VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

TestDll.bin

https://forum.viry.cz:443/viewtopic.php?t=157436

Stránka 1 z 2

TestDll.bin

Napsal: 21 zář 2020 17:05
od Mariangello
Dobrý deň, prosím vás, pravidelne kontrolujem PC pomocou MB a CureIT. Pri poslednej kontrole mi CureIt našlo TestDll.bin (BackDoor.Siggen2.2982) v priečinku C:Windows. MB nenašiel nič. Počítač sa ale nespráva nijak spomalene ani nezamŕza. Ide teda pravdepodobne o falošné hlásenie?

Re: TestDll.bin

Napsal: 21 zář 2020 17:55
od Rudy
Zdravím!
TestDll.bin je opravdu šmejd. Chcete-li PC vyčistit, dejte logy FRST+Adiition: https://forum.viry.cz/viewtopic.php?f=13&t=154679. mPodíváme se, zdali vám do PC něco nezatáhl, případně ho vyčistíme od zbytečností.

Re: TestDll.bin

Napsal: 21 zář 2020 18:04
od Mariangello
Pripájam tie logy:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-09-2020
Ran by Marian (administrator) on DESKTOP-2SGA964 (HP 870-287nc) (21-09-2020 18:59:42)
Running from C:\Users\Marian\Desktop
Loaded Profiles: Marian
Platform: Windows 10 Home Version 2004 19041.508 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14>
(Hewlett-Packard Company -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HPPhoenixCtrl\HPWMISVC.exe
(HP Inc. -> ) C:\Program Files (x86)\HP\HP JUMPSTART LAUNCH\HPJumpStartLaunch.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAUDIOSWITCH\HPAudioSwitch.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Client\PerfTune.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Client\XtuUiLauncher.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.45.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.45.11001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.9-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.9-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdci.inf_amd64_89e3dec2a908dbbe\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [707624 2018-08-08] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [HPMSGSVC] => C:\Program Files (x86)\HP\HPPhoenixCtrl\HPMSGSVC.exe [502032 2016-06-16] (Hewlett-Packard Company -> HP Development Company, L.P.)
HKU\S-1-5-21-963594185-2070104337-283957109-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-963594185-2070104337-283957109-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --flag-switches-begin --flag-switches-end --enable-audio-service-s (the data entry has 102 more characters).
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\85.0.4183.102\Installer\chrmstp.exe [2020-09-19] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-963594185-2070104337-283957109-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03FCCA21-6BD6-42EA-A98B-30EFDC04B354} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22764408 2020-09-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {0496FFD1-0022-4ACA-98D2-AB6EB4C03CFC} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {0686EC69-B368-4CEF-BE0F-F2B5BE2D23D6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {0693B992-5648-49AE-96F3-AEC07B81CED6} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-09-27] (HP Inc. -> HP Inc.)
Task: {0D01EDC9-F3A0-4655-B5EF-1BFCEB3659A4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [135000 2020-06-22] (HP Inc. -> HP Inc.)
Task: {0E833782-107E-47DA-950A-31DE249B3DFA} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {201EE250-93C9-4933-A203-9430EC9FC195} - System32\Tasks\PTUI => C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Client\XtuUiLauncher.exe [125168 2020-05-01] (Intel Corporation -> Intel(R) Corporation)
Task: {2D3515F0-CFCE-4F85-9F27-AF9793405BF3} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127224 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {351FA5D9-53F6-4064-A469-41431D001F15} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {38848B4E-DD88-4462-84D6-DFAC875649DE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906040 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {505E1039-0DF2-4B89-9CA3-15F97DB1A56F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {56387E05-25A5-4B73-B42F-466665185F37} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {57D8B755-C4D4-4C9A-A6EA-3CE3F4CE8913} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {590CCCA8-D473-4D26-AF5C-5F899BC9493B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-19] (Google LLC -> Google LLC)
Task: {6276C2F2-5423-4ED8-B2D2-BB75FA840C76} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [345944 2020-09-08] (HP Inc. -> HP Inc.)
Task: {662E16F6-79DC-4063-BB21-68DCF9AA4318} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22764408 2020-09-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {71152948-83B9-4265-9B6F-61DA5D4123CB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {765BE57A-4DC5-4A6F-AA32-9941AA73FBF9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906040 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {80170EC8-B16E-4208-A49D-7B8B799FBAC6} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235944 2017-08-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8B106F0F-EC54-46D9-AD8F-AC32C15850FA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {8D78368E-30A9-41F0-BB42-06FE3A57BA16} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {94D2D6D3-7FF0-4B84-BDA6-4A2FCCA9D791} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {99CD48D7-0D59-4AFA-A36D-1AABA7CE4CF4} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {A357EACB-A81B-449F-8E7A-EE6FE138EE2D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AD0FFF20-E049-41C0-A55E-CCE1C3B6C2E0} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [459680 2017-07-28] (HP Inc. -> )
Task: {B5A71A76-E09A-41A8-A747-67B38A9F7857} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C009F540-C7D8-4991-814F-37BAC6EEB1D9} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1283488 2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7FE46F5-8C15-426E-B158-41C593BCE468} - System32\Tasks\elevator_87aa3f876905711d6249ca9d21c30043 => D:\Games\SimHub\SimHubWPF.exe
Task: {CA14C498-6EC3-4391-8209-DDED60A47BD0} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127224 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CBB1B525-BC6A-4B67-A4CC-8DE0C43279AA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {DE6F0444-8839-4D8F-9019-10FD39245147} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DF0F05BD-DCD5-43F0-847C-488DEA115867} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127224 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DF85A5DB-1751-4A02-B93B-A9BC8BFBD592} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127224 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E181648A-C084-46A7-8AC1-3730B604F3BF} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {E2AC368A-CE9C-41C3-A037-6B240D59CFE1} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E8D900B8-6ADD-42AB-8A96-8695C8BC1F7D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-19] (Google LLC -> Google LLC)
Task: {F0745428-4A25-458A-9588-702E537C3743} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F5E38705-C937-47C8-9541-99C822F12C87} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118120 2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {FB405CDC-CAD0-42BB-B892-1C39B041343A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118120 2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {FC3A0669-AE58-44B4-8EBF-1BF9700F230F} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {FD836B4C-E399-43E1-91DD-1926303E607D} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 80.242.44.85 8.8.8.8
Tcpip\..\Interfaces\{27e0b915-329b-419b-b25d-55743d4d4f78}: [DhcpNameServer] 80.242.44.85 8.8.8.8

Edge:
======
DownloadDir: C:\Users\Marian\Downloads
Edge Notifications: HKU\S-1-5-21-963594185-2070104337-283957109-1001 -> hxxps://forums.codemasters.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\Marian\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-20]
Edge HomePage: Default -> hxxp://www.google.com/
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\Marian\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2020-09-11]
Edge Extension: (AdBlock — best ad blocker) - C:\Users\Marian\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2020-09-19]

FireFox:
========
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-963594185-2070104337-283957109-1001: ubisoft.com/uplaypc -> D:\Games\H.A.W.X. 2\orbit\npuplaypc.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default [2020-09-21]
CHR Notifications: Default -> hxxps://forums.flightsimulator.com
CHR HomePage: Default -> hxxp://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentácie) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-19]
CHR Extension: (Dokumenty) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-19]
CHR Extension: (Disk Google) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-09-19]
CHR Extension: (YouTube) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-19]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-09-19]
CHR Extension: (Tabuľky) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-19]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-19]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-09-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-09-19]
CHR Extension: (Gmail) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-09-19]
CHR Extension: (Chrome Media Router) - C:\Users\Marian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-19]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2020-07-07] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8838528 2020-09-04] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-07-15] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [294200 2020-09-15] (NVIDIA Corporation -> NVIDIA)
S3 GalaxyClientService; D:\Games\GOG Galaxy\GalaxyClientService.exe [1673288 2020-06-16] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-06-16] (GOG Sp. z o.o. -> GOG.com)
S4 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1321096 2018-09-28] (HP Inc. -> HP Inc.)
S4 HPJumpStartBridge; C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [471040 2017-07-28] (HP Inc. -> HP Inc.)
S4 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HPPhoenixCtrl\HPWMISVC.exe [554768 2016-06-16] (Hewlett-Packard Company -> HP Development Company, L.P.)
S4 IRMTService; C:\Program Files\Intel\Intel(R) Ready Mode Technology\IRMTService.exe [182896 2016-10-13] (Intel(R) RMT -> Intel Corporation)
S3 MBAMService; D:\Games\Anti-Malware\mbamservice.exe [4470736 2017-07-12] (Malwarebytes Corporation -> Malwarebytes)
S4 Origin Client Service; D:\Games\Origin\OriginClientService.exe [2519352 2020-09-13] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; D:\Games\Origin\OriginWebHelperService.exe [3472192 2020-09-13] (Electronic Arts, Inc. -> Electronic Arts)
S3 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2019-10-27] (Even Balance, Inc. -> )
S3 Rockstar Service; D:\Games\Launcher\RockstarService.exe [1453184 2020-08-23] (Rockstar Games, Inc. -> Rockstar Games)
S4 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2018-01-10] () [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\NisSrv.exe [2343112 2020-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MsMpEng.exe [128360 2020-09-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_89e3dec2a908dbbe\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_89e3dec2a908dbbe\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 dokan1; C:\WINDOWS\System32\DRIVERS\dokan1.sys [104312 2018-08-09] (D3L -> Dokan Project)
S3 fiddrv64; no ImagePath
R3 IntelReadyModeDriver; C:\WINDOWS\System32\drivers\IntelReadyModeDriver.sys [34720 2016-10-13] (Intel Corporation -> Intel Corporation)
R1 MpKslDrv; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AFFDB507-34C5-4516-9959-B341851D6F3A}\MpKslDrv.sys [78056 2020-09-21] (Microsoft Windows -> Microsoft Corporation)
S3 trufos; C:\WINDOWS\System32\drivers\trufos.sys [485512 2017-10-29] (Bitdefender SRL -> BitDefender S.R.L.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2020-09-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [428256 2020-09-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69856 2020-09-02] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-09-21 18:59 - 2020-09-21 19:00 - 000023108 _____ C:\Users\Marian\Desktop\FRST.txt
2020-09-21 18:59 - 2020-09-21 18:59 - 000000000 ____D C:\FRST
2020-09-21 18:58 - 2020-09-21 18:58 - 002299392 _____ (Farbar) C:\Users\Marian\Desktop\FRST64.exe
2020-09-21 17:12 - 2020-09-21 17:12 - 000000000 ____D C:\Users\Marian\Doctor Web
2020-09-21 15:16 - 2020-09-21 15:16 - 000003570 _____ C:\WINDOWS\system32\Tasks\PTUI
2020-09-20 15:23 - 2020-09-20 15:27 - 000000008 __RSH C:\ProgramData\ntuser.pol
2020-09-20 14:29 - 2020-09-20 14:31 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-20 14:29 - 2020-09-20 14:31 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-20 14:29 - 2020-09-20 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-09-20 14:29 - 2020-09-16 06:49 - 002795320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-09-20 14:29 - 2020-09-16 06:49 - 002152936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2020-09-20 14:29 - 2020-09-16 06:49 - 001294648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-09-20 14:28 - 2020-09-20 14:31 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-20 14:28 - 2020-09-20 14:31 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-20 14:28 - 2020-09-20 14:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-20 14:28 - 2020-09-20 14:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-20 14:28 - 2020-09-20 14:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-20 14:28 - 2020-09-20 14:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-20 14:28 - 2020-09-16 06:42 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-09-20 14:28 - 2020-08-10 17:20 - 000169272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2020-09-20 14:28 - 2020-08-10 17:20 - 000145208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2020-09-20 14:28 - 2020-03-06 12:03 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2020-09-20 14:28 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-09-19 09:47 - 2020-09-19 09:47 - 000000000 ___HD C:\$SysReset
2020-09-19 09:37 - 2020-09-19 09:53 - 000002297 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-09-19 09:37 - 2020-09-19 09:53 - 000002297 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-09-19 09:37 - 2020-09-19 09:37 - 000003458 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-09-19 09:37 - 2020-09-19 09:37 - 000003334 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-09-19 09:37 - 2020-09-19 09:37 - 000002338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-09-19 09:37 - 2020-09-19 09:37 - 000000000 ____D C:\Program Files\Google
2020-09-18 13:27 - 2020-08-13 03:47 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2020-09-17 17:01 - 2020-09-15 09:50 - 000068408 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2020-09-17 17:01 - 2020-09-15 09:50 - 000057144 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2020-09-17 16:58 - 2020-09-15 19:55 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-09-17 16:58 - 2020-09-15 19:55 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-09-17 16:58 - 2020-09-15 19:55 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-09-17 16:58 - 2020-09-15 19:55 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-09-17 16:58 - 2020-09-15 19:55 - 001054944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-09-17 16:58 - 2020-09-15 19:55 - 001054944 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-09-17 16:58 - 2020-09-15 19:55 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-09-17 16:58 - 2020-09-15 19:55 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-09-17 12:30 - 2020-09-17 12:30 - 000000000 ____D C:\Users\Marian\AppData\Roaming\EasyAntiCheat
2020-09-17 12:30 - 2020-09-17 12:30 - 000000000 ____D C:\Users\Marian\AppData\Local\NineToFive
2020-09-12 22:28 - 2020-08-14 00:59 - 005501328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-09-12 22:27 - 2020-08-14 01:04 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-09-12 22:27 - 2020-08-14 01:04 - 000349928 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-09-12 22:27 - 2020-08-14 01:01 - 024694504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2020-09-12 22:27 - 2020-08-14 01:01 - 001485544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-09-12 22:27 - 2020-08-14 01:01 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-09-12 22:27 - 2020-08-14 01:01 - 001018768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-09-12 22:27 - 2020-08-14 01:01 - 000816360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-09-12 22:27 - 2020-08-14 01:01 - 000675224 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-09-12 22:27 - 2020-08-14 01:01 - 000669416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-09-12 22:27 - 2020-08-14 01:01 - 000582904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-09-12 22:27 - 2020-08-14 01:01 - 000555920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-09-12 22:27 - 2020-08-14 01:01 - 000541928 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-09-12 22:27 - 2020-08-14 01:00 - 006653328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-09-12 22:27 - 2020-08-14 01:00 - 005882600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-09-12 22:27 - 2020-08-14 01:00 - 002376080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-09-12 22:27 - 2020-08-14 01:00 - 002078096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-09-12 22:27 - 2020-08-14 01:00 - 001570704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-09-12 22:27 - 2020-08-14 01:00 - 000811240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-09-12 22:27 - 2020-08-14 01:00 - 000656784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-09-12 22:27 - 2020-08-14 01:00 - 000443624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-09-12 22:27 - 2020-08-14 00:59 - 003916688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-09-12 22:27 - 2020-08-14 00:59 - 000849640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-09-12 22:27 - 2020-08-14 00:58 - 004707696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-09-12 22:27 - 2020-08-13 03:47 - 000077891 _____ C:\WINDOWS\system32\nvinfo.pb
2020-09-11 17:22 - 2020-09-11 17:22 - 000002485 _____ C:\Users\Marian\Desktop\Intel(R) Processor Identification Utility.lnk
2020-09-10 16:08 - 2020-09-10 16:08 - 008651616 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw04.sys
2020-09-10 16:08 - 2020-09-10 16:08 - 002074564 _____ C:\WINDOWS\system32\Drivers\Netwfw04.dat
2020-09-10 16:08 - 2020-09-10 16:08 - 001067872 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter04.dll
2020-09-08 21:31 - 2020-09-20 14:31 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-08 21:31 - 2020-09-20 14:31 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-08 21:31 - 2020-09-20 14:29 - 000000000 ____D C:\Users\Marian\AppData\Local\NVIDIA
2020-09-08 21:31 - 2020-03-11 21:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-09-08 20:44 - 2020-09-20 14:29 - 000000000 ____D C:\Users\Marian\AppData\Local\NVIDIA Corporation
2020-09-08 20:21 - 2020-09-12 22:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-09-08 20:20 - 2020-09-04 04:08 - 001723904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445222.dll
2020-09-08 20:20 - 2020-09-04 04:08 - 001484800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445222.dll
2020-09-08 20:20 - 2020-08-14 00:58 - 005395088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-09-08 20:14 - 2020-09-14 20:25 - 000056461 ____H C:\Users\Marian\AppData\Local\IconCache.db.backup
2020-09-08 20:13 - 2020-09-08 20:13 - 032610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 026272768 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 023441408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 019869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 018766848 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 018075136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 008897200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 007611904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 006417408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 005993968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 005820416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 004892672 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 004820992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 004783344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 004523008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 004362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 004304384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 004274688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 003992576 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 003868672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 003659264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 003547784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 003334656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 002687488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 002635640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 002519512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 002452856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-08 20:13 - 2020-09-08 20:13 - 002338184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 002265328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 002136744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-08 20:13 - 2020-09-08 20:13 - 001980728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001956032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001812368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001770040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001720832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001719096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001681408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001617088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001557816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 001542752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001541224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001506608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001449792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001449472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001438432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001411072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 001352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001337344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001314608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-09-08 20:13 - 2020-09-08 20:13 - 001301584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001260200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001255744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 001253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-08 20:13 - 2020-09-08 20:13 - 001239040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001183256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001181200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001128544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 001117344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001061376 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001048064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-08 20:13 - 2020-09-08 20:13 - 001014864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 001003320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000961192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000946712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000920896 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000907440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000887304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000801544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000759792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-08 20:13 - 2020-09-08 20:13 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-08 20:13 - 2020-09-08 20:13 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000707584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000688960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000680664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-08 20:13 - 2020-09-08 20:13 - 000676680 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000665264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-08 20:13 - 2020-09-08 20:13 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000585696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000538120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000530440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000528352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\glmf32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000500968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000495848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000412688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glmf32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000377344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000367416 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000360024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000303288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000217920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000196768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2020-09-08 20:13 - 2020-09-08 20:13 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000138936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000117056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000110504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000095032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-09-08 20:13 - 2020-09-08 20:13 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-09-08 20:13 - 2020-09-08 20:13 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootim.exe
2020-09-08 20:13 - 2020-09-08 20:13 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000021312 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragproxy.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000009277 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-09-08 20:13 - 2020-09-08 20:13 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragres.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-09-08 20:13 - 2020-09-08 20:13 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 014754304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 010847552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 010336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 009034752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 008006248 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 007979416 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 007633360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 006357032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 006197760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 006193664 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 005870496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 005776544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 005729280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 005430480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 005056000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 004747776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 004727296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 004629328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 004592136 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 004009064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003913728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003875840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003819528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003815424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 003806720 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003779384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 003749376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003505952 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003436544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003303936 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003181056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003082240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 003062784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002991416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 002975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002951680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 002918736 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002851128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 002806152 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002772992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002757120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002749440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 002647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002631168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002606592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002587448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002541056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002451456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002433024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002422784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002319216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002259968 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002248192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002206208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002178048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002131032 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002103704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002102784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 002023704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001978656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001951232 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001924608 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001905664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001868672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001866240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001856312 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001834496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001805192 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-09-08 20:12 - 2020-09-08 20:12 - 001777152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001766912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001701368 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001693208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001654824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001649664 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001640888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001538656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001514496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001504768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001485824 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001473024 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001472824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 001430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001426944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 001400208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-09-08 20:12 - 2020-09-08 20:12 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001378568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001337176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001329664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001296384 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001279288 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001277440 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001261056 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001257984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001209344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001209096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 001198288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 001191592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001145344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001140928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001126488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001114112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001094472 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001092392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001089344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001068112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001046528 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-09-08 20:12 - 2020-09-08 20:12 - 001044880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001030656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001028288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001027344 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001021952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001008696 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000999744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000978760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000976680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000969216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000943408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000939448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000934912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000929792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000914216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000913776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000903992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000894768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000890944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2020-09-08 20:12 - 2020-09-08 20:12 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000843376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000827912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000809280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000799544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000794624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000775776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000763840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000757192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000755576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000750976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000748360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000725608 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000705560 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000702792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000702776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000647480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000643584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000639928 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UiaManager.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000635824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000634240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000603464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000602440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-09-08 20:12 - 2020-09-08 20:12 - 000602184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000583608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000573752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000546464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000531448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000527880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UiaManager.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000502592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-09-08 20:12 - 2020-09-08 20:12 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2020-09-08 20:12 - 2020-09-08 20:12 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000472376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000455480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000454960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000428672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000420920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000420456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000418800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000403768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000393728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000374072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000373560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000361472 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2020-09-08 20:12 - 2020-09-08 20:12 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InputPersonalization.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000337768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000322376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msquic.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000305472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000303168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnputil.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000286024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000269624 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000259888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000255296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000249664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000240136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000239432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000230392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000230376 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2020-09-08 20:12 - 2020-09-08 20:12 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000223040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000213344 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000212760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000190792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxApplicabilityEngine.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000185672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000185664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000183112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000180024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000169456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000167880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000160064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000159048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000155952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000153400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000152376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000147256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000143104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000141008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000133736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000132928 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000132728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlgpclnt.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000119608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000118072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000116024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-09-08 20:12 - 2020-09-08 20:12 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000109992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000099640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlgpclnt.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000092952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000091448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000070976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000069752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000069728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000069432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000068928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PlatformExtension.DevicePickerExperience.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000064824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000064008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.SystemId.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000060744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000059448 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000056648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.SystemId.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-09-08 20:12 - 2020-09-08 20:12 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000042320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2020-09-08 20:12 - 2020-09-08 20:12 - 000030024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000029456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\midimap.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2020-09-08 20:12 - 2020-09-08 20:12 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-08 20:12 - 2020-09-08 20:12 - 000019776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\midimap.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000017216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000016704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-09-08 20:12 - 2020-09-08 20:12 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-09-08 20:12 - 2020-09-08 20:12 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-09-08 20:09 - 2020-08-25 05:42 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-09-08 20:09 - 2020-08-25 05:36 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-09-08 20:03 - 2020-09-21 15:14 - 000000000 ____D C:\ProgramData\NVIDIA
2020-09-08 20:03 - 2020-09-20 14:31 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-09-08 20:02 - 2020-09-20 14:31 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-09-08 20:02 - 2020-09-04 03:07 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-09-08 20:02 - 2020-09-04 03:07 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-09-08 20:02 - 2020-08-13 03:47 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-09-01 13:26 - 2020-09-01 13:26 - 000000000 ____D C:\WINDOWS\Panther
2020-08-30 12:47 - 2020-08-30 12:47 - 007802929 _____ C:\Users\Marian\Desktop\Maximise-Performance-Flight-Simulator-Single.pdf
2020-08-30 00:29 - 2020-08-30 00:29 - 000002685 _____ C:\Users\Public\Desktop\Intel(R) Extreme Tuning Utility.lnk
2020-08-30 00:29 - 2020-08-30 00:29 - 000002685 _____ C:\ProgramData\Desktop\Intel(R) Extreme Tuning Utility.lnk
2020-08-30 00:29 - 2020-08-30 00:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2020-08-30 00:23 - 2020-08-30 00:23 - 000000000 ____D C:\Program Files\Microsoft Synchronization Services
2020-08-30 00:23 - 2020-08-30 00:23 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2020-08-30 00:23 - 2020-08-30 00:23 - 000000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
2020-08-30 00:23 - 2020-08-30 00:23 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2020-08-28 22:44 - 2020-08-28 22:44 - 000000000 ____D C:\Users\Marian\AppData\Roaming\ProcessLasso
2020-08-26 15:32 - 2020-08-26 15:32 - 000000000 ____D C:\Users\Marian\AppData\Local\Slightly Mad Studios
2020-08-26 11:40 - 2020-08-26 11:40 - 002058240 _____ C:\Users\Marian\Desktop\FS2020.iso
2020-08-26 11:34 - 2020-08-26 11:34 - 000001063 _____ C:\Users\Marian\Desktop\vmnt64 – odkaz.lnk
2020-08-26 11:32 - 2020-08-26 11:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinCDEmu
2020-08-25 18:18 - 2020-08-25 18:30 - 000000000 ____D C:\Users\Marian\Documents\FIFA 17
2020-08-25 15:06 - 2020-08-25 15:06 - 000000893 _____ C:\Users\Public\Desktop\FIFA 17.lnk
2020-08-25 15:06 - 2020-08-25 15:06 - 000000893 _____ C:\ProgramData\Desktop\FIFA 17.lnk
2020-08-25 15:06 - 2020-08-25 15:06 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2020-08-23 08:14 - 2020-09-20 14:31 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-08-23 00:20 - 2020-08-23 00:20 - 000022832 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_577313895317698.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-09-21 18:52 - 2020-06-12 12:45 - 000004210 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{219F2BD4-A9EE-4CF1-810F-99A948DBFE12}
2020-09-21 17:12 - 2020-06-29 20:45 - 000000000 ____D C:\ProgramData\Doctor Web
2020-09-21 17:12 - 2020-06-12 12:39 - 000000000 ____D C:\Users\Marian
2020-09-21 15:55 - 2020-06-12 12:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-09-21 15:19 - 2020-06-12 12:48 - 001829354 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-21 15:19 - 2019-12-07 16:41 - 000741560 _____ C:\WINDOWS\system32\perfh005.dat
2020-09-21 15:19 - 2019-12-07 16:41 - 000162304 _____ C:\WINDOWS\system32\perfc005.dat
2020-09-21 15:19 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-09-21 15:16 - 2017-07-09 00:53 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2020-09-21 15:12 - 2020-06-12 12:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-09-21 15:12 - 2020-06-12 12:38 - 000008192 ___SH C:\DumpStack.log.tmp
2020-09-21 15:12 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-09-21 14:21 - 2020-07-13 23:33 - 000000000 ____D C:\Users\Marian\AppData\Local\AcTools Content Manager
2020-09-21 12:07 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-09-21 12:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-09-20 23:11 - 2020-01-31 12:41 - 000000000 ____D C:\Users\Marian\AppData\Local\FlightSimulator
2020-09-20 15:29 - 2019-12-07 11:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2020-09-20 15:21 - 2016-07-16 13:47 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-09-20 15:20 - 2020-07-15 18:14 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2020-09-20 15:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-20 15:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\security
2020-09-20 15:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-09-20 15:20 - 2019-12-07 11:10 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll
2020-09-20 15:20 - 2019-12-07 11:10 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2020-09-20 15:20 - 2019-12-07 11:10 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2020-09-20 15:20 - 2019-12-07 11:10 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2020-09-20 15:20 - 2019-12-07 11:10 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditNativeSnapIn.dll
2020-09-20 15:20 - 2019-12-07 11:10 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2020-09-20 15:20 - 2019-12-07 11:10 - 000147439 _____ C:\WINDOWS\system32\gpedit.msc
2020-09-20 15:20 - 2019-12-07 11:10 - 000120458 _____ C:\WINDOWS\system32\secpol.msc
2020-09-20 15:20 - 2019-12-07 11:10 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolmsg.dll
2020-09-20 15:20 - 2019-12-07 11:10 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2020-09-20 15:20 - 2019-12-07 11:10 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2020-09-20 15:20 - 2019-12-07 11:10 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2020-09-20 15:20 - 2019-12-07 11:10 - 000043566 _____ C:\WINDOWS\system32\rsop.msc
2020-09-20 15:20 - 2019-12-07 11:10 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2020-09-20 15:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-09-19 23:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-09-19 09:37 - 2017-06-20 09:59 - 000000000 ____D C:\Users\Marian\AppData\Local\Google
2020-09-19 09:37 - 2017-06-20 09:59 - 000000000 ____D C:\Program Files (x86)\Google
2020-09-19 08:36 - 2017-02-13 05:34 - 000000000 ____D C:\Program Files (x86)\Intel
2020-09-19 08:36 - 2017-02-13 04:39 - 000000000 ____D C:\ProgramData\Package Cache
2020-09-19 08:35 - 2017-02-13 05:34 - 000000000 ____D C:\Program Files\Intel
2020-09-17 16:29 - 2020-06-12 12:45 - 000204728 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInputRedist.dll
2020-09-17 16:29 - 2020-06-12 12:45 - 000165808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInputRedist.dll
2020-09-17 16:29 - 2020-04-15 08:15 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2020-09-17 16:29 - 2020-01-31 08:25 - 001523640 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2020-09-17 16:29 - 2020-01-31 08:25 - 000166848 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2020-09-17 16:29 - 2020-01-31 08:25 - 000158640 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2020-09-17 16:29 - 2020-01-31 08:25 - 000150456 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2020-09-17 16:29 - 2020-01-31 08:25 - 000033720 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2020-09-17 12:30 - 2017-08-10 15:05 - 000000000 ____D C:\Users\Marian\AppData\Local\UnrealEngine
2020-09-15 23:29 - 2017-06-19 18:12 - 000000000 ____D C:\Users\Marian\AppData\Local\CrashDumps
2020-09-15 23:21 - 2017-10-17 21:42 - 000000000 ____D C:\Users\Marian\AppData\Local\Packages
2020-09-15 16:55 - 2017-06-19 16:20 - 000000589 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2020-09-14 22:01 - 2017-06-19 15:48 - 000000000 ___RD C:\Users\Marian\OneDrive
2020-09-14 21:21 - 2020-06-09 12:52 - 000000000 ____D C:\Users\Marian\Desktop\ISLC v1.0.2.2
2020-09-13 22:41 - 2020-01-22 20:14 - 000000000 ____D C:\Users\Marian\Desktop\stupnice
2020-09-13 19:46 - 2018-11-29 18:24 - 000000000 ____D C:\Users\Marian\AppData\Roaming\Origin
2020-09-13 19:35 - 2018-11-29 22:55 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-09-13 19:35 - 2018-11-29 18:24 - 000000000 ____D C:\ProgramData\Origin
2020-09-13 19:35 - 2018-10-05 11:00 - 000000000 ____D C:\Users\Marian\AppData\Local\Origin
2020-09-13 09:27 - 2016-08-23 21:10 - 000000000 ___HD C:\SYSTEM.SAV
2020-09-13 09:26 - 2017-06-19 16:08 - 000000000 ____D C:\Users\Marian\AppData\Local\HP_Inc
2020-09-13 09:20 - 2019-06-23 22:16 - 000000000 ____D C:\Users\Marian\AppData\Local\PlaceholderTileLogoFolder
2020-09-12 12:27 - 2017-02-13 04:41 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-09-11 07:12 - 2020-06-06 07:05 - 000002434 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-09-11 07:12 - 2020-06-06 07:05 - 000002272 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-09-11 07:12 - 2020-06-06 07:05 - 000002272 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-09-08 23:40 - 2020-06-12 13:31 - 000000000 ___RD C:\WINDOWS\WebManagement
2020-09-08 20:16 - 2020-06-12 12:38 - 000434624 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-08 20:15 - 2019-12-12 11:31 - 000022889 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-09-08 20:15 - 2019-12-12 11:31 - 000012188 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-08 20:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-09-08 20:14 - 2019-12-12 11:31 - 000012164 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-09-08 20:09 - 2017-06-20 08:34 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-08 20:07 - 2017-06-20 08:34 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-08 20:04 - 2019-12-12 11:31 - 000002945 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-09-08 19:59 - 2019-10-03 17:53 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-09-04 16:54 - 2018-05-01 14:38 - 000000000 ____D C:\Users\Marian\AppData\Local\D3DSCache
2020-09-02 21:55 - 2018-02-28 18:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-09-01 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2020-09-01 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2020-09-01 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2020-09-01 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2020-09-01 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2020-09-01 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2020-09-01 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2020-09-01 23:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-08-31 22:09 - 2017-06-23 20:50 - 000000000 ____D C:\Users\Marian\AppData\Local\ElevatedDiagnostics
2020-08-31 21:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-08-31 21:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-08-30 20:41 - 2020-07-03 22:31 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-08-30 00:29 - 2017-02-13 05:35 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2020-08-30 00:26 - 2017-02-13 05:34 - 000000000 ____D C:\ProgramData\Intel
2020-08-29 21:03 - 2019-09-12 19:44 - 000000016 _____ C:\Users\Marian\AppData\Roaming\msregsvv.dll
2020-08-29 21:03 - 2019-09-12 19:44 - 000000016 _____ C:\ProgramData\autobk.inc
2020-08-28 07:10 - 2020-06-12 12:45 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-08-28 07:10 - 2020-06-12 12:45 - 000003452 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-08-26 14:42 - 2017-06-20 10:10 - 000000000 ____D C:\Users\Marian\AppData\Roaming\uTorrent
2020-08-25 20:29 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-08-25 16:06 - 2018-06-20 17:58 - 000000000 ____D C:\ProgramData\Packages
2020-08-25 11:58 - 2017-02-13 04:39 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-08-24 00:57 - 2019-11-18 11:21 - 000000000 ____D C:\Users\Marian\AppData\Roaming\Vortex
2020-08-23 12:19 - 2019-01-02 19:40 - 000000000 ____D C:\Program Files\Rockstar Games
2020-08-23 12:19 - 2019-01-02 19:40 - 000000000 ____D C:\Program Files (x86)\Rockstar Games

==================== Files in the root of some directories ========

2020-07-25 16:50 - 2020-07-25 16:51 - 000000132 _____ () C:\Users\Marian\AppData\Roaming\Adobe PNG Format CC Prefs
2020-06-23 15:38 - 2020-07-08 18:31 - 000000099 _____ () C:\Users\Marian\AppData\Roaming\LauncherSettings_live.cfg
2019-09-12 19:44 - 2020-08-29 21:03 - 000000016 _____ () C:\Users\Marian\AppData\Roaming\msregsvv.dll
2019-06-20 20:15 - 2019-12-14 20:38 - 000015950 _____ () C:\Users\Marian\AppData\Roaming\TheHunterSettings_live.bin
2019-06-20 20:29 - 2020-06-23 15:31 - 000000049 _____ () C:\Users\Marian\AppData\Roaming\TheHunterSettings_steam_live.cfg
2020-05-15 11:04 - 2020-06-19 10:56 - 000012584 _____ () C:\Users\Marian\AppData\Local\PlariumPlay.log
2017-06-21 18:05 - 2019-11-01 00:44 - 000007601 _____ () C:\Users\Marian\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: TestDll.bin

Napsal: 21 zář 2020 18:05
od Mariangello
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-09-2020
Ran by Marian (21-09-2020 19:00:21)
Running from C:\Users\Marian\Desktop
Windows 10 Home Version 2004 19041.508 (X64) (2020-06-12 10:45:17)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-963594185-2070104337-283957109-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-963594185-2070104337-283957109-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-963594185-2070104337-283957109-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-963594185-2070104337-283957109-501 - Limited - Disabled)
Marian (S-1-5-21-963594185-2070104337-283957109-1001 - Administrator - Enabled) => C:\Users\Marian
WDAGUtilityAccount (S-1-5-21-963594185-2070104337-283957109-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Aktualizácie NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
AmpliTube 4 version 4.0.2 (HKLM\...\{21B0C8E0-7EB7-4832-B764-20A7DAE86E02}_is1) (Version: 4.0.2 - IK Multimedia)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Asistent pri inovácii na Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22175 - Microsoft Corporation)
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.43.6 - Bethesda Softworks)
Custom Shop version 1.7.0 (HKLM-x32\...\{21BAD046-50EC-49E2-BE7B-F9729704F2C3}_is1) (Version: 1.7.0 - IK Multimedia)
CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.6.8827 - CyberLink Corp.)
Documentation Manager (HKLM\...\{5A87092D-1128-4C00-9495-4312AEA73AEF}) (Version: 21.120.2.1 - Intel Corporation) Hidden
Dokan Library 1.2.0.1000 (x64) (HKLM\...\{65A3A964-3DC3-0102-0000-180809151012}) (Version: 1.2.0.1000 - Dokany Project) Hidden
Dokan Library 1.2.0.1000 Bundle (HKLM-x32\...\{c2f619b0-68fd-4433-970e-cd66cd7a2775}) (Version: 1.2.0.1000 - Dokany Project)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Epic Games Launcher (HKLM-x32\...\{466EA30A-9B38-4AD2-A6B0-18D6E0C1A848}) (Version: 1.1.206.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.48.30259 - Electronic Arts)
GameInput Redistributable (HKLM-x32\...\{93B91052-9882-92F9-45E4-2EA38BC07D9E}) (Version: 10.1.19041.3357 - Microsoft Corporation)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.102 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.15.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.2 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{5b1a1d22-bd59-44e0-a954-e2f18ec43a23}) (Version: 5.2.20454 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\...\{1E7D6A6F-E28B-4057-BD4F-9989C1F5353D}) (Version: 1.3.0.423 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{4380D813-39E5-46FD-AC23-FC9A1A8B98AA}) (Version: 1.3.423.0 - HP Inc.)
HP PC Hardware Diagnostics Windows (HKLM-x32\...\{02E639C2-2C8A-4A55-8DFF-43666B46E8F3}) (Version: 1.5.6.0 - HP Inc.)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8361.5688 - HP Inc.)
HP Support Assistant (HKLM-x32\...\{4AAC4B07-77EF-4BCF-88DC-D24E4DE683E8}) (Version: 8.8.34.31 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{BD2B76A0-B41E-46CD-8049-C35B2D82EB24}) (Version: 12.18.34.21 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{57058272-92B0-4EFA-8FDD-ED3E5D689D37}) (Version: 1.4.32 - HP Inc.)
IK Multimedia Authorization Manager version 1.0.15 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.15 - IK Multimedia)
Intel Processor Diagnostic Tool 64bit (HKLM-x32\...\{d23ef847-2a5d-49ad-a6b5-7ffc8f255179}) (Version: 4.1.4.36 - )
Intel(R) Computing Improvement Program (HKLM\...\{D40D4164-EEDB-4F0F-85C6-2058A9E34CC7}) (Version: 2.4.04370 - Intel Corporation)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{2523CCCE-D2FA-47F7-B4DF-54C122222E6A}) (Version: 6.5.2.40 - Intel Corporation) Hidden
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{de963bf0-619d-461f-b689-7f4079c4ac42}) (Version: 6.5.2.40 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1067 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.9.1.1020 - Intel Corporation)
Intel(R) Ready Mode Technology (HKLM\...\{CC3C017C-876D-4A31-A128-593FF92A1FE7}) (Version: 1.1.70.528 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000110-0210-1033-84C8-B8D95FA3C8C3}) (Version: 21.110.0.3 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Intel® Processor Identification Utility (HKLM-x32\...\{D86CECCC-19E2-473C-A600-6837D72C467B}) (Version: 6.4.0603 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{a6cf16a4-9aef-469b-98af-71b15f60a233}) (Version: 21.120.2.1 - Intel Corporation) Hidden
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes verzia 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.13127.20408 - Microsoft Corporation)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.13127.20408 - Microsoft Corporation)
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.13127.20408 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.51 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft Flight Simulator – DVD Content (HKLM-x32\...\{0EE844B4-4833-46AB-B307-75DBF52FC226}) (Version: 1.0.0.0 - Xbox Game Studios)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) 8.0.50727.4053 (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) 8.0.50727.42 (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) 8.0.50727.762 (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable 8.0.50727.4053 (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable 8.0.50727.42 (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable 8.0.50727.762 (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.218 (HKLM\...\{BBBE35B2-9349-3C48-BD3D-F574B17C7924}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.8 (HKLM\...\{D04659D1-EB2D-3DE5-A833-837A623CCCF7}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30411.0 (HKLM\...\{D93AC9C8-B6CF-391E-BD2F-48AF4727476C}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.1 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.8 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411.0 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
MSI Afterburner 4.6.1 (HKLM-x32\...\Afterburner) (Version: 4.6.1 - MSI Co., LTD)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: - Native Instruments)
Native Instruments Guitar Rig Mobile I/O (HKLM-x32\...\Native Instruments Guitar Rig Mobile I/O) (Version: - Native Instruments)
Native Instruments Guitar Rig Session I/O (HKLM-x32\...\Native Instruments Guitar Rig Session I/O) (Version: - Native Instruments)
Native Instruments Rig Kontrol 3 (HKLM-x32\...\Native Instruments Rig Kontrol 3) (Version: - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29066181 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29066181 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.48 - NVIDIA Corporation)
NVIDIA Grafický ovládač 452.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 452.06 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.34 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13127.20164 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13127.20164 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13127.20378 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13127.20164 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.13127.20164 - Microsoft Corporation) Hidden
OMEN Control (HKLM-x32\...\{AFE5BCE5-46DD-4DFA-9DD9-00F42E15ABD9}) (Version: 1.1.1 - HP)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.83.43781 - Electronic Arts, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.17134.31242 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.19.627.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8237 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 76.0 - Ubisoft)
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)

Packages:
=========
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-27] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-04-02] (Microsoft Corporation)
Forza Horizon 4 -> C:\Program Files\WindowsApps\Microsoft.SunriseBaseGame_1.432.823.2_x64__8wekyb3d8bbwe [2020-08-26] (Microsoft Studios)
Forza Horizon 4 1959 Porsche 356A Coupe -> C:\Program Files\WindowsApps\Microsoft.ForzaHorizon41959Porsche356ACoupe_1.0.0.2_neutral__8wekyb3d8bbwe [2018-10-17] (Microsoft Studios)
Forza Horizon 4 1962 Triumph TR3B -> C:\Program Files\WindowsApps\Microsoft.TriumphTR3B_1.0.0.2_neutral__8wekyb3d8bbwe [2018-10-17] (Microsoft Studios)
Forza Horizon 4 1985 Porsche #186 959 Paris-Dakar -> C:\Program Files\WindowsApps\Microsoft.Porsche186ParisDakar_1.0.0.2_neutral__8wekyb3d8bbwe [2018-10-17] (Microsoft Studios)
Forza Horizon 4 2002 Mazda RX-7 Spirit R Type-A -> C:\Program Files\WindowsApps\Microsoft.MazdaRX7SpiritR_1.0.0.2_neutral__8wekyb3d8bbwe [2018-10-17] (Microsoft Studios)
Forza Horizon 4 2017 Koenigsegg Agera RS -> C:\Program Files\WindowsApps\Microsoft.ForzaHorizon42017KoenigseggAgeraRS_1.0.0.2_neutral__8wekyb3d8bbwe [2018-10-17] (Microsoft Studios)
Forza Horizon 4 2018 Nissan SentraNismo -> C:\Program Files\WindowsApps\Microsoft.ForzaHorizon42018NissanSentraNismo_1.0.0.2_neutral__8wekyb3d8bbwe [2018-10-17] (Microsoft Studios)
Forza Horizon 4 Best of Bond Car Pack -> C:\Program Files\WindowsApps\Microsoft.Day1CarPackBits_1.0.5.2_neutral__8wekyb3d8bbwe [2018-10-17] (Microsoft Studios)
Forza Horizon 4 Formula Drift Car Pack -> C:\Program Files\WindowsApps\Microsoft.FormulaDriftCarPack_1.0.3.2_neutral__8wekyb3d8bbwe [2018-10-17] (Microsoft Studios)
Forza Horizon 4 Fortune Island -> C:\Program Files\WindowsApps\Microsoft.Expansion1_1.225.171.2_neutral__8wekyb3d8bbwe [2018-12-08] (Microsoft Studios)
Forza Horizon 4 LEGO Speed Champions -> C:\Program Files\WindowsApps\Microsoft.Expansion2_1.312.645.2_neutral__8wekyb3d8bbwe [2019-06-10] (Microsoft Studios)
Forza Horizon 4 VIP -> C:\Program Files\WindowsApps\Microsoft.ForzaHorizon4VIP_1.0.3.2_neutral__8wekyb3d8bbwe [2018-10-17] (Microsoft Studios)
Forza Hub -> C:\Program Files\WindowsApps\Microsoft.Lucille_1.0.4.0_x64__8wekyb3d8bbwe [2019-04-02] (Microsoft Studios)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.2.228.0_x64__v10z8vjag6ke6 [2019-04-02] (HP Inc.)
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-29] (Keeper Security Inc)
Meteor Showers -> C:\Program Files\WindowsApps\Microsoft.MeteorShowers_1.0.0.0_neutral__8wekyb3d8bbwe [2020-06-12] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-04-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-04-02] (Microsoft Corporation) [MS Ad]
Microsoft Flight Simulator -> C:\Program Files\WindowsApps\Microsoft.FlightSimulator_1.8.3.0_x64__8wekyb3d8bbwe [2020-09-16] (Microsoft Studios)
Microsoft Midi gm.dls -> C:\Program Files\WindowsApps\Microsoft.Midi.GmDls_1.0.1.0_neutral__8wekyb3d8bbwe [2019-12-14] (Microsoft Platform Extensions)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-09-12] (NVIDIA Corp.)
Xbox Insider Hub -> C:\Program Files\WindowsApps\Microsoft.FlightDashboard_475.2008.10001.0_x64__8wekyb3d8bbwe [2020-08-28] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-963594185-2070104337-283957109-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => No File
ContextMenuHandlers1: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => D:\Games\DVDEmulator\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => D:\Games\DVDEmulator\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Games\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_89e3dec2a908dbbe\nvshext.dll [2020-08-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Games\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => D:\Games\DVDEmulator\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => c:\windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-09-09 14:16 - 2020-09-09 14:16 - 000138240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\987aa9ef5bff89c46ea49780c3b7be7a\Interop.IWshRuntimeLibrary.ni.dll
2020-09-09 14:16 - 2020-09-09 14:16 - 000134656 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\5bdbab3894c7512b0c11559b3044dffe\Hardcodet.Wpf.TaskbarNotification.ni.dll
2020-09-09 14:16 - 2020-09-09 14:16 - 001701888 _____ (Mark Heath & Contributors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\6edb786f87c26356569388dd80e1988e\NAudio.ni.dll
2020-09-09 14:16 - 2020-09-09 14:16 - 003060736 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\314577cb89b8524b9b6f8139bad2022f\Newtonsoft.Json.ni.dll
2017-02-12 02:28 - 2015-09-28 20:08 - 000255488 _____ (Sysprogs OU) [File not signed] D:\Games\DVDEmulator\x64\WinCDEmuContextMenu.dll
2020-09-09 14:16 - 2020-09-09 14:16 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\e0da3c78ec8159ddbcebfed833d07bd6\log4net.ni.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-963594185-2070104337-283957109-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HCTE
HKU\S-1-5-21-963594185-2070104337-283957109-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
SearchScopes: HKU\S-1-5-21-963594185-2070104337-283957109-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-963594185-2070104337-283957109-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2017-10-27] (HP Inc. -> HP Inc.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-10-27] (HP Inc. -> HP Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-06-20 13:36 - 2018-06-21 01:06 - 000000857 _____ C:\WINDOWS\system32\drivers\etc\hosts

2017-06-19 16:20 - 2020-09-15 16:55 - 000000589 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
2 467
192.168.137.1 DESKTOP-2SGA964.mshome.net # 2025 9 0 14 14 55 3 313
192.168.137.205 Galaxy-J4.mshome.net # 2020 9 2 22 14 50 43 794
94

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-963594185-2070104337-283957109-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Marian\Pictures\Saved Pictures\gettyimages-1054279400-2048x2048.jpg
DNS Servers: 80.242.44.85 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: AdobeUpdateService => 2
MSCONFIG\Services: AGSService => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: dbupdate => 2
MSCONFIG\Services: dbupdatem => 3
MSCONFIG\Services: DbxSvc => 2
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: ESRV_SVC_QUEENCREEK => 3
MSCONFIG\Services: EvtEng => 2
MSCONFIG\Services: GalaxyClientService => 3
MSCONFIG\Services: GalaxyCommunication => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HP Comm Recover => 2
MSCONFIG\Services: HPJumpStartBridge => 2
MSCONFIG\Services: hpqcaslwmiex => 3
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: HPWMISVC => 2
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: ibtsiva => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) SUR QC SAM => 3
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: IRMTService => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: MBAMService => 3
MSCONFIG\Services: MyWiFiDHCPDNS => 3
MSCONFIG\Services: NIHardwareService => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: Origin Web Helper Service => 2
MSCONFIG\Services: RegSrvc => 2
MSCONFIG\Services: Rockstar Service => 3
MSCONFIG\Services: RtkAudioService => 2
MSCONFIG\Services: SetupARService => 2
MSCONFIG\Services: ssh-agent => 3
MSCONFIG\Services: sshd => 3
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: SystemUsageReportSvc_QUEENCREEK => 2
MSCONFIG\Services: ThunderboltService => 3
MSCONFIG\Services: USER_ESRV_SVC_QUEENCREEK => 3
MSCONFIG\Services: ZeroConfigService => 2
HKLM\...\StartupApproved\Run32: => "Dropbox"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{D40678EB-EAF9-4301-ACE4-0B2F1199B3C0}C:\program files\google\chrome\application\chrome.exe] => (Block) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{DF7AF185-5D12-452B-BCB3-AA4E6D846EDB}C:\program files\google\chrome\application\chrome.exe] => (Block) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F8A0E64A-80C5-450F-9D8D-ED4D444F3DD2}] => (Allow) D:\Games\Steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CF2ECA14-9834-49F5-890F-ED9F8DA74823}] => (Allow) D:\Games\Steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C32C0A07-1BEB-4F38-8E29-3CD13FDCC11A}] => (Allow) D:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4ABE241E-2E5E-454E-8ABE-B601193FD5E7}] => (Allow) D:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{F574843C-F830-466D-B80F-9605FE868B74}D:\games\steam\steamapps\common\assettocorsa\acs.exe] => (Block) D:\games\steam\steamapps\common\assettocorsa\acs.exe () [File not signed]
FirewallRules: [UDP Query User{75D09B13-B86E-4A25-B4E2-5B1230058750}D:\games\steam\steamapps\common\assettocorsa\acs.exe] => (Block) D:\games\steam\steamapps\common\assettocorsa\acs.exe () [File not signed]
FirewallRules: [{C1FA99F6-9319-4F70-B97A-0C531ABA60CE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{02DD1F35-0BEE-4583-87C1-D0B0F75CF38C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DE464E38-25B7-4FB5-82C8-D82951FA260D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0EDA1491-678D-4949-A5CA-2CCB6F9317B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BAFFF3B4-DD25-42A5-A928-40E24160A008}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{21C7F1E1-6CCD-477A-B8E8-ED2AE720EB4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

==================== Restore Points =========================

13-09-2020 21:07:04 Removed CrewChiefV4
14-09-2020 21:30:45 Intel® Driver & Support Assistant
19-09-2020 08:34:32 Intel® Driver & Support Assistant
20-09-2020 15:20:13 Inštalátor modulov systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/21/2020 03:19:26 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01b language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (09/21/2020 02:55:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: nvcontainer.exe, verzia: 1.27.2835.6155, časová značka: 0x5eb2f12d
Názov chybujúceho modulu: nvcontainer.exe, verzia: 1.27.2835.6155, časová značka: 0x5eb2f12d
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000000131bb
Identifikácia chybujúceho procesu: 0xf34
Čas spustenia chybujúcej aplikácie: 0x01d68f52120da83b
Cesta chybujúcej aplikácie: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
Cesta chybujúceho modulu: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
Identifikácia hlásenia: b941dde0-e651-4498-8782-ba77d7c3305f
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/21/2020 02:55:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: dwm.exe, verzia: 10.0.19041.508, časová značka: 0xcd97c98b
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.19041.488, časová značka: 0x70e69bad
Kód výnimky: 0xc00000fd
Odstup chyby: 0x000000000003c33d
Identifikácia chybujúceho procesu: 0x21dc
Čas spustenia chybujúcej aplikácie: 0x01d68f94b0db06a4
Cesta chybujúcej aplikácie: C:\WINDOWS\System32\dwm.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: a3ab4c21-446a-4ab4-a5e3-0d56772628b5
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/21/2020 02:55:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: RAVBg64.exe, verzia: 1.0.0.279, časová značka: 0x5988128c
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.19041.488, časová značka: 0x0d8057d8
Kód výnimky: 0xc00000fd
Odstup chyby: 0x000000000000dce2
Identifikácia chybujúceho procesu: 0x284c
Čas spustenia chybujúcej aplikácie: 0x01d68fd4dc3faae6
Cesta chybujúcej aplikácie: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 51e6ceba-a915-4e24-a009-54530219afe8
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/21/2020 02:29:05 PM) (Source: HP Active Health) (EventID: 88) (User: )
Description: -- SECURITY WARNING -- ActiveHealthProperties.ini has been tampered with, resetting it

Error: (09/21/2020 02:29:05 PM) (Source: HP Active Health) (EventID: 88) (User: )
Description: -- SECURITY WARNING -- ActiveHealthState.ini has been tampered with, resetting it

Error: (09/21/2020 02:29:05 PM) (Source: HP Active Health) (EventID: 80) (User: )
Description: -- SECURITY WARNING -- Unable to deserialize super secret file hashes. Will assume evil is afoot - all Validate() calls will return DOESNT_MATCH
at HP.ActiveHealth.Commons.Security.HashStore.LoadHashesFromFile()

Error: (09/20/2020 09:32:32 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-2SGA964)
Description: Windows cannot load the extensible counter DLL "C:\WINDOWS\system32\sysmain.dll" (Win32 error code 126).


System errors:
=============
Error: (09/21/2020 03:12:28 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 15:09:00 on ‎21.‎09.‎2020 was unexpected.

Error: (09/21/2020 02:55:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 6000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.

Error: (09/21/2020 02:55:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Windows Error Reporting Service bol dosiahnutý časový limit (30000 ms).

Error: (09/21/2020 02:55:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Windows Error Reporting Service bol dosiahnutý časový limit (30000 ms).

Error: (09/21/2020 02:55:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Windows Error Reporting Service bol dosiahnutý časový limit (30000 ms).

Error: (09/21/2020 07:10:49 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x800706d9: 9WZDNCRFHVJL-MICROSOFT.OFFICE.ONENOTE.

Error: (09/20/2020 07:10:28 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x800706d9: 9WZDNCRFHVJL-MICROSOFT.OFFICE.ONENOTE.

Error: (09/18/2020 07:56:38 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 19:55:22 on ‎18.‎09.‎2020 was unexpected.


Windows Defender:
===================================
Date: 2020-09-17 17:02:24.8320000Z
Description:
Controlled Folder Access blocked C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe from making changes to memory.
Detection time: 2020-09-17T15:02:24.831Z
Path: \Device\CdRom1
Process Name: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
Security intelligence Version: 1.323.1326.0
Engine Version: 1.1.17400.5
Product Version: 4.18.2008.9

Date: 2020-09-17 17:02:24.8310000Z
Description:
Controlled Folder Access blocked C:\Program Files\NVIDIA Corporation\NvBackend\NvSHIM.exe from making changes to memory.
Detection time: 2020-09-17T15:02:24.831Z
Path: \Device\CdRom1
Process Name: C:\Program Files\NVIDIA Corporation\NvBackend\NvSHIM.exe
Security intelligence Version: 1.323.1326.0
Engine Version: 1.1.17400.5
Product Version: 4.18.2008.9

Date: 2020-09-17 17:01:35.1410000Z
Description:
Controlled Folder Access blocked C:\Program Files\NVIDIA Corporation\NvBackend\NvSHIM.exe from making changes to memory.
Detection time: 2020-09-17T15:01:35.140Z
Path: \Device\CdRom1
Process Name: C:\Program Files\NVIDIA Corporation\NvBackend\NvSHIM.exe
Security intelligence Version: 1.323.1326.0
Engine Version: 1.1.17400.5
Product Version: 4.18.2008.9

Date: 2020-09-15 22:41:40.2030000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {C01D2F31-EF0A-4E69-A2D6-DBD5284F076D}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-09-15 10:14:49.6750000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {DDDCD687-E152-4377-8B80-54E9CADE49F8}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-09-08 19:59:47.3780000Z
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2020-09-08 19:57:58.7970000Z
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

==================== Memory info ===========================

BIOS: AMI F.28 05/29/2019
Motherboard: HP 830C
Processor: Intel(R) Core(TM) i7-7700K CPU @ 4.20GHz
Percentage of memory in use: 25%
Total physical RAM: 32700.25 MB
Available physical RAM: 24305.11 MB
Total Virtual: 37564.25 MB
Available Virtual: 27435.53 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:237.24 GB) (Free:32.74 GB) NTFS
Drive d: (DATA) (Fixed) (Total:920.74 GB) (Free:272.39 GB) NTFS
Drive e: (RECOVERY) (Fixed) (Total:10.77 GB) (Free:0.9 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{ad8c1afd-3b9b-4f66-a19d-73b731c64809}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.49 GB) NTFS
\\?\Volume{7f097486-c44d-0a20-caa4-777120426601}\ () (Fixed) (Total:0.99 GB) (Free:0 GB) NTFS
\\?\Volume{06c13711-a17d-422c-bbed-c3a630002959}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 87367A4E)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: D25F30A5)

Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.

==================== End of Addition.txt =======================

Re: TestDll.bin

Napsal: 21 zář 2020 18:51
od Rudy
Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: TestDll.bin

Napsal: 21 zář 2020 19:02
od Mariangello
# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 09-21-2020
# Duration: 00:00:12
# OS: Windows 10 Home
# Scanned: 31837
# Detected: 35


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.HPAudioSwitch Folder C:\Program Files (x86)\HP\HPAUDIOSWITCH
Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94D2D6D3-7FF0-4B84-BDA6-4A2FCCA9D791}
Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPAudioSwitch
Preinstalled.HPAudioSwitch Task C:\Windows\System32\Tasks\HPAUDIOSWITCH
Preinstalled.HPJumpStartBridge Folder C:\Program Files (x86)\HP\HP JUMPSTART BRIDGE
Preinstalled.HPJumpStartBridge Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{1E7D6A6F-E28B-4057-BD4F-9989C1F5353D}
Preinstalled.HPJumpStartLaunch Folder C:\Program Files (x86)\HP\HP JUMPSTART LAUNCH
Preinstalled.HPJumpStartLaunch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD0FFF20-E049-41C0-A55E-CCE1C3B6C2E0}
Preinstalled.HPJumpStartLaunch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPJumpStartLaunch
Preinstalled.HPJumpStartLaunch Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{4380D813-39E5-46FD-AC23-FC9A1A8B98AA}
Preinstalled.HPJumpStartLaunch Task C:\Windows\System32\Tasks\HPJUMPSTARTLAUNCH
Preinstalled.HPRegistrationService Folder C:\Program Files (x86)\HP\HP REGISTRATION SERVICE
Preinstalled.HPRegistrationService Folder C:\ProgramData\HP\HP REGISTRATION SERVICE
Preinstalled.HPRegistrationService Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D1E8F2D7-7794-4245-B286-87ED86C1893C}
Preinstalled.HPSupportAssistant Folder C:\HP\SUPPORT
Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK
Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS
Preinstalled.HPSupportAssistant Folder C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Preinstalled.HPSupportAssistant Folder C:\Users\Marian\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Preinstalled.HPSupportAssistant Folder C:\Users\Marian\AppData\Roaming\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK
Preinstalled.HPSupportAssistant Folder C:\Users\Marian\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Preinstalled.HPSupportAssistant Folder C:\Users\defaultuser0\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Preinstalled.HPSupportAssistant Folder C:\Windows\System32\config\systemprofile\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSupportAssistant Registry HKLM\Software\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSupportAssistant Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{30514137-FB26-4E1A-A3B4-5B48680F3ECE}
Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{4AAC4B07-77EF-4BCF-88DC-D24E4DE683E8}
Preinstalled.HPSureConnect Folder C:\Program Files (x86)\HP INC\HP SURE CONNECT
Preinstalled.HPSureConnect Folder C:\Program Files\HPCOMMRECOVERY
Preinstalled.HPSureConnect Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6468C4A5-E47E-405F-B675-A70A70983EA6}



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Re: TestDll.bin

Napsal: 21 zář 2020 19:58
od Rudy
Je to OK, ty preinstalled jsou součástí oper. systému. Vyčistíme od zbytečností. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-963594185-2070104337-283957109-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HCTE
HKU\S-1-5-21-963594185-2070104337-283957109-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
SearchScopes: HKU\S-1-5-21-963594185-2070104337-283957109-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-963594185-2070104337-283957109-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
HKU\S-1-5-21-963594185-2070104337-283957109-1001\...\Run: [GalaxyClient] => [X]
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-963594185-2070104337-283957109-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {590CCCA8-D473-4D26-AF5C-5F899BC9493B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-19] (Google LLC -> Google LLC)
Task: {E2AC368A-CE9C-41C3-A037-6B240D59CFE1} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E8D900B8-6ADD-42AB-8A96-8695C8BC1F7D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-19] (Google LLC -> Google LLC)
S3 fiddrv64; no ImagePath
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: TestDll.bin

Napsal: 21 zář 2020 20:03
od Mariangello
Fix result of Farbar Recovery Scan Tool (x64) Version: 20-09-2020
Ran by Marian (21-09-2020 21:01:18) Run:1
Running from C:\Users\Marian\Desktop
Loaded Profiles: Marian
Boot Mode: Normal

Re: TestDll.bin

Napsal: 21 zář 2020 20:55
od Rudy
Log není kompletní. Vypadá asi takto: https://forum.viry.cz/viewtopic.php?p=1535048#p1535048 . Dejte ho znovu.

Re: TestDll.bin

Napsal: 21 zář 2020 20:58
od Mariangello
Skopíroval som všetko čo tam bolo. Mám to čistenie ešte raz zopakovať?
Inak to TestDll.bin bolo teda v poriadku? Nemusím to odstraňovať?

Re: TestDll.bin

Napsal: 21 zář 2020 21:06
od Rudy
Zkuste to. Jinak je log uložen v souboru fixlist.txt na ploše.

Re: TestDll.bin

Napsal: 21 zář 2020 21:13
od Mariangello
Fix result of Farbar Recovery Scan Tool (x64) Version: 20-09-2020
Ran by Marian (21-09-2020 22:10:35) Run:1
Running from C:\Users\Marian\Desktop
Loaded Profiles: Marian
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-963594185-2070104337-283957109-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HCTE
HKU\S-1-5-21-963594185-2070104337-283957109-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
SearchScopes: HKU\S-1-5-21-963594185-2070104337-283957109-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-963594185-2070104337-283957109-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
HKU\S-1-5-21-963594185-2070104337-283957109-1001\...\Run: [GalaxyClient] => [X]
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-963594185-2070104337-283957109-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {590CCCA8-D473-4D26-AF5C-5F899BC9493B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-19] (Google LLC -> Google LLC)
Task: {E2AC368A-CE9C-41C3-A037-6B240D59CFE1} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E8D900B8-6ADD-42AB-8A96-8695C8BC1F7D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-19] (Google LLC -> Google LLC)
S3 fiddrv64; no ImagePath
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\PowerISO => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\PowerISO => removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL" => removed successfully
HKU\S-1-5-21-963594185-2070104337-283957109-1001\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKU\S-1-5-21-963594185-2070104337-283957109-1001\Software\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
"HKU\S-1-5-21-963594185-2070104337-283957109-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-963594185-2070104337-283957109-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
"HKU\S-1-5-21-963594185-2070104337-283957109-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => removed successfully
"C:\WINDOWS\system32\GroupPolicy\Machine" => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
HKU\S-1-5-21-963594185-2070104337-283957109-1001\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{590CCCA8-D473-4D26-AF5C-5F899BC9493B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{590CCCA8-D473-4D26-AF5C-5F899BC9493B}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E2AC368A-CE9C-41C3-A037-6B240D59CFE1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E2AC368A-CE9C-41C3-A037-6B240D59CFE1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E8D900B8-6ADD-42AB-8A96-8695C8BC1F7D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E8D900B8-6ADD-42AB-8A96-8695C8BC1F7D}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\System\CurrentControlSet\Services\fiddrv64 => removed successfully
fiddrv64 => service removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10522840 B
Java, Flash, Steam htmlcache => 9147024 B
Windows/system/drivers => 282259 B
Edge => 9289728 B

Re: TestDll.bin

Napsal: 22 zář 2020 09:20
od Rudy
OK. Smazáno, log již vypadá čistý.

Re: TestDll.bin

Napsal: 22 zář 2020 09:28
od Mariangello
Takže bol ten súbor TestDll.bin iba falošný poplach? Nemusím ho teda odstrániť?

Re: TestDll.bin

Napsal: 22 zář 2020 13:13
od Rudy
Nikde se nepíše (díval jsem se), že by tento soubor byl malware (i když na první pohled tak vypadá). Doporučil bych ho zkontrolovat online na www.virustotal.com a podle výsledku se rozhodnout.
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz