Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventívka

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
ferenc77
Návštěvník
Návštěvník
Příspěvky: 214
Registrován: 28 lis 2012 13:21

Preventívka

#1 Příspěvek od ferenc77 »

Logfile of random's system information tool 1.10 (written by random/random)
Run by casua at 2021-06-13 21:17:42
Microsoft Windows 10 Home
System drive C: has 90 GB (76%) free of 119 GB
Total RAM: 8025 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:17:52, on 13. 6. 2021
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
C:\Program Files\trend micro\casua.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\91.0.864.48\BHO\ie_to_edge_bho.dll
O4 - HKLM\..\Run: [Intel Driver & Support Assistant] C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87079a2c2326a956\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87079a2c2326a956\IntelCpHDCPSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_d76103 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Intel(R) Driver & Support Assistant (DSAService) - Intel - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service: Intel(R) Driver & Support Assistant Updater (DSAUpdateService) - Intel - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @oem65.inf,%ServiceDisplayName%;Intel(R) Dynamic Platform and Thermal Framework service (esifsvc) - Unknown owner - C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe (file missing)
O23 - Service: Energy Server Service queencreek (ESRV_SVC_QUEENCREEK) - Unknown owner - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @oem107.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) Graphics Command Center Service (igccservice) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_08f11cc9a4c9585a\OneApp.IGCC.WinService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\cui_dch.inf_amd64_3bd4cd1d0a01f3b6\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\iCLS\SocketHeciServer.exe
O23 - Service: Intel(R) SUR QC Software Asset Manager (Intel(R) SUR QC SAM) - Intel Corporation - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK (SystemUsageReportSvc_QUEENCREEK) - Unknown owner - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: User Energy Server Service queencreek (USER_ESRV_SVC_QUEENCREEK) - Unknown owner - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 9199 bytes

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-21789652-d9d7-4387-b783-514a2adf182f -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-28831f45-2753-4a7c-822f-9102ab85153a -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-f8249c74-5e8e-47ee-af12-8517247e604f -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-c9ea0cb0-a0cc-4574-9e0c-b3ca2a236a4b -LifetimeId:a8906d11-9499-46e7-bf7a-49659e44e22b -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87079a2c2326a956\IntelCpHDCPSvc.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\DriverStore\FileRepository\cui_dch.inf_amd64_3bd4cd1d0a01f3b6\igfxCUIService.exe
C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87079a2c2326a956\IntelCpHeciSvc.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache

C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
"C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_08f11cc9a4c9585a\OneApp.IGCC.WinService.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
dashost.exe {5c589449-f3f8-4d43-af4b45045428e5a4}
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe"

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\Windows\System32\mousocoreworker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalService -s W32Time

C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc


C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager

C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\ibtsiva
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc


C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe" "--start" "--start_options_handle" "1144"
"C:\WINDOWS\system32\Intel\DPTF\dptf_helper.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
"C:\WINDOWS\System32\DriverStore\FileRepository\cui_dch.inf_amd64_3bd4cd1d0a01f3b6\igfxEM.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21042.139.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe"
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe" -ServerName:InputApp.AppX9jnwykgrccxc8by3hsrsh07r423xzvav.mca
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe" "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\system32\wuauclt.exe" /UpdateDeploymentProvider UpdateDeploymentProvider.dll /ClassId 13e0c115-f5d8-4bf1-b054-e9e5c96c8fed /RunHandlerComServer
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1022_none_7e372e9e7c6ecccb\TiWorker.exe -Embedding
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 880 884 892 8192 888 868
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="7332.0.288565317\1260855799" -parentBuildID 20210527174632 -prefsHandle 1664 -prefMapHandle 1660 -prefsLen 1 -prefMapSize 239739 -appdir "C:\Program Files\Mozilla Firefox\browser" - 7332 "\\.\pipe\gecko-crash-server-pipe.7332" 1712 gpu
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="7332.6.1521071096\1253588610" -childID 1 -isForBrowser -prefsHandle 2608 -prefMapHandle 2604 -prefsLen 218 -prefMapSize 239739 -parentBuildID 20210527174632 -appdir "C:\Program Files\Mozilla Firefox\browser" - 7332 "\\.\pipe\gecko-crash-server-pipe.7332" 2620 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="7332.13.368030510\1397613789" -childID 2 -isForBrowser -prefsHandle 3764 -prefMapHandle 3760 -prefsLen 6065 -prefMapSize 239739 -parentBuildID 20210527174632 -appdir "C:\Program Files\Mozilla Firefox\browser" - 7332 "\\.\pipe\gecko-crash-server-pipe.7332" 3780 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="7332.22.1859195684\1775360806" -childID 5 -isForBrowser -prefsHandle 4632 -prefMapHandle 4628 -prefsLen 6893 -prefMapSize 239739 -parentBuildID 20210527174632 -appdir "C:\Program Files\Mozilla Firefox\browser" - 7332 "\\.\pipe\gecko-crash-server-pipe.7332" 4608 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="7332.41.974616741\365141073" -childID 6 -isForBrowser -prefsHandle 5068 -prefMapHandle 5064 -prefsLen 6959 -prefMapSize 239739 -parentBuildID 20210527174632 -appdir "C:\Program Files\Mozilla Firefox\browser" - 7332 "\\.\pipe\gecko-crash-server-pipe.7332" 4532 tab
C:\WINDOWS\system32\AUDIODG.EXE 0x328
"C:\Users\casua\Downloads\RSITx64.exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\casua\AppData\Roaming\Mozilla\Firefox\Profiles\b7pyr8jv.default-release-1623611394875

