiSuite.lnk
2020-07-29 12:45 - 2020-07-29 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2020-07-29 12:44 - 2020-07-29 12:45 - 000000000 ____D C:\Program Files (x86)\HiSuite
2020-07-29 10:15 - 2020-08-10 16:26 - 000000000 ____D C:\Users\fram33\Downloads\HLEBO
2020-07-26 18:56 - 2020-07-26 18:56 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-26 18:56 - 2020-07-26 18:56 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-26 18:56 - 2020-07-26 18:56 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-26 18:56 - 2020-07-26 18:56 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-26 18:56 - 2020-07-26 18:56 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-26 18:56 - 2020-07-26 18:56 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-26 18:56 - 2020-07-26 18:56 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-26 18:56 - 2020-07-26 18:56 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-26 18:56 - 2020-07-26 18:56 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-26 18:56 - 2020-07-26 18:56 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteFXvGPUDisablement.exe
2020-07-26 18:56 - 2020-07-26 18:56 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-26 18:56 - 2020-07-26 18:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-26 18:55 - 2020-07-26 18:55 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-26 18:55 - 2020-07-26 18:55 - 003980800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-26 18:55 - 2020-07-26 18:55 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-26 18:55 - 2020-07-26 18:55 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-26 18:55 - 2020-07-26 18:55 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-26 18:55 - 2020-07-26 18:55 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-26 18:55 - 2020-07-26 18:55 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-26 18:55 - 2020-07-26 18:55 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-26 18:55 - 2020-07-26 18:55 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-26 18:55 - 2020-07-26 18:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-26 18:48 - 2020-06-30 06:32 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-26 18:48 - 2020-06-30 06:26 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-16 18:00 - 2020-07-30 06:21 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-16 18:00 - 2020-07-30 06:21 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-07-16 18:00 - 2020-07-30 06:21 - 000002260 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-07-16 17:59 - 2020-07-16 18:00 - 000000000 ____D C:\Program Files (x86)\Google
2020-07-16 17:54 - 2020-07-16 17:54 - 000000000 ____D C:\WINDOWS\ABR
2020-07-16 11:54 - 2020-08-10 10:30 - 000000000 ____D C:\Users\fram33\Downloads\Video
2020-07-16 11:54 - 2020-08-10 10:19 - 000000000 ____D C:\Users\fram33\Downloads\Compressed
2020-07-16 11:54 - 2020-07-16 16:20 - 000000000 ____D C:\Users\fram33\AppData\Roaming\DMCache
2020-07-16 08:04 - 2020-08-10 11:09 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-07-15 15:41 - 2020-07-15 15:41 - 000001499 _____ C:\Users\fram33\Desktop\firefox – zástupce.lnk
2020-07-15 14:21 - 2020-07-30 11:41 - 000000000 ____D C:\ProgramData\F-Secure
2020-07-15 14:20 - 2020-07-30 11:55 - 000000000 ____D C:\Users\fram33\AppData\Local\FSDART
2020-07-15 13:37 - 2020-08-05 13:10 - 000000824 _____ C:\Users\fram33\Desktop\ESET Online Scanner.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-11 09:10 - 2019-06-06 08:14 - 000000000 ____D C:\Users\fram33\AppData\LocalLow\Mozilla
2020-08-11 08:52 - 2020-05-21 08:43 - 000000000 ____D C:\Users\fram33\AppData\Roaming\MyPhoneExplorer
2020-08-11 08:51 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-11 08:41 - 2019-06-05 16:14 - 000000000 ____D C:\ProgramData\NVIDIA
2020-08-10 17:50 - 2020-05-23 12:58 - 001699488 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-10 17:50 - 2019-03-19 13:57 - 000718436 _____ C:\WINDOWS\system32\perfh005.dat
2020-08-10 17:50 - 2019-03-19 13:57 - 000145480 _____ C:\WINDOWS\system32\perfc005.dat
2020-08-10 17:50 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-08-10 17:34 - 2020-05-23 13:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-08-10 17:33 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-08-10 17:32 - 2019-08-18 13:49 - 000000000 ____D C:\Users\fram33\dwhelper
2020-08-10 17:32 - 2019-06-06 15:39 - 000000000 ____D C:\Users\fram33\AppData\Local\CrashDumps
2020-08-10 17:12 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-08-10 16:50 - 2019-06-05 16:15 - 000000000 ____D C:\Users\fram33\AppData\Local\Packages
2020-08-10 16:50 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-10 16:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-08-10 12:30 - 2020-02-28 08:25 - 000000000 ____D C:\Users\fram33\Documents\Zálohy
2020-08-10 12:09 - 2020-07-02 11:33 - 000000000 ____D C:\Users\fram33\AppData\Roaming\WhatsApp
2020-08-10 11:19 - 2020-05-23 13:02 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-08-10 11:19 - 2019-06-06 09:40 - 000000000 ____D C:\Program Files\CCleaner
2020-08-10 11:09 - 2019-06-06 08:14 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-08-10 10:48 - 2020-06-30 13:25 - 000000000 ____D C:\Users\fram33\AppData\Roaming\IrfanView
2020-08-10 10:48 - 2020-04-29 13:16 - 000000000 ____D C:\Users\fram33\AppData\Roaming\Astra Image
2020-08-10 10:48 - 2020-04-29 13:16 - 000000000 ____D C:\Program Files\Astra Image
2020-08-10 10:48 - 2019-12-18 11:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-08-10 10:48 - 2019-12-18 11:51 - 000000000 ____D C:\Program Files (x86)\Java
2020-08-10 10:48 - 2019-11-28 11:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CardRecovery
2020-08-10 10:48 - 2019-11-28 11:23 - 000000000 ____D C:\Program Files (x86)\CardRecovery
2020-08-10 10:48 - 2019-11-28 08:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CardRecoveryPro
2020-08-10 10:48 - 2019-11-28 08:56 - 000000000 ____D C:\Program Files (x86)\CardRecoveryPro
2020-08-10 10:48 - 2019-11-15 15:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AD Stahovač souborů
2020-08-10 10:48 - 2019-11-15 15:06 - 000000000 ____D C:\Program Files (x86)\AD Stahovač souborů
2020-08-10 10:48 - 2019-07-01 11:45 - 000000000 ____D C:\Users\fram33\AppData\Roaming\vlc
2020-08-10 10:48 - 2019-06-06 09:56 - 000000000 ____D C:\Program Files\Recuva
2020-08-10 10:48 - 2019-06-06 09:21 - 000000000 ____D C:\Users\fram33\AppData\Roaming\GHISLER
2020-08-10 10:48 - 2019-06-06 08:41 - 000000000 ____D C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2020-08-10 10:48 - 2019-06-06 08:24 - 000000000 ____D C:\Users\fram33\AppData\Roaming\XnView-BackupByXnViewPortable
2020-08-10 10:48 - 2019-06-06 08:22 - 000000000 ____D C:\_Programy
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\Nui
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Keywords
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\DDFs
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\System
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\security
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-08-10 10:48 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-08-10 10:44 - 2020-05-23 13:50 - 000000000 ____D C:\Windows.old1
2020-08-10 10:44 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\registration
2020-08-10 10:31 - 2020-05-23 13:50 - 000000000 ____D C:\Windows.old
2020-08-10 10:30 - 2020-06-29 14:30 - 000000000 ____D C:\Users\fram33\Downloads\C2600
2020-08-10 10:27 - 2020-02-14 15:25 - 000000000 ____D C:\Users\fram33\Documents\dovolená 2020
2020-08-10 10:06 - 2020-05-23 12:53 - 000000000 ____D C:\Users\fram33
2020-08-08 19:31 - 2020-05-23 12:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-07 09:39 - 2019-06-07 15:00 - 000000000 ____D C:\Users\fram33\AppData\Local\D3DSCache
2020-08-06 11:11 - 2020-06-30 13:14 - 000001012 _____ C:\Users\fram33\Desktop\XnView.lnk
2020-08-06 09:47 - 2020-05-23 13:01 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2020-08-06 09:47 - 2020-05-23 13:01 - 000001908 _____ C:\WINDOWS\diagerr.xml
2020-08-06 08:05 - 2020-05-23 13:02 - 000000000 ____D C:\WINDOWS\minidump
2020-08-05 13:11 - 2019-08-07 17:44 - 000000952 _____ C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-08-05 12:03 - 2019-06-05 15:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-08-04 13:04 - 2019-06-05 16:13 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-08-04 13:03 - 2019-06-05 16:13 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-08-04 13:03 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Help
2020-08-04 13:02 - 2019-06-05 16:13 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-08-04 11:52 - 2020-05-18 10:23 - 000000000 ____D C:\Users\fram33\AppData\Local\NVIDIA
2020-08-03 16:11 - 2020-07-02 11:33 - 000000000 ____D C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2020-08-03 13:38 - 2019-06-06 09:11 - 000000000 ____D C:\Program Files\WinRAR
2020-08-03 11:24 - 2019-12-18 11:52 - 000166056 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-08-03 11:22 - 2019-06-06 09:00 - 000000000 ____D C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-08-03 11:22 - 2019-06-06 09:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-08-03 08:34 - 2019-06-05 16:15 - 000000000 ____D C:\Users\fram33\AppData\Local\ConnectedDevicesPlatform
2020-07-31 10:04 - 2019-06-05 16:18 - 000000000 ____D C:\Users\fram33\AppData\Local\PlaceholderTileLogoFolder
2020-07-31 10:04 - 2019-06-05 16:15 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-31 09:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-07-31 09:00 - 2019-06-06 09:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-07-30 16:13 - 2020-06-22 17:17 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2020-07-30 15:14 - 2019-06-06 09:29 - 000000000 ____D C:\ProgramData\AVAST Software
2020-07-30 14:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-07-30 13:21 - 2020-06-10 09:32 - 000002508 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-30 13:21 - 2020-06-10 09:32 - 000002346 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-07-30 13:21 - 2020-06-10 09:32 - 000002346 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-07-30 13:08 - 2019-06-05 16:15 - 000000000 ____D C:\Users\fram33\AppData\Local\VirtualStore
2020-07-30 06:46 - 2019-06-06 08:37 - 000000000 ____D C:\Users\fram33\AppData\Local\Google
2020-07-29 12:46 - 2020-05-18 07:36 - 000000000 ____D C:\Users\fram33\AppData\Local\HiSuite
2020-07-29 07:47 - 2019-09-18 09:21 - 000000000 ____D C:\Users\fram33\Documents\_TANKOVÁNÍ - kopie
2020-07-26 19:06 - 2020-05-23 12:51 - 000447528 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-26 19:06 - 2019-06-05 16:15 - 000000000 ___RD C:\Users\fram33\3D Objects
2020-07-26 19:05 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-26 19:05 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-26 19:05 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-26 19:01 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-16 17:54 - 2019-06-11 11:01 - 000000374 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2020-07-16 17:54 - 2019-06-07 11:22 - 000000000 ____D C:\Program Files (x86)\PDF24
2020-07-16 14:23 - 2020-01-09 11:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-07-15 15:45 - 2019-06-06 08:14 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2020-07-15 15:45 - 2019-06-06 08:14 - 000000993 _____ C:\ProgramData\Desktop\Firefox.lnk
2020-07-15 13:28 - 2020-05-23 13:02 - 000002236 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-07-14 08:56 - 2019-07-10 11:36 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-07-13 13:33 - 2019-09-06 09:30 - 000000000 ____D C:\Users\fram33\Documents\EBAY

==================== Files in the root of some directories ========

2020-08-10 11:53 - 2020-08-10 11:53 - 000470956 _____ () C:\Users\fram33\AppData\Local\ars.cache
2020-08-10 11:54 - 2020-08-10 11:54 - 001089398 _____ () C:\Users\fram33\AppData\Local\census.cache
2020-08-10 10:54 - 2020-08-10 10:54 - 000000036 _____ () C:\Users\fram33\AppData\Local\housecall.guid.cache
2020-01-29 15:15 - 2020-01-29 15:15 - 000000017 _____ () C:\Users\fram33\AppData\Local\resmon.resmoncfg
2020-08-10 11:01 - 2020-08-10 11:01 - 000000010 _____ () C:\Users\fram33\AppData\Local\sponge.last.runtime.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[fram33]

a druhý....
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-08-2020
Ran by fram33 (11-08-2020 09:12:29)
Running from C:\Users\fram33\Downloads\Programs
Windows 10 Pro Version 1909 18363.959 (X64) (2020-05-23 11:02:40)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-503818456-1414817836-1498445010-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-503818456-1414817836-1498445010-503 - Limited - Disabled)
fram33 (S-1-5-21-503818456-1414817836-1498445010-1001 - Administrator - Enabled) => C:\Users\fram33
Guest (S-1-5-21-503818456-1414817836-1498445010-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-503818456-1414817836-1498445010-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
AD Stahovač souborů 1.2 (HKLM-x32\...\AD Stahovač souborů_is1) (Version: - PS Media s.r.o.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.56.1 - Asmedia Technology)
Astra Image PLUS 5.5.2.0 (HKLM\...\Astra Image PLUS_is1) (Version: 5.5.2.0 - lrepacks.ru)
Balíček ovladače systému Windows - Sony Mobile Communications (ggsomc) SOMCFlashDevice (12/06/2017 3.2.0.0) (HKLM\...\7AA77B236196DB9A6C04257060560ACDBB626F30) (Version: 12/06/2017 3.2.0.0 - Sony Mobile Communications)
Bandicut (HKLM-x32\...\Bandicut) (Version: 3.5.0.599 - Bandicam.com)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.7.0 - Canon Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.5.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.5.0 - Canon Inc.)
CardRecovery 6.10 (HKLM-x32\...\{88D68A69-D247-466B-90DD-575F6BE16230}_is1) (Version: - WinRecovery Software)
CardRecoveryPro 2.5.5 (HKLM-x32\...\{D4F48A8F-8E81-43E0-847F-04318383476F}_is1) (Version: 2.5.5 - LionSea SoftWare)
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
ELAN Touchpad 11.5.22.2_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.22.2 - ELAN Microelectronic Corp.)
FastCodec 1.0 beta (HKLM-x32\...\FastCodec) (Version: - )
FileAlyzer 2 (HKLM-x32\...\{29D3773E-54F4-23C2-D523-236A4453B845}_is1) (Version: 2.0.5.57 - Safer Networking Limited)
FinePrint (HKLM\...\FinePrint) (Version: 9.31 - FinePrint Software, LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.1.0.550 - Huawei Technologies Co., Ltd.)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
K-Lite Codec Pack 15.6.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.0 - KLCP)
LEDControl V2.0 (HKLM-x32\...\{5FAE725C-5E68-4AFB-B861-66C93CC6B71E}) (Version: 1.0.0 - LeyNew)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\OneDriveSetup.exe) (Version: 19.163.0818.0004 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Mozilla Firefox 80.0 (x64 cs) (HKLM\...\Mozilla Firefox 80.0 (x64 cs)) (Version: 80.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 79.0 - Mozilla)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.14 - F.J. Wechselberger)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.62 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.62 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
OpenShot Video Editor verze 2.5.1 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.5.1 - OpenShot Studios, LLC)
Ovládací panel NVIDIA 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 353.62 - NVIDIA Corporation) Hidden
PDF24 Creator 8.8.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.5.1 - pdfforge GmbH)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22925 - Microsoft Corporation)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.3.14 - Qualcomm Atheros)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.31 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.102 - Realtek Semiconductor Corp.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.2.1.1780 - Samsung Electronics)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
SD Card Formatter (HKLM-x32\...\{A61131DC-B92D-4AD8-A925-E2D6D5FE217C}) (Version: 5.0.1 - SD Association)
Služba Xperia Companion (HKLM\...\{D0CEE476-32BB-45F9-BAB0-8717579E50A6}) (Version: 2.9.2.0 - Sony) Hidden
Sony Mobile Software Update Drivers (HKLM\...\{4872001F-F67C-4C54-BC92-281C6A165251}) (Version: 3.2.0.3 - Sony Mobile Communications)
Sony Mobile Update Engine (HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\Update Engine) (Version: 2.20.6.202006041418 - Sony Mobile Communications Inc.)
twengoo (HKLM-x32\...\{F6B12BAA-E849-4296-8D8A-08F2ECE7D555}) (Version: 1.0.0.0 - Twengoo)
VdhCoApp 1.3.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
VSDC Free Video Editor version 6.4.7.155 (HKLM\...\VSDC Free Video Editor_is1) (Version: 6.4.7.155 - Flash-Integro LLC)
WhatsApp (HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\WhatsApp) (Version: 2.2031.4 - WhatsApp)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
XnConvert 1.85.1 (HKLM\...\XnConvert_is1) (Version: 1.85.1 - Gougelet Pierre-e)
XnView 2.49.3 (HKLM-x32\...\XnView_is1) (Version: 2.49.3 - Gougelet Pierre-e)
XnViewMP 0.96.3 (HKLM\...\XnViewMP_is1) (Version: 0.96.3 - Gougelet Pierre-e)
Xperia Companion (HKLM-x32\...\{0DAEA7C9-C970-4073-BE1E-3C1B487A33E2}) (Version: 2.9.2.0 - Sony) Hidden
Xperia Companion (HKLM-x32\...\{c525c199-1efa-4ccd-92ee-fdf41f467dfc}) (Version: 2.9.2.0 - Sony)

Packages:
=========
Arial Nova -> C:\Program Files\WindowsApps\Microsoft.ArialNova_1.0.1.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-08-10] (Canon Inc.)
Convection -> C:\Program Files\WindowsApps\Microsoft.Convection_1.0.1.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2020-08-10] (Facebook Inc)
Free Beautiful Wallpapers HD -> C:\Program Files\WindowsApps\OnionSoftware.FreeBeautifulWallpapersHD_1.1.0.0_x64__ervdxkv9fa05r [2020-08-10] (Opening Code LTD) [MS Ad]
Free Nature Wallpapers -> C:\Program Files\WindowsApps\OnionSoftware.FreeNatureWallpapers_1.1.2.0_x64__ervdxkv9fa05r [2020-08-10] (Opening Code LTD) [MS Ad]
Georgia Pro -> C:\Program Files\WindowsApps\Microsoft.GeorgiaPro_1.0.2.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Gill Sans Nova -> C:\Program Files\WindowsApps\Microsoft.GillSansNova_1.0.1.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
HiSuite -> C:\Program Files\WindowsApps\6530varisteGalois.HiSuite_1.1.0.0_x86__gcbhn7m1f6q1a [2020-08-10] (Évariste Galois)
Ink Draft -> C:\Program Files\WindowsApps\Microsoft.InkDraft_1.0.1.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Lake Baikal -> C:\Program Files\WindowsApps\Microsoft.LakeBaikal_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Live Sun -> C:\Program Files\WindowsApps\33630DanielLam.LiveSun_1.2.2.0_x64__agwpzyfba80hm [2020-08-10] (Daniel Lam) [MS Ad]
Mapy.cz -> C:\Program Files\WindowsApps\949FFEAB.Mapy.cz_6.12.23.0_x64__refxrrjvvv3cw [2020-08-10] (Seznam.cz a.s.)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_620.8.119.0_x64__8xx8rvfyw5nnt [2020-08-10] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation) [MS Ad]
Microsoft Font Maker -> C:\Program Files\WindowsApps\Microsoft.InkFont_1.1.27.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.7162.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Studios) [MS Ad]
Mountain's Majesty -> C:\Program Files\WindowsApps\Microsoft.MountainsMajesty_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Movie Maker 10 - FREE -> C:\Program Files\WindowsApps\21336V3TApps.MovieMaker-FREE_2.9.79.0_x64__bzg06mxvgh4fa [2020-08-10] (V3TApps)
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation) [MS Ad]
Natural Hearts PREMIUM -> C:\Program Files\WindowsApps\Microsoft.NaturalHeartsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Rockwell Nova -> C:\Program Files\WindowsApps\Microsoft.RockwellNova_1.0.2.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Verdana Pro -> C:\Program Files\WindowsApps\Microsoft.VerdanaPro_1.0.2.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
Video Cutter & Compressor -> C:\Program Files\WindowsApps\24711Mixilab.VideoCutterCompressor_2.0.1.0_x64__c39s816dkej80 [2020-08-10] (Mixilab) [MS Ad]
Wooden Walkways PREMIUM -> C:\Program Files\WindowsApps\Microsoft.WoodenWalkwaysPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)
World National Parks -> C:\Program Files\WindowsApps\Microsoft.WorldNationalParks_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6722448 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => -> No File
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => -> No File
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => -> No File
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> [CC]{85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\Program Files (x86)\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger) [File not signed]
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2018-11-13] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2015-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [File not signed]
HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [File not signed]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [VIDC.FCKK] => C:\Windows\SysWOW64\fastcodec.dll [270336 2006-07-31] (Videosoft.org) [File not signed]
HKLM\...\Drivers32: [vidc.MPG4] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.MP42] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.MP43] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\TV4ever (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=hakgeikmiemocehnfkjdahojanjpjcch
ShortcutWithArgument: C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\TV4ever beta (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=oljkelfblcoffgnoiplbgdilcccfniek

==================== Loaded Modules (Whitelisted) =============

2019-07-15 14:52 - 2012-06-14 17:18 - 000359936 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2019-06-06 08:59 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-06-06 09:28 - 2019-06-06 09:28 - 000116736 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2020-08-10 17:05 - 000000852 _____ C:\WINDOWS\system32\drivers\etc\hosts

2019-06-11 11:01 - 2020-07-16 17:54 - 000000374 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\FilExile;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\fram33\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "EaseUS EPM Tray Agent"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_A42D92C77981F72004D52358D3C8A519"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\StartupApproved\Run: => "UCheck"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\StartupApproved\Run: => "SUPERAntiSpyware"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{8A4AABD8-8748-48D5-BD58-88AED639CCC0}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger)
FirewallRules: [UDP Query User{CCBD24A6-DD1D-4B3E-B93F-74D8C52650CE}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger)
FirewallRules: [TCP Query User{55B74704-3FFB-4053-ABCA-E1986CD83671}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{888ACA33-E7B5-44DA-90CF-DE989370BF6F}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

==================== Restore Points =========================

06-08-2020 11:53:33 Removed Java 8 Update 261
10-08-2020 11:07:16 2020 08 10 zaloha

==================== Faulty Device Manager Devices ============

Name: Sony sa0113 ADB Interface Driver
Description: Sony sa0113 ADB Interface Driver
Class Guid: {4da0f16f-b76d-472a-809d-d28c4b3a3abb}
Manufacturer: Sony
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Bluetooth Module
Description: Bluetooth Module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: ========================

Application errors:
==================
Error: (08/10/2020 05:32:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mpc-hc64.exe, verze: 1.9.6.24, časové razítko: 0x5f05d7e6
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.815, časové razítko: 0xb29ecf52
Kód výjimky: 0xc000041d
Posun chyby: 0x0000000000007056
ID chybujícího procesu: 0x530
Čas spuštění chybující aplikace: 0x01d66f2b71d13289
Cesta k chybující aplikaci: C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 7b4fef0f-09bf-42a3-908a-54f2147403e7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/10/2020 12:09:17 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (08/10/2020 11:13:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program iexplore.exe verze 11.0.18362.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1d78

Čas spuštění: 01d66ef68db31ff0

Čas ukončení: 23

Cesta k aplikaci: C:\Program Files (x86)\Internet Explorer\iexplore.exe

ID hlášení: 358bc860-5c7a-4f83-8937-24af918aec07

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Top level window is idle

Error: (08/10/2020 09:36:35 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4108,R,98) SRUJet: Při otevírání souboru protokolu C:\WINDOWS\system32\SRU\SRU01EA7.log došlo k chybě -1811 (0xfffff8ed).

Error: (08/10/2020 09:16:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HiJackThis.exe, verze: 2.9.0.18, časové razítko: 0x5b7e5787
Název chybujícího modulu: MSVBVM60.DLL, verze: 6.0.98.15, časové razítko: 0x49b01fc3
Kód výjimky: 0xc0000005
Posun chyby: 0x0000ae87
ID chybujícího procesu: 0x12c4
Čas spuštění chybující aplikace: 0x01d66ee62d7b5f3e
Cesta k chybující aplikaci: E:\Program Files\MALWARE\HiJackThis_test\HiJackThis.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\MSVBVM60.DLL
ID zprávy: 03da1b95-4d24-44be-9be8-fbb9488c404b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/10/2020 09:16:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HiJackThis.exe, verze: 2.9.0.18, časové razítko: 0x5b7e5787
Název chybujícího modulu: HiJackThis.exe, verze: 2.9.0.18, časové razítko: 0x5b7e5787
Kód výjimky: 0xc00001a5
Posun chyby: 0x00006ab0
ID chybujícího procesu: 0x12c4
Čas spuštění chybující aplikace: 0x01d66ee62d7b5f3e
Cesta k chybující aplikaci: E:\Program Files\MALWARE\HiJackThis_test\HiJackThis.exe
Cesta k chybujícímu modulu: E:\Program Files\MALWARE\HiJackThis_test\HiJackThis.exe
ID zprávy: f95b1fcd-e005-428f-b27a-181838c0f491
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/06/2020 12:03:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.18362.959, časové razítko: 0x0ad0521f
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.815, časové razítko: 0xb29ecf52
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000000a1170
ID chybujícího procesu: 0x1b24
Čas spuštění chybující aplikace: 0x01d66bd464e22acb
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 8c3c95ad-c14c-488e-9970-4064391f242f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/06/2020 11:42:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SUPERAntiSpyware.exe, verze: 10.0.0.1206, časové razítko: 0x5f284b99
Název chybujícího modulu: dbgcore.DLL, verze: 10.0.18362.1, časové razítko: 0x17edc79f
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000008d14
ID chybujícího procesu: 0x2258
Čas spuštění chybující aplikace: 0x01d66bd470d3e212
Cesta k chybující aplikaci: C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\dbgcore.DLL
ID zprávy: e19bda36-e868-4dd7-a18c-7cc4d532137d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (08/11/2020 08:35:05 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (08/10/2020 05:34:17 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (08/10/2020 05:34:14 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (08/10/2020 05:33:44 PM) (Source: DCOM) (EventID: 10010) (User: FRAM33-ASUS)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/10/2020 05:06:09 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (08/10/2020 05:06:05 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (08/10/2020 05:05:42 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (08/10/2020 05:05:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.


Windows Defender:
===================================
Date: 2020-08-10 14:34:47.359
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1E46B444-C279-428D-A054-906DD1FE8755}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-08-10 13:10:23.079
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\Internet Explorer\iexplore.exe možnost upravit %userprofile%\Favorites.
Čas detekce: 2020-08-10T11:10:23.071Z
Uživatel: FRAM33-ASUS\fram33
Cesta: %userprofile%\Favorites
Název procesu: C:\Program Files\Internet Explorer\iexplore.exe
Verze bezpečnostních informací: 1.321.1084.0
Verze modulu: 1.1.17300.4
Verze produktu: 4.18.2007.8

Date: 2020-08-10 11:19:08.340
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\CCleaner\temp_ccupdate\ccupdate5.70.7909.exe provádění změn v paměti.
Čas detekce: 2020-08-10T09:19:08.340Z
Uživatel: FRAM33-ASUS\fram33
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\CCleaner\temp_ccupdate\ccupdate5.70.7909.exe
Verze bezpečnostních informací: 1.321.1070.0
Verze modulu: 1.1.17300.4
Verze produktu: 4.18.2007.8

Date: 2020-08-10 11:16:44.192
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\Internet Explorer\iexplore.exe možnost upravit %userprofile%\Favorites.
Čas detekce: 2020-08-10T09:16:44.191Z
Uživatel: FRAM33-ASUS\fram33
Cesta: %userprofile%\Favorites
Název procesu: C:\Program Files\Internet Explorer\iexplore.exe
Verze bezpečnostních informací: 1.321.1070.0
Verze modulu: 1.1.17300.4
Verze produktu: 4.18.2007.8

Date: 2020-08-10 11:13:35.953
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\Internet Explorer\iexplore.exe možnost upravit %userprofile%\Favorites.
Čas detekce: 2020-08-10T09:13:35.952Z
Uživatel: FRAM33-ASUS\fram33
Cesta: %userprofile%\Favorites
Název procesu: C:\Program Files\Internet Explorer\iexplore.exe
Verze bezpečnostních informací: 1.321.1070.0
Verze modulu: 1.1.17300.4
Verze produktu: 4.18.2007.8

Date: 2020-08-10 10:03:08.016
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o načtení bezpečnostních informací a pokusí se o obnovení poslední známé funkční verze.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

Date: 2020-08-10 09:36:52.011
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o načtení bezpečnostních informací a pokusí se o obnovení poslední známé funkční verze.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

CodeIntegrity:
===================================

Date: 2020-08-10 09:36:39.990
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-05 11:33:30.721
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-05 10:31:30.010
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-04 12:58:04.658
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-03 13:39:04.962
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-03 10:19:05.182
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-07-31 11:12:07.269
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-07-31 11:11:41.939
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. K53SC.221 04/09/2012
Motherboard: ASUSTeK Computer Inc. K53SC
Processor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz
Percentage of memory in use: 34%
Total physical RAM: 8102.7 MB
Available physical RAM: 5331.18 MB
Total Virtual: 16294.7 MB
Available Virtual: 13688.71 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:475.77 GB) (Free:106.61 GB) NTFS
Drive e: (HiSuite) (CDROM) (Total:0 GB) (Free:0 GB) CDFS

\\?\Volume{0ebeb270-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.57 GB) (Free:0.53 GB) NTFS
\\?\Volume{0ebeb270-0000-0000-0000-d01577000000}\ () (Fixed) (Total:0.6 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 0EBEB270)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=475.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=611 MB) - (Type=27)

==================== End of Addition.txt =======================

[fram33]

a fixlog
Fix result of Farbar Recovery Scan Tool (x64) Version: 09-08-2020
Ran by fram33 (11-08-2020 09:26:45) Run:1
Running from C:\Users\fram33\Downloads\Programs
Loaded Profiles: fram33
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> [CC]{85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {09c28161-a0c5-11ea-b368-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {75eba5d0-d2fd-11ea-b5c6-14dae964db71} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {832ef50a-b3a8-11ea-b5ad-14dae964db71} - "E:\startme.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {893d06af-cfe5-11ea-b5b7-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {a390779a-c1c3-11ea-b5b0-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {a3907b20-c1c3-11ea-b5b0-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {b16ff17f-d6fe-11ea-b5cb-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {cb9b24c6-b47d-11ea-b5ad-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\...\MountPoints2: {fbc76d12-c044-11ea-b5af-14dae964db71} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] ->
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] ->
AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvami.inf_amd64_1474122a0ce2f241\nvinitx.dll => No File
AppInit_DLLs-x32: C:\WINDOWS\system32\DriverStore\FileRepository\nvami.inf_amd64_1474122a0ce2f241\nvinit.dll => No File
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-503818456-1414817836-1498445010-1001 -> No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
U1 aswbdisk; no ImagePath

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{09c28161-a0c5-11ea-b368-14dae964db71} => removed successfully
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{75eba5d0-d2fd-11ea-b5c6-14dae964db71} => removed successfully
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{832ef50a-b3a8-11ea-b5ad-14dae964db71} => removed successfully
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{893d06af-cfe5-11ea-b5b7-14dae964db71} => removed successfully
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a390779a-c1c3-11ea-b5b0-14dae964db71} => removed successfully
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a3907b20-c1c3-11ea-b5b0-14dae964db71} => removed successfully
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b16ff17f-d6fe-11ea-b5cb-14dae964db71} => removed successfully
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cb9b24c6-b47d-11ea-b5ad-14dae964db71} => removed successfully
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fbc76d12-c044-11ea-b5af-14dae964db71} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{ACFC407B-266C-8504-8DAE-F3E276336E4B} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters\{ACFC407B-266C-8504-8DAE-F3E276336E4B} => removed successfully
"C:\WINDOWS\system32\DriverStore\FileRepository\nvami.inf_amd64_1474122a0ce2f241\nvinitx.dll" => Value data removed successfully
"C:\WINDOWS\system32\DriverStore\FileRepository\nvami.inf_amd64_1474122a0ce2f241\nvinit.dll" => Value data removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
HKU\S-1-5-21-503818456-1414817836-1498445010-1001\SOFTWARE\Policies\Google => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-21-503818456-1414817836-1498445010-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F}" => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => removed successfully
aswbdisk => service removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 151817568 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 63404257 B
Edge => 524596 B
Chrome => 32603223 B
Firefox => 180499188 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 9650 B
NetworkService => 19742 B
fram33 => 693026257 B

RecycleBin => 0 B
EmptyTemp: => 1.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 09:27:56 ====

[Rudy]

OK. Nastala nějaká změna?

[fram33]

ne... chování kliků-značení souborů atd stejné

[fram33]

tak ještě jinak... vytvořil jsem soubor fixlist... načetl FRST tlačítkem FIX to mi poté dalo pokyn k restartu PC . Po restartu jsem provedl scan tímto programem. Mám pocit že se to zlepšilo, už si myš..klikaní nedělá co chce, jen ještě když kliknu na soubor...samo se chytí a drží..tj posouvám jej a musím pak prokliknout aby to pustilo....zatím...

[Rudy]

OK. Pak tedy není problém v malwaru, ani v zbytečnostech v PC. Po jaké instalaci (případně vč. aktualizací systému) jste problém zjistil?

[fram33]

dobrý den. Zatím testuji... hlavní problém zmizel, jen ještě to zachycení souboru nebo posuvníku někdy naskočí... zjištuji kdy....
Pomohl jste moc, jelikož nepomohl žádný antimalware, ani antivir...zkoušel jsem skeen online, i recuve restarten skenovat. ARovněž superspyware...ty vždy něco našly, poté po restartu bylo dobré ale po několika klikáních se to objevilo znovu...
Je fakt, že nemám žádny antivir jen wind defender... a u toho vyskakuji hlášky o blokování přístupuk chr.složkám-zápisu,změny atd a několikrát jsem otevřel a dal povolit...Asi jsem to neměl, jelikož před tím jsem neměl žádný problém. Samozřejmě po instalaci průgramů...většinou z uložto...
fk.