prefs.js - "browser.startup.homepage" - "www.google.sk"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\91.0.864.48\BHO\ie_to_edge_bho_64.dll [2021-06-11 523648]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\91.0.864.48\BHO\ie_to_edge_bho.dll [2021-06-11 406912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Intel Driver & Support Assistant"=C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [2021-05-21 288672]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"FilterAdministratorToken"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux1"=wdmaud.drv
"aux2"=wdmaud.drv
"midi1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer1"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"wave2"=wdmaud.drv
"aux3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2021-06-13 21:17:42 ----DC---- C:\rsit
2021-06-13 21:17:42 ----D---- C:\Program Files\trend micro
2021-06-13 21:09:46 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-13 21:09:36 ----D---- C:\Program Files\Mozilla Firefox
2021-06-07 20:17:00 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2021-06-07 20:17:00 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2021-06-07 20:16:59 ----A---- C:\WINDOWS\system32\wbadmin.exe
2021-06-07 20:16:59 ----A---- C:\WINDOWS\system32\msrahc.dll
2021-06-07 20:16:57 ----A---- C:\WINDOWS\system32\WalletService.dll
2021-06-07 20:16:56 ----A---- C:\WINDOWS\SYSWOW64\quickassist.exe
2021-06-07 20:16:56 ----A---- C:\WINDOWS\system32\quickassist.exe
2021-06-07 20:16:55 ----A---- C:\WINDOWS\system32\libcrypto.dll
2021-06-07 20:16:42 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2021-06-07 20:16:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2021-06-07 20:16:42 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2021-06-07 20:16:42 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2021-06-07 20:16:42 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2021-06-07 20:16:42 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2021-06-07 20:16:42 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2021-06-07 20:16:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2021-06-07 20:16:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2021-06-07 20:16:41 ----A---- C:\WINDOWS\SYSWOW64\MSHEIF.dll
2021-06-07 20:16:41 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2021-06-07 20:16:41 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2021-06-07 20:16:40 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2021-06-07 20:16:40 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2021-06-07 20:16:40 ----A---- C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2021-06-07 20:16:40 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2021-06-07 20:16:40 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2021-06-07 20:16:38 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2021-06-07 20:16:36 ----A---- C:\WINDOWS\system32\wpdshext.dll
2021-06-07 20:16:36 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2021-06-07 20:16:36 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-06-07 20:16:36 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2021-06-07 20:16:36 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2021-06-07 20:16:36 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2021-06-07 20:16:36 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2021-06-07 20:16:36 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2021-06-07 20:16:36 ----A---- C:\WINDOWS\system32\DMRServer.dll
2021-06-07 20:16:36 ----A---- C:\WINDOWS\system32\dlnashext.dll
2021-06-07 20:16:35 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2021-06-07 20:16:35 ----A---- C:\WINDOWS\system32\MSHEIF.dll
2021-06-07 20:16:35 ----A---- C:\WINDOWS\system32\mfsvr.dll
2021-06-07 20:16:35 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2021-06-07 20:16:34 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2021-06-07 20:16:34 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2021-06-07 20:16:34 ----A---- C:\WINDOWS\system32\mfps.dll
2021-06-07 20:16:34 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\uudf.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\remotepg.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\rdvvmtransport.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\perfts.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\AcXtrnal.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\AcWinRT.dll
2021-06-07 20:16:33 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\CheckNetIsolation.exe
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\fwcfg.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\FrameServerClient.dll
2021-06-07 20:16:32 ----A---- C:\WINDOWS\SYSWOW64\authfwcfg.dll
2021-06-07 20:16:31 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2021-06-07 20:16:31 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2021-06-07 20:16:31 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2021-06-07 20:16:31 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2021-06-07 20:16:31 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2021-06-07 20:16:30 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2021-06-07 20:16:30 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2021-06-07 20:16:30 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2021-06-07 20:16:29 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2021-06-07 20:16:29 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2021-06-07 20:16:29 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\nshhttp.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\cnvfat.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2021-06-07 20:16:27 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2021-06-07 20:16:26 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2021-06-07 20:16:22 ----A---- C:\WINDOWS\system32\wslapi.dll
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\Spectrum.exe
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\SessEnv.dll
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\rdvvmtransport.dll
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\AcXtrnal.dll
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\AcWinRT.dll
2021-06-07 20:16:21 ----A---- C:\WINDOWS\system32\AcLayers.dll
2021-06-07 20:16:20 ----A---- C:\WINDOWS\system32\wsp_health.dll
2021-06-07 20:16:20 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-06-07 20:16:20 ----A---- C:\WINDOWS\system32\termsrv.dll
2021-06-07 20:16:20 ----A---- C:\WINDOWS\system32\remotepg.dll
2021-06-07 20:16:20 ----A---- C:\WINDOWS\system32\perfts.dll
2021-06-07 20:16:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\reseteng.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\rdpudd.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\offreg.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\nshwfp.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\nltest.exe
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\CheckNetIsolation.exe
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\fwcfg.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\FsIso.exe
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\FrameServerClient.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\FrameServer.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\energytask.dll
2021-06-07 20:16:19 ----A---- C:\WINDOWS\system32\authfwcfg.dll
2021-06-07 20:16:18 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2021-06-07 20:16:18 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-06-07 20:16:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2021-06-07 20:16:17 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-06-07 20:16:17 ----A---- C:\WINDOWS\system32\ieproxy.dll
2021-06-07 20:16:17 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2021-06-07 20:16:17 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2021-06-07 20:16:17 ----A---- C:\WINDOWS\system32\Chakra.dll
2021-06-07 20:16:15 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-06-07 20:16:14 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-06-07 20:16:14 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\smphost.dll
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\Robocopy.exe
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\packager.dll
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\nshhttp.dll
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\jscript.dll
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\energy.dll
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\drivers\EhStorClass.sys
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\cnvfat.dll
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\autofmt.exe
2021-06-07 20:16:12 ----A---- C:\WINDOWS\system32\autoconv.exe
2021-06-07 20:16:11 ----A---- C:\WINDOWS\system32\Windows.Internal.PlatformExtension.MiracastBannerExperience.dll
2021-06-07 20:16:11 ----A---- C:\WINDOWS\system32\storagewmi.dll
2021-06-07 20:16:11 ----A---- C:\WINDOWS\system32\spaceman.exe
2021-06-07 20:16:11 ----A---- C:\WINDOWS\system32\mispace.dll
2021-06-07 20:16:11 ----A---- C:\WINDOWS\system32\computestorage.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\vertdll.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\tcbloader.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\skci.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\securekernel.exe
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\resutils.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\hvloader.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\hvix64.exe
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\hvax64.exe
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\clusapi.dll
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\CIDiag.exe
2021-06-07 20:16:09 ----A---- C:\WINDOWS\system32\BioIso.exe
2021-06-07 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2021-06-07 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2021-06-07 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\shlwapi.dll
2021-06-07 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2021-06-07 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\rtm.dll
2021-06-07 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2021-06-07 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2021-06-07 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2021-06-07 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\iprtprio.dll
2021-06-07 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2021-06-07 20:16:07 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2021-06-07 20:16:07 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2021-06-07 20:16:04 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2021-06-07 20:16:04 ----A---- C:\WINDOWS\SYSWOW64\ntprint.exe
2021-06-07 20:16:04 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2021-06-07 20:16:04 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2021-06-07 20:16:04 ----A---- C:\WINDOWS\SYSWOW64\fphc.dll
2021-06-07 20:16:04 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2021-06-07 20:16:04 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2021-06-07 20:16:04 ----A---- C:\WINDOWS\SYSWOW64\dmocx.dll
2021-06-07 20:16:04 ----A---- C:\WINDOWS\SYSWOW64\devmgr.dll
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\wow32.dll
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\user.exe
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\ntvdm64.dll
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\instnm.exe
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2021-06-07 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\acwow64.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\winipsec.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\polstore.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\nshipsec.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\httpapi.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\dmpushproxy.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\DMAppsRes.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\dabapi.dll
2021-06-07 20:16:02 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\setupcl.dll
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\AtBroker.exe
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2021-06-07 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\adsldpc.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\ulib.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\ufat.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\uexfat.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\mskeyprotect.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\ifsutil.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\D3D12Core.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2021-06-07 20:16:00 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2021-06-07 20:15:59 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2021-06-07 20:15:59 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2021-06-07 20:15:59 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2021-06-07 20:15:59 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2021-06-07 20:15:59 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2021-06-07 20:15:59 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2021-06-07 20:15:59 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2021-06-07 20:15:59 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2021-06-07 20:15:59 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2021-06-07 20:15:54 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2021-06-07 20:15:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2021-06-07 20:15:54 ----A---- C:\WINDOWS\SYSWOW64\WindowManagementAPI.dll
2021-06-07 20:15:54 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2021-06-07 20:15:54 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2021-06-07 20:15:54 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2021-06-07 20:15:54 ----A---- C:\WINDOWS\SYSWOW64\icu.dll
2021-06-07 20:15:54 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2021-06-07 20:15:53 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\PickerHost.exe
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\dsregtask.dll
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2021-06-07 20:15:52 ----A---- C:\WINDOWS\SYSWOW64\aadauthhelper.dll
2021-06-07 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2021-06-07 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2021-06-07 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2021-06-07 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Controls.dll
2021-06-07 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2021-06-07 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2021-06-07 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2021-06-07 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\SystemEventsBrokerClient.dll
2021-06-07 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2021-06-07 20:15:51 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2021-06-07 20:15:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2021-06-07 20:15:49 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2021-06-07 20:15:49 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2021-06-07 20:15:49 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2021-06-07 20:15:49 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2021-06-07 20:15:49 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2021-06-07 20:15:49 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2021-06-07 20:15:49 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2021-06-07 20:15:49 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2021-06-07 20:15:49 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\TpmTool.exe
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\cmifw.dll
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\bidispl.dll
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2021-06-07 20:15:48 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\SYSWOW64\SpatializerApo.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\SYSWOW64\HrtfApo.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntimewindows.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntime.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\SYSWOW64\AarSvc.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\system32\pku2u.dll
2021-06-07 20:15:47 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\vpnike.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\vbscript.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\shlwapi.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\shell32.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\rtm.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\rasmans.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\rasapi32.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\mprdim.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\iprtprio.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2021-06-07 20:15:45 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\umpoext.dll
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\sppnp.dll
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\ntprint.exe
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\ntprint.dll
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\newdev.dll
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\mprddm.dll
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\drvstore.dll
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\drvsetup.dll
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\drvinst.exe
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\drivers\ipfltdrv.sys
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\dmocx.dll
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\devmgr.dll
2021-06-07 20:15:44 ----A---- C:\WINDOWS\system32\APMon.dll
2021-06-07 20:15:43 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2021-06-07 20:15:43 ----A---- C:\WINDOWS\system32\SettingsHandlers_IME.dll
2021-06-07 20:15:40 ----A---- C:\WINDOWS\system32\nlasvc.dll
2021-06-07 20:15:40 ----A---- C:\WINDOWS\system32\nlaapi.dll
2021-06-07 20:15:40 ----A---- C:\WINDOWS\system32\ncsi.dll
2021-06-07 20:15:40 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2021-06-07 20:15:39 ----A---- C:\WINDOWS\system32\pnidui.dll
2021-06-07 20:15:39 ----A---- C:\WINDOWS\system32\fphc.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\urlmon.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\ubpm.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\taskschd.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\schedsvc.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\MTFServer.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\msIso.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\LockController.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\LocationFrameworkPS.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\iertutil.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\edgeIso.dll
2021-06-07 20:15:38 ----A---- C:\WINDOWS\system32\drivers\scsiport.sys
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\winipsec.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\tdh.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\polstore.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\policymanager.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\omadmclient.exe
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\nshipsec.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\efsext.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\edptask.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\dmpushproxy.dll
2021-06-07 20:15:37 ----A---- C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll
2021-06-07 20:15:36 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2021-06-07 20:15:36 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\wkssvc.dll
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\msctf.dll
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\LogonController.dll
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\DMAppsRes.dll
2021-06-07 20:15:36 ----A---- C:\WINDOWS\system32\configmanager2.dll
2021-06-07 20:15:35 ----A---- C:\WINDOWS\system32\smss.exe
2021-06-07 20:15:35 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2021-06-07 20:15:35 ----A---- C:\WINDOWS\system32\KernelBase.dll
2021-06-07 20:15:35 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2021-06-07 20:15:35 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2021-06-07 20:15:35 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2021-06-07 20:15:35 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2021-06-07 20:15:35 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2021-06-07 20:15:35 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2021-06-07 20:15:33 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2021-06-07 20:15:30 ----A---- C:\WINDOWS\system32\ntdll.dll
2021-06-07 20:15:30 ----A---- C:\WINDOWS\system32\hal.dll
2021-06-07 20:15:30 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\wermgr.exe
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\weretw.dll
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\wer.dll
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\utcutil.dll
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\runexehelper.exe
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\kdstub.dll
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\kdnet.dll
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\diagtrack.dll
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\diagnosticdataquery.dll
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\dabapi.dll
2021-06-07 20:15:29 ----A---- C:\WINDOWS\system32\dab.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\winhttp.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\webio.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\profsvc.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\oleaut32.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\msv1_0.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\lsasrv.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\httpapi.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\drivers\http.sys
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\dnsapi.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\ci.dll
2021-06-07 20:15:28 ----A---- C:\WINDOWS\system32\bcrypt.dll
2021-06-07 20:15:27 ----A---- C:\WINDOWS\system32\wow64.dll
2021-06-07 20:15:27 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2021-06-07 20:15:27 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2021-06-07 20:15:27 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2021-06-07 20:15:27 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2021-06-07 20:15:27 ----A---- C:\WINDOWS\system32\dcomp.dll
2021-06-07 20:15:27 ----A---- C:\WINDOWS\system32\conhost.exe
2021-06-07 20:15:26 ----A---- C:\WINDOWS\system32\winresume.exe
2021-06-07 20:15:26 ----A---- C:\WINDOWS\system32\wimserv.exe
2021-06-07 20:15:26 ----A---- C:\WINDOWS\system32\wimgapi.dll
2021-06-07 20:15:26 ----A---- C:\WINDOWS\system32\setupcl.dll
2021-06-07 20:15:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2021-06-07 20:15:26 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2021-06-07 20:15:26 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2021-06-07 20:15:26 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2021-06-07 20:15:26 ----A---- C:\WINDOWS\system32\autochk.exe
2021-06-07 20:15:25 ----A---- C:\WINDOWS\system32\winload.exe
2021-06-07 20:15:25 ----A---- C:\WINDOWS\system32\uudf.dll
2021-06-07 20:15:25 ----A---- C:\WINDOWS\system32\uReFS.dll
2021-06-07 20:15:25 ----A---- C:\WINDOWS\system32\refsutil.exe
2021-06-07 20:15:25 ----A---- C:\WINDOWS\system32\fsutilext.dll
2021-06-07 20:15:25 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2021-06-07 20:15:25 ----A---- C:\WINDOWS\system32\cmdext.dll
2021-06-07 20:15:25 ----A---- C:\WINDOWS\system32\cldapi.dll
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\invagent.dll
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\appraiser.dll
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\aeinv.dll
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\adsldpc.dll
2021-06-07 20:15:24 ----A---- C:\WINDOWS\system32\acmigration.dll
2021-06-07 20:15:23 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2021-06-07 20:15:23 ----A---- C:\WINDOWS\system32\SRH.dll
2021-06-07 20:15:23 ----A---- C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2021-06-07 20:15:23 ----A---- C:\WINDOWS\system32\Magnify.exe
2021-06-07 20:15:23 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2021-06-07 20:15:23 ----A---- C:\WINDOWS\system32\ConstraintIndex.Search.dll
2021-06-07 20:15:23 ----A---- C:\WINDOWS\system32\AtBroker.exe
2021-06-07 20:15:18 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2021-06-07 20:15:18 ----A---- C:\WINDOWS\system32\NotificationController.dll
2021-06-07 20:15:18 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2021-06-07 20:15:18 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2021-06-07 20:15:18 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2021-06-07 20:15:18 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2021-06-07 20:15:17 ----A---- C:\WINDOWS\system32\ReAgent.dll
2021-06-07 20:15:17 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2021-06-07 20:15:17 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2021-06-07 20:15:17 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2021-06-07 20:15:17 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2021-06-07 20:15:16 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\MusNotification.exe
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2021-06-07 20:15:15 ----A---- C:\WINDOWS\system32\AppResolver.dll
2021-06-07 20:15:14 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2021-06-07 20:15:14 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2021-06-07 20:15:14 ----A---- C:\WINDOWS\system32\usosvc.dll
2021-06-07 20:15:14 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2021-06-07 20:15:14 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2021-06-07 20:15:14 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\untfs.dll
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\ulib.dll
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\ufat.dll
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\uexfat.dll
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\SHCore.dll
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2021-06-07 20:15:13 ----A---- C:\WINDOWS\system32\ifsutil.dll
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\win32u.dll
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\win32kfull.sys
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\win32k.sys
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\wcimage.dll
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\wc_storage.dll
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\drivers\cimfs.sys
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\daxexec.dll
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\container.dll
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\cimfs.dll
2021-06-07 20:15:12 ----A---- C:\WINDOWS\system32\bindfltapi.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\wfapigp.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\propsys.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\icfupgd.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\fwmdmcsp.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\fwbase.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\BFE.DLL
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2021-06-07 20:15:11 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2021-06-07 20:15:10 ----A---- C:\WINDOWS\system32\windows.storage.dll
2021-06-07 20:15:10 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2021-06-07 20:15:10 ----A---- C:\WINDOWS\system32\icu.dll
2021-06-07 20:15:09 ----A---- C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-07 20:15:09 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2021-06-07 20:15:09 ----A---- C:\WINDOWS\system32\ISM.dll
2021-06-07 20:15:09 ----A---- C:\WINDOWS\system32\esent.dll
2021-06-07 20:15:05 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2021-06-07 20:15:05 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2021-06-07 20:15:05 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2021-06-07 20:15:05 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2021-06-07 20:15:05 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2021-06-07 20:15:05 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2021-06-07 20:15:05 ----A---- C:\WINDOWS\system32\InputService.dll
2021-06-07 20:15:05 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2021-06-07 20:15:05 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\tquery.dll
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\mssvp.dll
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\mssrch.dll
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\mssprxy.dll
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\mssph.dll
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\mssitlb.dll
2021-06-07 20:15:04 ----A---- C:\WINDOWS\system32\msscntrs.dll
2021-06-07 20:15:03 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2021-06-07 20:15:03 ----A---- C:\WINDOWS\system32\win32kbase.sys
2021-06-07 20:15:03 ----A---- C:\WINDOWS\system32\msxml6.dll
2021-06-07 20:15:03 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2021-06-07 20:15:03 ----A---- C:\WINDOWS\system32\dxgi.dll
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\oemlicense.dll
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\mskeyprotect.dll
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\D3D12Core.dll
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\D3D12.dll
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\Clipc.dll
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\certcli.dll
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\cdd.dll
2021-06-07 20:15:02 ----A---- C:\WINDOWS\system32\CapabilityAccessHandlers.dll
2021-06-07 20:15:01 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2021-06-07 20:15:01 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2021-06-07 20:15:01 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2021-06-07 20:15:01 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2021-06-07 20:15:01 ----A---- C:\WINDOWS\system32\GameInput.dll
2021-06-07 20:15:01 ----A---- C:\WINDOWS\system32\cloudAP.dll
2021-06-07 20:15:01 ----A---- C:\WINDOWS\system32\appinfo.dll
2021-06-07 20:15:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2021-06-07 20:15:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2021-06-07 20:15:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2021-06-07 20:15:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Controls.dll
2021-06-07 20:15:00 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2021-06-07 20:15:00 ----A---- C:\WINDOWS\system32\PickerHost.exe
2021-06-07 20:15:00 ----A---- C:\WINDOWS\system32\aadtb.dll
2021-06-07 20:15:00 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2021-06-07 20:15:00 ----A---- C:\WINDOWS\system32\aadauthhelper.dll
2021-06-07 20:14:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2021-06-07 20:14:58 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2021-06-07 20:14:58 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2021-06-07 20:14:58 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2021-06-07 20:14:57 ----A---- C:\WINDOWS\system32\vdsbas.dll
2021-06-07 20:14:57 ----A---- C:\WINDOWS\system32\twinui.dll
2021-06-07 20:14:57 ----A---- C:\WINDOWS\system32\ShareHost.dll
2021-06-07 20:14:57 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2021-06-07 20:14:57 ----A---- C:\WINDOWS\system32\kernel32.dll
2021-06-07 20:14:57 ----A---- C:\WINDOWS\system32\diskpart.exe
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\wlansec.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\Windows.UI.Storage.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\Windows.Internal.PlatformExtension.DevicePickerExperience.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\wfdprov.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\usbmon.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\StartTileData.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\localui.dll
2021-06-07 20:14:56 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\wlansvc.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\wlanapi.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\wifidatacapabilityhandler.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\stobject.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\dsregtask.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2021-06-07 20:14:55 ----A---- C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2021-06-07 20:14:55 ----A---- C:\WINDOWS\explorer.exe
2021-06-07 20:14:54 ----A---- C:\WINDOWS\system32\wpx.dll
2021-06-07 20:14:54 ----A---- C:\WINDOWS\system32\TpmTool.exe
2021-06-07 20:14:54 ----A---- C:\WINDOWS\system32\spoolsv.exe
2021-06-07 20:14:54 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2021-06-07 20:14:54 ----A---- C:\WINDOWS\system32\localspl.dll
2021-06-07 20:14:54 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2021-06-07 20:14:54 ----A---- C:\WINDOWS\system32\dsreg.dll
2021-06-07 20:14:54 ----A---- C:\WINDOWS\system32\cmifw.dll
2021-06-07 20:14:54 ----A---- C:\WINDOWS\system32\bidispl.dll
2021-06-07 20:14:54 ----A---- C:\WINDOWS\splwow64.exe
2021-06-07 20:14:50 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2021-06-07 20:14:50 ----A---- C:\WINDOWS\system32\WpcMon.exe
2021-06-07 20:14:50 ----A---- C:\WINDOWS\system32\WpcApi.dll
2021-06-07 20:14:50 ----A---- C:\WINDOWS\system32\Wpc.dll
2021-06-07 20:14:50 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2021-06-07 20:14:50 ----A---- C:\WINDOWS\system32\ApproveChildRequest.exe
2021-06-07 20:14:49 ----A---- C:\WINDOWS\system32\WpcTok.exe
2021-06-07 20:14:49 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2021-06-07 20:14:49 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2021-06-07 20:14:49 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2021-06-07 20:14:49 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2021-06-07 20:14:49 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2021-06-07 20:14:48 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2021-06-07 20:14:48 ----A---- C:\WINDOWS\system32\CoreMas.dll
2021-06-07 20:14:48 ----A---- C:\WINDOWS\system32\bcdedit.exe
2021-06-07 20:14:48 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2021-06-07 20:14:48 ----A---- C:\WINDOWS\system32\audiosrv.dll
2021-06-07 20:14:48 ----A---- C:\WINDOWS\system32\AudioSes.dll
2021-06-07 20:14:48 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2021-06-07 20:14:48 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2021-06-07 20:14:48 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2021-06-07 20:14:48 ----A---- C:\WINDOWS\system32\audiodg.exe
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\umpo.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\HrtfApo.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\drivers\KNetPwrDepBroker.sys
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\drivers\exfat.sys
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\autopilotdiag.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\autopilot.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\AudioEng.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2021-06-07 20:14:47 ----A---- C:\WINDOWS\system32\AarSvc.dll
2021-06-07 20:14:46 ----A---- C:\WINDOWS\system32\wwansvc.dll
2021-06-07 20:14:44 ----A---- C:\WINDOWS\system32\drivers\vmstorfl.sys
2021-06-07 20:14:44 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\uaspstor.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\sbp2port.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\cdrom.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2021-06-07 20:14:43 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2021-06-07 19:57:52 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2021-06-07 19:57:51 ----A---- C:\WINDOWS\system32\poqexec.exe
2021-06-01 23:31:00 ----A---- C:\WINDOWS\system32\drivers\Netwtw04.sys
2021-06-01 23:30:56 ----A---- C:\WINDOWS\system32\IntelIHVRouter04.dll
2021-06-01 22:32:16 ----A---- C:\WINDOWS\system32\drivers\Netwfw04.dat
2021-05-30 01:26:20 ----A---- C:\WINDOWS\system32\drivers\semav6msr64.sys

======List of files/folders modified in the last 1 month======

2021-06-13 21:17:49 ----D---- C:\WINDOWS\Prefetch
2021-06-13 21:17:42 ----RD---- C:\Program Files
2021-06-13 21:15:25 ----D---- C:\ProgramData\Mozilla
2021-06-13 21:14:51 ----D---- C:\WINDOWS\Temp
2021-06-13 21:09:48 ----D---- C:\WINDOWS\system32\Tasks
2021-06-13 21:09:46 ----RD---- C:\Program Files (x86)
2021-06-13 21:07:16 ----D---- C:\WINDOWS\CbsTemp
2021-06-13 21:06:11 ----D---- C:\WINDOWS\system32\sru
2021-06-13 21:03:36 ----D---- C:\WINDOWS\system32\config
2021-06-13 21:00:52 ----D---- C:\WINDOWS\AppReadiness
2021-06-13 21:00:28 ----HD---- C:\Program Files\WindowsApps
2021-06-13 21:00:10 ----D---- C:\WINDOWS\System32
2021-06-13 21:00:09 ----D---- C:\WINDOWS\system32\drivers
2021-06-13 21:00:08 ----D---- C:\WINDOWS\system32\DriverStore
2021-06-13 21:00:07 ----D---- C:\WINDOWS\INF
2021-06-07 21:36:14 ----D---- C:\Users\casua\AppData\Roaming\vlc
2021-06-07 21:35:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2021-06-07 21:13:31 ----D---- C:\WINDOWS\WinSxS
2021-06-07 21:13:05 ----D---- C:\WINDOWS\system32\catroot2
2021-06-07 21:12:30 ----D---- C:\Windows
2021-06-07 20:55:36 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-07 20:50:55 ----SHD---- C:\WINDOWS\Installer
2021-06-07 20:50:10 ----D---- C:\Program Files (x86)\Intel
2021-06-07 20:47:23 ----D---- C:\ProgramData\Package Cache
2021-06-07 20:45:17 ----RD---- C:\WINDOWS\Microsoft.NET
2021-06-07 20:31:51 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2021-06-07 20:31:46 ----D---- C:\WINDOWS\system32\drivers\wd
2021-06-07 20:25:30 ----DC---- C:\Intel
2021-06-07 20:25:28 ----D---- C:\WINDOWS\ServiceState
2021-06-07 20:25:25 ----ASH---- C:\DumpStack.log.tmp
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\wbem
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\th-TH
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-RS
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\sl-SI
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\setup
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\oobe
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\migration
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\lv-LV
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\hr-HR
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\fr-CA
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\et-EE
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\es-MX
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\en-US
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\Dism
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\bg-BG
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2021-06-07 20:23:53 ----D---- C:\WINDOWS\SysWOW64
2021-06-07 20:23:52 ----D---- C:\WINDOWS\SystemResources
2021-06-07 20:23:50 ----D---- C:\WINDOWS\system32\zh-TW
2021-06-07 20:23:50 ----D---- C:\WINDOWS\system32\zh-CN
2021-06-07 20:23:50 ----D---- C:\WINDOWS\system32\WinMetadata
2021-06-07 20:23:50 ----D---- C:\WINDOWS\system32\wbem
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\uk-UA
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\tr-TR
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\th-TH
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\sl-SI
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\sk-SK
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\setup
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\ru-RU
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\ro-RO
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\pt-PT
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\pt-BR
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\pl-PL
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\OpenSSH
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\oobe
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\nl-NL
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\nb-NO
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\migration
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\lv-LV
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\lt-LT
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\ko-KR
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\ja-jp
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\it-IT
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\hu-HU
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\hr-HR
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\he-IL
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\fr-FR
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\fr-CA
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\fi-FI
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\et-EE
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\es-MX
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\es-ES
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\en-US
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\en-GB
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\el-GR
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\drivers\sk-SK
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\drivers\en-US
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\Dism
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\de-DE
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\da-DK
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\cs-CZ
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\Boot
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\bg-BG
2021-06-07 20:23:49 ----D---- C:\WINDOWS\system32\ar-SA
2021-06-07 20:23:46 ----RD---- C:\WINDOWS\PrintDialog
2021-06-07 20:23:46 ----D---- C:\WINDOWS\sk-SK
2021-06-07 20:23:46 ----D---- C:\WINDOWS\Provisioning
2021-06-07 20:23:46 ----D---- C:\WINDOWS\PolicyDefinitions
2021-06-07 20:23:46 ----D---- C:\WINDOWS\en-US
2021-06-07 20:23:46 ----D---- C:\WINDOWS\DiagTrack
2021-06-07 20:23:46 ----D---- C:\WINDOWS\bcastdvr
2021-06-07 20:23:46 ----D---- C:\WINDOWS\apppatch
2021-06-07 20:23:33 ----D---- C:\WINDOWS\system32\drivers\UMDF
2021-06-07 20:21:28 ----A---- C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-06-07 19:39:50 ----D---- C:\WINDOWS\system32\MRT
2021-06-07 19:39:41 ----AC---- C:\WINDOWS\system32\MRT.exe
2021-06-07 19:16:59 ----D---- C:\Program Files (x86)\Microsoft
2021-06-07 19:16:53 ----D---- C:\WINDOWS\system32\Logs
2021-06-07 19:16:53 ----D---- C:\Program Files\Microsoft Update Health Tools
2021-06-07 19:15:41 ----D---- C:\WINDOWS\system32\SleepStudy

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 57360]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2019-12-07 88080]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2021-01-08 41984]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2021-06-07 97280]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2021-06-07 148816]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2021-06-07 495616]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2021-01-08 53248]
R3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2021-06-07 1560064]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2021-06-07 110592]
R3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
R3 dptf_acpi;dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [2017-11-28 72592]
R3 dptf_cpu;dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [2017-11-30 78808]
R3 esif_lf;esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [2017-11-30 392160]
R3 HidEventFilter;@oem125.inf,%HidEventFilter%;Intel(R) HID Event Filter; C:\WINDOWS\System32\drivers\HidEventFilter.sys [2017-11-28 54816]
R3 iaLPSS2_SPI;@oem116.inf,%iaLPSS2_SPI.SVCDESC%;Intel(R) Serial IO SPI Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_SPI.sys [2016-08-03 151864]
R3 iaLPSS2_UART2;@oem2.inf,%iaLPSS2_UART2.SVCDESC%;Intel(R) Serial IO UART Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys [2016-08-03 283960]
R3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
R3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
R3 ibtusb;@oem107.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2021-04-23 261688]
R3 igfx;igfx; C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87079a2c2326a956\igdkmd64.sys [2021-04-08 28626840]
R3 IntcDAud;@oem101.inf,%IntcAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\DriverStore\FileRepository\intcdaud.inf_amd64_7383627629a7d914\IntcDAud.sys [2020-01-15 650896]
R3 MEIx64;@oem80.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-08-10 204912]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2021-01-08 322376]
R3 Netwtw04;___ Intel(R) Wireless Adapter Driver for Windows 10 - 64 Bit; C:\WINDOWS\System32\drivers\Netwtw04.sys [2021-06-01 8641608]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
R3 semav6msr64;semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [2021-05-12 41816]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-12-07 138040]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-12-07 158736]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 415232]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 AppleKmdfFilter;@oem78.inf,%AppleKmdfFilterDisplayName%;Apple KMDF Filter Driver; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [2020-10-09 20032]
S3 AppleLowerFilter;@oem78.inf,%AppleLowerFilterDisplayName%;Apple Lower Filter Driver; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [2020-10-09 35976]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2021-01-08 18432]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 279040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2021-06-07 113664]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2021-01-08 106496]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2021-06-07 45568]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-12-07 133632]
S3 dc3d;@oem76.inf,%dc3d.SvcDesc%;MS Hardware Device Detection Driver; C:\WINDOWS\System32\drivers\dc3d.sys [2015-11-16 95016]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2021-06-07 95056]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2_GPIO2;@oem75.inf,%iaLPSS2_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [2016-08-03 104248]
S3 iaLPSS2_I2C;@oem60.inf,%iaLPSS2_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys [2016-08-03 187192]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 ICCWDT;@oem33.inf,%ICCWDT.SVCDESC%;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\WINDOWS\System32\drivers\ICCWDT.sys [2017-05-08 38480]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2021-01-08 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2021-01-08 386048]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2021-02-10 207360]
S3 NuidFltr;@oem95.inf,%NuidFltr.SvcDesc%;NUID filter driver; C:\WINDOWS\System32\drivers\NuidFltr.sys [2015-11-16 48424]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2021-04-25 129872]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-07 990008]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S3 Rockusb;@oem39.inf,%Rockusb_SvcDesc%;Driver for Rockusb Device; C:\WINDOWS\System32\drivers\rockusb.sys [2017-06-07 69920]
S3 RTSUER;@oem62.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2017-11-28 418784]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-12-07 35128]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R2 CDPUserSvc_d76103;Connected Devices Platform User Service_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R2 cplspcon;Intel(R) Content Protection HDCP Service; C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87079a2c2326a956\IntelCpHDCPSvc.exe [2021-04-08 356776]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
R2 DSAService;Intel(R) Driver & Support Assistant; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [2021-05-21 37280]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
R2 esifsvc;@oem65.inf,%ServiceDisplayName%;Intel(R) Dynamic Platform and Thermal Framework service; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [2017-11-30 1714320]
R2 ESRV_SVC_QUEENCREEK;Energy Server Service queencreek; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [2021-05-12 1024920]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2016-10-06 640928]
R2 ibtsiva;@oem107.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igccservice;Intel(R) Graphics Command Center Service; C:\WINDOWS\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_08f11cc9a4c9585a\OneApp.IGCC.WinService.exe [2021-04-08 79272]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\System32\DriverStore\FileRepository\cui_dch.inf_amd64_3bd4cd1d0a01f3b6\igfxCUIService.exe [2021-04-08 390544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface; C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe [2016-09-28 176416]
R2 OneSyncSvc_d76103;Sync Host_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2016-10-06 157600]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2021-01-08 329504]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R3 cbdhsvc_d76103;Používateľská služba schránky_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87079a2c2326a956\IntelCpHeciSvc.exe [2021-04-08 512920]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R3 DSAUpdateService;Intel(R) Driver & Support Assistant Updater; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [2021-05-21 164768]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-09 46184]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R3 PimIndexMaintenanceSvc_d76103;Kontaktné údaje_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2021-06-07 987552]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S2 edgeupdate;Microsoft Edge Update Service (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-01-08 213920]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 AarSvc_d76103;Agent Activation Runtime_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 BcastDVRUserService_d76103;GameDVR and Broadcast User Service_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 BluetoothUserService_d76103;Služba podpory používateľov rozhrania Bluetooth_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 CaptureService_d76103;CaptureService_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 ConsentUxUserSvc_d76103;ConsentUX_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-03-01 388888]
S3 CredentialEnrollmentManagerUserSvc_d76103;CredentialEnrollmentManagerUserSvc_d76103; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-03-01 388888]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 DeviceAssociationBrokerSvc_d76103;DeviceAssociationBroker_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 DevicePickerUserSvc_d76103;DevicePicker_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 DevicesFlowUserSvc_d76103;DevicesFlow_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2021-04-25 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 edgeupdatem;Microsoft Edge Update Service (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-01-08 213920]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\iCLS\SocketHeciServer.exe [2016-05-24 974632]
S3 Intel(R) SUR QC SAM;Intel(R) SUR QC Software Asset Manager; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2021-04-15 3074176]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 MessagingService_d76103;MessagingService_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\91.0.864.48\elevation_service.exe [2021-06-11 1639808]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2021-05-27 242616]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2016-10-06 268704]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-01-20 106496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 PrintWorkflowUserSvc_d76103;PrintWorkflow_d76103; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2021-01-08 57360]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2021-01-20 1265152]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2021-01-08 57360]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114247
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventívka

#2 Příspěvek od Rudy »

Zdravím!
Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . RSIT není plně kompatibilní s desítkami, ani 64b systémem.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

ferenc77
Návštěvník
Návštěvník
Příspěvky: 214
Registrován: 28 lis 2012 13:21

Re: Preventívka

#3 Příspěvek od ferenc77 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-06-2021
Ran by casua (administrator) on DESKTOP-6TDCVK4 (CHUWI INNOVATION AND TECHNOLOGY(SHENZHEN)CO.,LTD LapBook Air) (25-06-2021 11:34:36)
Running from C:\Users\casua\Desktop
Loaded Profiles: casua
Platform: Windows 10 Home Version 20H2 19042.1055 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_3bd4cd1d0a01f3b6\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_3bd4cd1d0a01f3b6\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_08f11cc9a4c9585a\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87079a2c2326a956\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_87079a2c2326a956\IntelCpHeciSvc.exe
(Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Intel(R) System Usage Report -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{69A5FB9D-D69E-4BFF-9FEB-B12382733888}\MicrosoftEdge_X64_91.0.864.54_91.0.864.48.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <3>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Temp\EDGEMITMP_5B468.tmp\setup.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.46.31121.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1022_none_7e372e9e7c6ecccb\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288672 2021-05-21] (IDSA Production signing key 2021 -> Intel)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {051B329C-752C-4F42-972B-24EFC2D96774} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> No File <==== ATTENTION
Task: {0BD70AF2-77BB-4AED-A59C-65C0D2E27218} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2100B24D-039F-4007-B7D1-3E34ECF5D2C3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {37292EA8-F458-47ED-A55C-5A3A1CCF5FD5} - \Microsoft\Windows\WindowsUpdate\sih -> No File <==== ATTENTION
Task: {3891CB81-CF07-4ECD-A7CE-59544F84AF7D} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> No File <==== ATTENTION
Task: {477B681B-B92F-4800-A7D1-184F7BB2E3AD} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-05-27] (Mozilla Corporation -> Mozilla Foundation)
Task: {4BF36988-AB3F-4953-931F-884BDDFE2648} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8D4EB9E3-579C-4BB9-920C-832D9FBBFC99} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3074176 2021-04-15] (Intel(R) System Usage Report -> Intel Corporation)
Task: {8DC4F6F2-5AC8-41B5-8461-383B58804B47} - \Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask -> No File <==== ATTENTION
Task: {8FE26AF2-A8DF-40CC-84EB-34188FE0CC96} - \OneDrive Standalone Update Task v2 -> No File <==== ATTENTION
Task: {94C3E5D8-16B4-45AC-A920-036D34E5E54C} - \Intel PTT EK Recertification -> No File <==== ATTENTION
Task: {95E8949B-8136-4E90-9636-F9D44D92FFF7} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {AC9B94A4-4244-4CD9-AD2A-2644AB3E231A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CA3B2138-3793-4E0F-BBC5-4207E14D65DA} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3074176 2021-04-15] (Intel(R) System Usage Report -> Intel Corporation)
Task: {D0218C70-9C99-4043-BF17-667E1AE5C42E} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> No File <==== ATTENTION
Task: {F02ABF7B-D0DA-4A37-BE1B-E5FFC5B18587} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{706a45d7-89bc-487e-8d5c-5ac5a64c2fa6}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\casua\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-25]
Edge DownloadDir: Default -> C:\Users\casua\Desktop
Edge HomePage: Default -> hxxp://www.google.sk/
Edge Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\casua\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-06-07]

FireFox:
========
FF DefaultProfile: 8cv4vdhv.default
FF ProfilePath: C:\Users\casua\AppData\Roaming\Mozilla\Firefox\Profiles\8cv4vdhv.default [2021-02-10]
FF ProfilePath: C:\Users\casua\AppData\Roaming\Mozilla\Firefox\Profiles\b7pyr8jv.default-release-1623611394875 [2021-06-25]
FF DownloadDir: C:\Users\casua\Desktop
FF Homepage: Mozilla\Firefox\Profiles\b7pyr8jv.default-release-1623611394875 -> www.google.sk
FF Extension: (AdBlocker Ultimate) - C:\Users\casua\AppData\Roaming\Mozilla\Firefox\Profiles\b7pyr8jv.default-release-1623611394875\Extensions\adblockultimate@adblockultimate.net.xpi [2021-06-13]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 Rockusb; C:\WINDOWS\System32\drivers\rockusb.sys [69920 2017-06-07] (Fuzhou Rockchip Electronics Co., Ltd. -> Fuzhou Rockchip Electronics Co,Ltd.)
S3 SIUSBXP; C:\WINDOWS\system32\drivers\SiUSBXp.sys [19456 2017-09-22] (Asetek A/S -> Silicon Laboratories)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-06-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425184 2021-06-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-13] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-25 11:34 - 2021-06-25 11:36 - 000011668 _____ C:\Users\casua\Desktop\FRST.txt
2021-06-25 11:33 - 2021-06-25 11:35 - 000000000 ___DC C:\FRST
2021-06-25 11:32 - 2021-06-25 11:32 - 002300416 _____ (Farbar) C:\Users\casua\Desktop\FRST64.exe
2021-06-13 21:28 - 2021-06-13 21:28 - 000001426 _____ C:\WINDOWS\system32\default_error_stack-000002-000000.txt
2021-06-13 21:23 - 2021-06-13 21:23 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-13 21:23 - 2021-06-13 21:23 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-13 21:23 - 2021-06-13 21:23 - 000011453 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-13 21:17 - 2021-06-13 21:18 - 000000000 ___DC C:\rsit
2021-06-13 21:17 - 2021-06-13 21:17 - 000000000 ____D C:\Program Files\trend micro
2021-06-13 21:15 - 2021-06-13 21:15 - 001222144 _____ C:\Users\casua\Downloads\RSITx64.exe
2021-06-13 21:09 - 2021-06-13 21:09 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-13 21:09 - 2021-06-13 21:09 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk
2021-06-13 21:09 - 2021-06-13 21:09 - 000001000 _____ C:\ProgramData\Desktop\Firefox.lnk
2021-06-13 21:09 - 2021-06-13 21:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-13 21:09 - 2021-06-13 21:09 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-06-13 21:09 - 2021-06-13 21:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-07 20:16 - 2021-06-07 20:16 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-06-07 20:16 - 2021-06-07 20:16 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-07 20:16 - 2021-06-07 20:16 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-06-07 20:16 - 2021-06-07 20:16 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-07 20:16 - 2021-06-07 20:16 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-07 20:15 - 2021-06-07 20:15 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-07 20:15 - 2021-06-07 20:15 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-07 20:15 - 2021-06-07 20:15 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-07 20:15 - 2021-06-07 20:15 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-07 20:15 - 2021-06-07 20:15 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-06-07 20:15 - 2021-06-07 20:15 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-07 20:15 - 2021-06-07 20:15 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-07 20:15 - 2021-06-07 20:15 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-07 20:15 - 2021-06-07 20:15 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-07 20:15 - 2021-06-07 20:15 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-07 20:15 - 2021-06-07 20:15 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-07 20:14 - 2021-06-07 20:14 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-07 20:14 - 2021-06-07 20:14 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-07 20:14 - 2021-06-07 20:14 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-07 20:14 - 2021-06-07 20:14 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-06-07 20:14 - 2021-06-07 20:14 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-06-07 19:58 - 2021-06-07 19:58 - 000001517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2021-06-01 23:31 - 2021-06-01 23:31 - 008641608 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw04.sys
2021-06-01 23:30 - 2021-06-01 23:30 - 001419336 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter04.dll
2021-06-01 22:32 - 2021-06-01 22:32 - 002074220 _____ C:\WINDOWS\system32\Drivers\Netwfw04.dat
2021-05-30 01:26 - 2021-05-30 01:26 - 000003670 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2021-05-30 01:26 - 2021-05-12 20:07 - 000041816 _____ C:\WINDOWS\system32\Drivers\semav6msr64.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-25 11:37 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-25 11:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-25 11:35 - 2021-01-08 03:01 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-25 11:33 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-25 11:30 - 2021-02-10 20:21 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-25 11:29 - 2021-02-10 20:22 - 000000000 ____D C:\Users\casua\AppData\LocalLow\Mozilla
2021-06-25 11:25 - 2021-01-07 18:22 - 000000000 __SHD C:\Users\casua\IntelGraphicsProfiles
2021-06-16 15:49 - 2021-01-08 02:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-16 15:49 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-13 21:43 - 2021-03-01 16:50 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-13 21:43 - 2021-01-07 18:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-13 21:40 - 2021-01-08 02:56 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-13 21:35 - 2021-01-07 18:22 - 000000000 ____D C:\Users\casua\AppData\Local\Packages
2021-06-13 21:33 - 2021-01-07 18:15 - 000840666 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-13 21:31 - 2021-01-07 18:30 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-13 21:29 - 2021-01-08 02:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-13 21:29 - 2021-01-08 02:56 - 000000000 ___DC C:\Intel
2021-06-13 21:29 - 2021-01-08 02:55 - 000258088 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-13 21:29 - 2021-01-08 02:55 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-13 21:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-13 21:29 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-06-13 21:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-13 21:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-13 21:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-13 21:26 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-13 21:11 - 2021-03-21 12:37 - 000000000 ____D C:\Users\casua\AppData\Local\Google
2021-06-13 21:11 - 2021-03-21 12:37 - 000000000 ____D C:\Program Files (x86)\Google
2021-06-07 21:36 - 2021-01-09 16:53 - 000000000 ____D C:\Users\casua\AppData\Roaming\vlc
2021-06-07 20:50 - 2018-03-20 01:59 - 000000000 ____D C:\Program Files (x86)\Intel
2021-06-07 20:47 - 2018-03-20 01:56 - 000000000 ____D C:\ProgramData\Package Cache
2021-06-07 20:36 - 2021-01-09 16:52 - 000003834 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2021-06-07 20:31 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-07 20:23 - 2019-12-07 11:50 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-06-07 20:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-06-07 20:21 - 2019-12-07 11:52 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-30 01:26 - 2021-01-08 23:32 - 000003762 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2021-05-30 01:26 - 2021-01-08 23:32 - 000003528 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-06-2021
Ran by casua (25-06-2021 11:39:35)
Running from C:\Users\casua\Desktop
Windows 10 Home Version 20H2 19042.1055 (X64) (2021-01-08 01:13:16)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2631045331-897864814-2348520705-500 - Administrator - Disabled)
casua (S-1-5-21-2631045331-897864814-2348520705-1001 - Administrator - Enabled) => C:\Users\casua
DefaultAccount (S-1-5-21-2631045331-897864814-2348520705-503 - Limited - Disabled)
Guest (S-1-5-21-2631045331-897864814-2348520705-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2631045331-897864814-2348520705-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Documentation Manager (HKLM\...\{D3342FE3-FE64-42C6-81A6-4F5F9BCFC4A9}) (Version: 22.50.1.1 - Intel Corporation) Hidden
Intel Driver && Support Assistant (HKLM-x32\...\{C38DE4F8-DF58-4B5D-9D4C-1F68773A2AE2}) (Version: 21.3.21.5 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{50883721-017E-40C5-9B65-F11F20DE8B45}) (Version: 2.4.07630 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11001.3279 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{e159f285-6867-4ec7-83de-ddc54070f211}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 1.1.1.318 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{5f5c7829-a6ba-4fc6-9f47-d068f51ed99b}) (Version: 10.1.1.35 - Intel(R) Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1631.3 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 3.0.11.1131 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000050-0220-1033-84C8-B8D95FA3C8C3}) (Version: 22.50.0.4 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{9360c8cc-b617-469a-bb35-829c13e21d97}) (Version: 21.3.21.5 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{aa2c2346-d0c0-4d3e-9ab1-11a48b4cb9f3}) (Version: 19.20.3 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{374c80b9-aad6-42d0-82d7-21cd45f9b5eb}) (Version: 22.50.1.1 - Intel Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.54 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 89.0 (x64 sk) (HKLM\...\Mozilla Firefox 89.0 (x64 sk)) (Version: 89.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 89.0 - Mozilla)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
WinRAR 6.00 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)

Packages:
=========
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5310.0_x64__8wekyb3d8bbwe [2021-06-07] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2631045331-897864814-2348520705-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key 2021 -> Intel)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-04-22 08:31 - 2021-04-22 08:31 - 005745664 _____ () [File not signed] C:\Program Files (x86)\Intel\Driver and Support Assistant\irmfuu_module.dll
2021-05-12 20:07 - 2021-05-12 20:07 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\SQLite.Interop.dll
2021-05-21 08:12 - 2021-05-21 08:12 - 000130048 _____ (Sam Grogan) [File not signed] [File is in use] C:\Program Files (x86)\Intel\Driver and Support Assistant\NotifyIconWin32.dll
2021-05-12 20:07 - 2021-05-12 20:07 - 002122240 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\TXE Components\iCLS\;C:\Program Files\Intel\TXE Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files (x86)\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\;C:\Program Files (x86)\Intel\TXE Components\IPT\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2631045331-897864814-2348520705-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\casua\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F852D472-1C58-4C49-A0FD-BFB79DAABEE8}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [{F87E3FE6-4561-411F-8249-04D5372CED43}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D66D358C-3003-4C4A-B992-799E964E6B5D}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{C02BB27F-5DB4-4C1C-9A96-2623CBFFCE9A}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{0CF082D4-7C92-405E-9C51-3848A251AC15}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{6F2335BD-B9B6-43E4-8188-4546E953D494}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{411F38C3-9BB8-472B-9877-66F56A29C1B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{667FC415-4DC9-4CD4-94F5-05D547C90421}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3574A0EB-CB8E-47CF-A25A-712D87828078}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{82661AF2-E1DD-4116-A677-C97938A7B657}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:115.88 GB) (Free:86.26 GB) (74%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/25/2021 11:30:34 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SystemSettings.exe version 10.0.19041.1023 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1b48

Start Time: 01d769a442645a7b

Termination Time: 4294967295

Application Path: C:\Windows\ImmersiveControlPanel\SystemSettings.exe

Report Id: f1cfe30d-a63b-4887-968b-8a48d9f8dfa7

Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel

Hang type: Quiesce

Error: (06/25/2021 11:29:16 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-6TDCVK4)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (06/16/2021 02:51:31 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-6TDCVK4)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (06/16/2021 11:20:55 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-6TDCVK4)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (06/13/2021 09:34:15 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-6TDCVK4)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (06/13/2021 09:08:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SystemSettings.exe version 10.0.19041.1023 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 214

Start Time: 01d760860017457c

Termination Time: 4294967295

Application Path: C:\Windows\ImmersiveControlPanel\SystemSettings.exe

Report Id: 6a88f023-4a34-43a4-bbb9-2606f34f6aa6

Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel

Hang type: Quiesce

Error: (06/07/2021 08:48:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MsiExec.exe, verzia: 5.0.19041.1, časová značka: 0x25d5450e
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.19041.1023, časová značka: 0xf739c3a5
Kód výnimky: 0xc0000005
Odstup chyby: 0x0004402d
Identifikácia chybujúceho procesu: 0x638
Čas spustenia chybujúcej aplikácie: 0x01d75bcdb54018c9
Cesta chybujúcej aplikácie: C:\Windows\syswow64\MsiExec.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 3c9ff392-5d4e-4d0c-a7ec-d410b214ca4e
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (06/07/2021 08:35:24 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-6TDCVK4)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.


System errors:
=============
Error: (06/13/2021 09:28:55 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba User Energy Server Service queencreek bola ukončená s nasledujúcou chybou:
Driver %2 returned invalid ID for a child device (%3).

Error: (06/07/2021 09:43:56 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-6TDCVK4)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (06/07/2021 07:18:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus - KB2267602 (verzia 1.341.254.0).

Error: (04/26/2021 04:43:24 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-6TDCVK4)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (04/26/2021 04:43:24 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-6TDCVK4)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (04/26/2021 04:21:08 PM) (Source: ACPI) (EventID: 13) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Error: (04/26/2021 04:16:23 PM) (Source: ACPI) (EventID: 13) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Error: (04/25/2021 08:41:38 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-6TDCVK4)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2021-06-07 20:45:17
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-06-07 20:38:06
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-04-26 16:21:15
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Full Scan

Date: 2021-04-25 21:00:00
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-03-06 10:34:53
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-06-07 19:18:35
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.341.254.0
Previous security intelligence Version: 1.339.232.0
Update Source: User
Security intelligence Type: AntiSpyware
Update Type: Delta
Current Engine Version: 1.1.18200.4
Previous Engine Version: 1.1.18100.6
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-06-07 19:18:35
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.341.254.0
Previous security intelligence Version: 1.339.232.0
Update Source: User
Security intelligence Type: AntiVirus
Update Type: Delta
Current Engine Version: 1.1.18200.4
Previous Engine Version: 1.1.18100.6
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-06-07 19:18:35
Description:
Microsoft Defender Antivirus has encountered an error trying to update the engine.
New Engine Version: 1.1.18200.4
Previous Engine Version: 1.1.18100.6
Error Code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-04-04 17:12:01
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.333.941.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18000.5
Error code: 0x80070670
Error description: No valid sequence could be found for the set of updates.

Date: 2021-04-04 17:12:01
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.333.941.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18000.5
Error code: 0x80070670
Error description: No valid sequence could be found for the set of updates.

CodeIntegrity:
===============
Date: 2021-02-05 20:24:13
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-08 02:02:19
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.

Date: 2021-01-08 02:02:19
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

BIOS: American Megatrends Inc. ALASKA - 1072009 04/13/2018
Motherboard: CHUWI INNOVATION AND TECHNOLOGY(SHENZHEN)CO.,LTD LapBook Air
Processor: Intel(R) Celeron(R) CPU N3450 @ 1.10GHz
Percentage of memory in use: 55%
Total physical RAM: 8024.72 MB
Available physical RAM: 3533.01 MB
Total Virtual: 9304.72 MB
Available Virtual: 4816.15 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:115.88 GB) (Free:86.26 GB) NTFS

\\?\Volume{b4551baa-dfd9-4add-9d6b-5d8dbfa4a1e0}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{2555d6f5-4c35-4af6-ba95-a8ec5bc5e2ce}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 116.5 GB) (Disk ID: 51FD3546)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114247
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventívka

#4 Příspěvek od Rudy »

OK. Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

ferenc77
Návštěvník
Návštěvník
Příspěvky: 214
Registrován: 28 lis 2012 13:21

Re: Preventívka

#5 Příspěvek od ferenc77 »

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-06-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-30-2021
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1406 octets] - [04/04/2021 17:46:59]
AdwCleaner[S01].txt - [1467 octets] - [30/06/2021 09:59:47]
AdwCleaner[S02].txt - [1528 octets] - [30/06/2021 10:02:04]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114247
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventívka

#6 Příspěvek od Rudy »

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
Task: {051B329C-752C-4F42-972B-24EFC2D96774} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> No File <==== ATTENTION
Task: {37292EA8-F458-47ED-A55C-5A3A1CCF5FD5} - \Microsoft\Windows\WindowsUpdate\sih -> No File <==== ATTENTION
Task: {3891CB81-CF07-4ECD-A7CE-59544F84AF7D} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> No File <==== ATTENTION
Task: {8DC4F6F2-5AC8-41B5-8461-383B58804B47} - \Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask -> No File <==== ATTENTION
Task: {8FE26AF2-A8DF-40CC-84EB-34188FE0CC96} - \OneDrive Standalone Update Task v2 -> No File <==== ATTENTION
Task: {94C3E5D8-16B4-45AC-A920-036D34E5E54C} - \Intel PTT EK Recertification -> No File <==== ATTENTION
Task: {D0218C70-9C99-4043-BF17-667E1AE5C42E} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> No File <==== ATTENTION
Task: {F02ABF7B-D0DA-4A37-BE1B-E5FFC5B18587} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

ferenc77
Návštěvník
Návštěvník
Příspěvky: 214
Registrován: 28 lis 2012 13:21

Re: Preventívka

#7 Příspěvek od ferenc77 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-06-2021
Ran by casua (01-07-2021 08:29:51) Run:1
Running from C:\Users\casua\Desktop
Loaded Profiles: casua
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Task: {051B329C-752C-4F42-972B-24EFC2D96774} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> No File <==== ATTENTION
Task: {37292EA8-F458-47ED-A55C-5A3A1CCF5FD5} - \Microsoft\Windows\WindowsUpdate\sih -> No File <==== ATTENTION
Task: {3891CB81-CF07-4ECD-A7CE-59544F84AF7D} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> No File <==== ATTENTION
Task: {8DC4F6F2-5AC8-41B5-8461-383B58804B47} - \Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask -> No File <==== ATTENTION
Task: {8FE26AF2-A8DF-40CC-84EB-34188FE0CC96} - \OneDrive Standalone Update Task v2 -> No File <==== ATTENTION
Task: {94C3E5D8-16B4-45AC-A920-036D34E5E54C} - \Intel PTT EK Recertification -> No File <==== ATTENTION
Task: {D0218C70-9C99-4043-BF17-667E1AE5C42E} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> No File <==== ATTENTION
Task: {F02ABF7B-D0DA-4A37-BE1B-E5FFC5B18587} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{051B329C-752C-4F42-972B-24EFC2D96774}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{051B329C-752C-4F42-972B-24EFC2D96774}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{37292EA8-F458-47ED-A55C-5A3A1CCF5FD5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37292EA8-F458-47ED-A55C-5A3A1CCF5FD5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsUpdate\sih" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3891CB81-CF07-4ECD-A7CE-59544F84AF7D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3891CB81-CF07-4ECD-A7CE-59544F84AF7D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8DC4F6F2-5AC8-41B5-8461-383B58804B47}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8DC4F6F2-5AC8-41B5-8461-383B58804B47}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8FE26AF2-A8DF-40CC-84EB-34188FE0CC96}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8FE26AF2-A8DF-40CC-84EB-34188FE0CC96}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task v2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{94C3E5D8-16B4-45AC-A920-036D34E5E54C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94C3E5D8-16B4-45AC-A920-036D34E5E54C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Intel PTT EK Recertification" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D0218C70-9C99-4043-BF17-667E1AE5C42E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0218C70-9C99-4043-BF17-667E1AE5C42E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F02ABF7B-D0DA-4A37-BE1B-E5FFC5B18587}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F02ABF7B-D0DA-4A37-BE1B-E5FFC5B18587}" => removed successfully
C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_QUEENCREEK => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\USER_ESRV_SVC_QUEENCREEK" => removed successfully
C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7626752 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7400866 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 5561046 B
Edge => 0 B
Firefox => 22044430 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 91902 B
casua => 1079390 B

RecycleBin => 0 B
EmptyTemp: => 41.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 08:30:09 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114247
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventívka

#8 Příspěvek od Rudy »

Smazáno, log je již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

ferenc77
Návštěvník
Návštěvník
Příspěvky: 214
Registrován: 28 lis 2012 13:21

Re: Preventívka

#9 Příspěvek od ferenc77 »

Ďakujem pekne a prajem pekný víkend :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114247
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventívka

#10 Příspěvek od Rudy »

Hezký víkend i vám a nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno