Dobrý deň, chcel by som poprosiť o jednu preventívnu prehliadku počítača Keď som zapínal FRST tak Windows defender mi zakázal spustiť program
PC sa niekedy pomalšie zapína aj keď má SSD, tak či by ste sa mu nekukli na zúbok, Ďakujem
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-06-2020
Ran by Mr.X (administrator) on DESKTOP-MUIPQGN (Gigabyte Technology Co., Ltd. GA-880GA-UD3H) (23-06-2020 14:29:01)
Running from C:\Users\Mr.X\Desktop
Loaded Profiles: Mr.X
Platform: Windows 10 Home Version 1909 18363.900 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Discord Inc. -> Discord Inc.) C:\Users\Mr.X\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
(Elaborate Bytes AG -> Elaborate Bytes AG) E:\VirtualCloneDrive\VCDDaemon.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\avpui.exe
(Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.892_none_5efe5b5a590f76dc\TiWorker.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2eaf9d620160f138\Display.NvContainer\NVDisplay.Container.exe <2>
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe <7>
(Valve -> Valve Corporation) D:\Games\Steam\steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353776 2020-06-13] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => E:\VirtualCloneDrive\VCDDaemon.exe [105280 2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [27775672 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\Run: [Steam] => D:\Games\Steam\steam.exe [3375904 2020-06-04] (Valve -> Valve Corporation)
HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\Run: [Discord] => C:\Users\Mr.X\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-06-09] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\MountPoints2: {46822a41-9bfe-11ea-a375-1c6f65486b6d} - "G:\Lenovo_Suite.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> C:\Program Files (x86)\Microsoft\Edge\Application\83.0.478.54\Installer\setup.exe [2020-06-19] (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {08566A74-B81E-4791-81FE-B62E92B3CCD1} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0AA4AD68-3DAE-4DD7-9962-9BE846B19DDA} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [124624 2020-06-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {0F24F6FC-5F5F-40DF-8777-7AA853922C4F} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-06-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {2AD92EAC-15A1-47BD-87F2-13AC0BF5B959} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2D835799-3D69-43FE-8D54-AF19D8A9DCCF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3A36F11A-D08D-428A-B9EE-C895D2BDBD93} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4098A477-A492-4E10-BD2D-F808B1AFD243} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {44FD080F-0F1B-4915-8768-9D5A60F5A4D9} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-06-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {4CECEFE3-358D-41E8-83E6-A1E048EE6760} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5CEBAB19-5CED-4FAC-A5D2-38B09ACFF190} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-10] (Adobe Inc. -> Adobe)
Task: {686A7FFC-E9CA-4E56-BA0B-FA2A0A76A9C1} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
Task: {827F0054-E221-4ABF-9CB8-19CA8FEB907F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8F7D0787-FB98-4A7C-87EE-4F23237B54DF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A0DAEB4C-0952-4BA1-9FED-DC4293C18A3D} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-10] (Adobe Inc. -> Adobe)
Task: {A24B9F1F-31BD-4B4D-9096-38FF47E32BED} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [23571128 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AC13089E-E2D1-4648-ACAC-FFED7BA3A265} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B33C28B4-FF93-4BFA-9F90-9D0D01971CB8} - System32\Tasks\ProtonVPN Update => E:\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-04-17] (ProtonVPN AG -> )
Task: {E6BC4D80-5F85-4813-9C0E-E475B21E6809} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F941CE8A-D715-4E40-BE43-B3F323F96AEB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{c7e118f6-5c84-4c29-8e3a-627eafd8b247}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Internet Explorer:
==================
Edge:
======
DownloadDir: C:\Users\Mr.X\Downloads
Edge Profile: C:\Users\Mr.X\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-19]
Edge Extension: (Kaspersky Protection) - C:\Users\Mr.X\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-06-08]
Edge HKU\S-1-5-21-2296205798-3636821469-339802987-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk]
FireFox:
========
FF DefaultProfile: vw0rg21m.default
FF ProfilePath: C:\Users\Mr.X\AppData\Roaming\Mozilla\Firefox\Profiles\vw0rg21m.default [2020-05-17]
FF ProfilePath: C:\Users\Mr.X\AppData\Roaming\Mozilla\Firefox\Profiles\jgz0jsry.default-release [2020-06-23]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Mr.X\AppData\Roaming\Mozilla\Firefox\Profiles\jgz0jsry.default-release\Extensions\firefox@ghostery.com.xpi [2020-06-12]
FF Extension: (HTTPS Everywhere) - C:\Users\Mr.X\AppData\Roaming\Mozilla\Firefox\Profiles\jgz0jsry.default-release\Extensions\https-everywhere@eff.org.xpi [2020-05-21]
FF Extension: (Kaspersky Protection) - C:\Users\Mr.X\AppData\Roaming\Mozilla\Firefox\Profiles\jgz0jsry.default-release\Extensions\light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com.xpi [2020-05-17]
FF Extension: (uBlock Origin) - C:\Users\Mr.X\AppData\Roaming\Mozilla\Firefox\Profiles\jgz0jsry.default-release\Extensions\uBlock0@raymondhill.net.xpi [2020-05-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-10] (Adobe Inc. -> )
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-05-17] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-05-17] <==== ATTENTION
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-10] (Adobe Inc. -> Adobe)
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-06-08] (Microsoft Corporation -> Microsoft Corporation)
S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-06-08] (Microsoft Corporation -> Microsoft Corporation)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\83.0.478.54\elevation_service.exe [1507208 2020-06-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ProtonVPN Service; E:\ProtonVPN\ProtonVPNService.exe [100672 2020-04-17] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; E:\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-04-17] (ProtonVPN AG -> )
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9875416 2020-06-13] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\NisSrv.exe [2484256 2020-06-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MsMpEng.exe [103168 2020-06-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2eaf9d620160f138\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2eaf9d620160f138\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [79768 2020-04-15] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [145504 2020-04-15] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [37816 2020-04-15] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [251800 2020-04-15] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [633600 2020-04-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1217792 2020-04-29] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [215104 2020-06-01] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [998296 2020-04-15] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [79760 2020-04-15] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [256752 2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\Windows\System32\Drivers\klupd_klif_kimul.sys [99152 2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [309968 2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [117496 2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [206880 2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
S4 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [211048 2020-04-15] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [232344 2020-04-15] (Kaspersky Lab -> AO Kaspersky Lab)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2eaf9d620160f138\nvlddmkm.sys [23454440 2020-05-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-04-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2020-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ProtonVPNSplitTunnel; E:\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 VClone; C:\Windows\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [6335912 2020-06-13] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [45960 2020-06-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [401120 2020-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [64224 2020-06-15] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-06-23 14:29 - 2020-06-23 14:29 - 000018662 _____ C:\Users\Mr.X\Desktop\FRST.txt
2020-06-23 14:28 - 2020-06-23 14:29 - 000000000 ____D C:\FRST
2020-06-23 14:25 - 2020-06-23 14:25 - 002290176 _____ (Farbar) C:\Users\Mr.X\Desktop\FRST64.exe
2020-06-23 14:25 - 2020-06-23 14:25 - 000000684 _____ C:\Users\Public\Desktop\GIMP 2.10.20.lnk
2020-06-23 14:25 - 2020-06-23 14:25 - 000000684 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.20.lnk
2020-06-23 14:25 - 2020-06-23 14:25 - 000000684 _____ C:\ProgramData\Desktop\GIMP 2.10.20.lnk
2020-06-23 14:16 - 2020-06-23 14:16 - 000000000 ____D C:\Users\Mr.X\AppData\Local\Discord
2020-06-23 14:14 - 2020-06-23 14:14 - 000000000 ____D C:\Users\Public\Documents\TB Client
2020-06-23 14:14 - 2020-06-23 14:14 - 000000000 ____D C:\ProgramData\Documents\TB Client
2020-06-23 14:12 - 2020-06-23 14:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrucksBook Client
2020-06-21 18:11 - 2020-06-21 18:11 - 000000000 ____D C:\Users\Mr.X\AppData\Local\CrashDumps
2020-06-20 22:02 - 2020-06-20 22:02 - 000000000 ____D C:\Users\Mr.X\AppData\Local\mbam
2020-06-20 22:01 - 2020-06-20 22:01 - 000000000 ____D C:\Program Files\Malwarebytes
2020-06-20 22:01 - 2020-06-20 22:01 - 000000000 ____D C:\Malwarebytes
2020-06-19 19:11 - 2020-06-23 14:17 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2020-06-19 19:10 - 2020-06-19 19:10 - 000000000 ____D C:\Users\Mr.X\AppData\Local\VALORANT
2020-06-19 18:54 - 2020-06-19 19:10 - 000001621 _____ C:\Users\Public\Desktop\VALORANT.lnk
2020-06-19 18:54 - 2020-06-19 19:10 - 000001621 _____ C:\ProgramData\Desktop\VALORANT.lnk
2020-06-19 18:54 - 2020-06-19 18:54 - 000000000 ____D C:\Program Files\Riot Vanguard
2020-06-19 15:44 - 2020-06-22 13:08 - 000000000 ____D C:\ProgramData\TruckersMP
2020-06-19 15:44 - 2020-06-19 15:45 - 000000000 ____D C:\Users\Mr.X\Documents\ETS2MP
2020-06-19 15:43 - 2020-06-19 15:43 - 000001270 _____ C:\Users\Public\Desktop\TruckersMP.lnk
2020-06-19 15:43 - 2020-06-19 15:43 - 000001270 _____ C:\ProgramData\Desktop\TruckersMP.lnk
2020-06-19 15:43 - 2020-06-19 15:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP Launcher
2020-06-19 13:17 - 2020-06-23 14:05 - 000000000 ____D C:\Users\Mr.X\Documents\Euro Truck Simulator 2
2020-06-19 13:16 - 2020-06-19 13:16 - 000000000 ____D C:\Users\Mr.X\AppData\Local\Logitech
2020-06-19 13:15 - 2020-06-19 13:15 - 000000000 ____D C:\Users\Mr.X\AppData\Roaming\Logitech
2020-06-19 13:15 - 2020-06-19 13:15 - 000000000 ____D C:\Users\Mr.X\AppData\Roaming\Logishrd
2020-06-19 13:15 - 2020-06-19 13:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2020-06-19 13:15 - 2020-06-19 13:15 - 000000000 ____D C:\Program Files\Logitech
2020-06-19 13:15 - 2020-06-19 13:15 - 000000000 ____D C:\Program Files\Common Files\Logitech
2020-06-19 12:23 - 2020-06-19 12:23 - 000000000 ____D C:\Users\Mr.X\AppData\Local\Steam
2020-06-19 12:22 - 2020-06-19 12:22 - 000000647 _____ C:\Users\Public\Desktop\Steam.lnk
2020-06-19 12:22 - 2020-06-19 12:22 - 000000647 _____ C:\ProgramData\Desktop\Steam.lnk
2020-06-19 12:22 - 2020-06-19 12:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-06-19 11:45 - 2020-06-20 15:21 - 000000000 ____D C:\Users\Mr.X\AppData\Roaming\vlc
2020-06-19 11:44 - 2020-06-19 11:44 - 000000000 ____D C:\Program Files\VideoLAN
2020-06-19 11:36 - 2020-06-19 13:16 - 000000000 ____D C:\Users\Mr.X\AppData\Roaming\Blitz
2020-06-19 11:36 - 2020-06-19 11:36 - 000002238 _____ C:\Users\Mr.X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz.lnk
2020-06-19 11:36 - 2020-06-19 11:36 - 000000000 ____D C:\Users\Mr.X\AppData\Local\blitz-updater
2020-06-12 12:21 - 2020-06-12 12:21 - 011608064 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 009712640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 003525608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 001539072 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-06-12 12:21 - 2020-06-12 12:21 - 001272160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 001112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 001012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000940544 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000920064 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000747832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000651264 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000588800 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2020-06-12 12:21 - 2020-06-12 12:21 - 000526336 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000466944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000430592 _____ (Microsoft Corporation) C:\Windows\system32\WalletService.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswmdm.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000342528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Feedback.Analog.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000338944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000166912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidx.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll
2020-06-12 12:21 - 2020-06-12 12:21 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\BdeUISrv.exe
2020-06-12 12:20 - 2020-06-12 12:21 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 025902080 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 019851776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 019812864 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 018029056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 009931576 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 008015360 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 007911176 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 007760384 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 007604592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 007268864 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 007266080 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 007012864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 006526448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 006435840 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 006292480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 006091048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 006066808 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 005909504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 005765144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 005283264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 005195432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 005111808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 005004344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 004610560 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 004565248 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 004012032 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 003822592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 003726848 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 003712000 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 003581240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 003515392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 003398656 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 003368104 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 003187200 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 002831872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 002798592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-06-12 12:20 - 2020-06-12 12:20 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-06-12 12:20 - 2020-06-12 12:20 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 002656256 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 002583496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 002494744 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 002289664 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 002281472 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 002235520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 002230240 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 002204160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 002184504 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001942528 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001919488 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001803776 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 001751040 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001743680 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001704448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001683968 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001657856 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001654960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001649152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\TaskFlowDataEngine.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001583104 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001486336 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 001467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001466368 _____ (Microsoft Corporation) C:\Windows\system32\rdpsharercom.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001447424 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 001416224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001410048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 001397560 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 001393952 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001348096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001344512 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001319936 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001314304 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001284608 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001283072 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001274128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryPS.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001261568 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001260744 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001215488 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 001193984 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001180672 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001158144 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001155944 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 001153024 _____ (Microsoft Corporation) C:\Windows\system32\windowsperformancerecordercontrol.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001151824 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001138688 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001100288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001099608 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001077048 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 001073664 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001066496 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001055184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001007104 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 001003832 _____ (Microsoft Corporation) C:\Windows\system32\DismApi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000994304 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000992256 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000982016 _____ (Microsoft Corporation) C:\Windows\system32\tapi3.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000971264 _____ (Microsoft Corporation) C:\Windows\system32\dsregcmd.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000932256 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000931840 _____ (Microsoft Corporation) C:\Windows\system32\InkObjCore.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000929280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000899584 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000897536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000894024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000892416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000892048 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000881664 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000874296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windowsperformancerecordercontrol.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000868352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000863232 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi3.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000843776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000832512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000826368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000797464 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000784896 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000783496 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000782336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000777216 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000760296 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000740664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DismApi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000736768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntime.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000722072 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000716320 _____ (Microsoft Corporation) C:\Windows\system32\StateRepository.Core.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000716288 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000705536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000696832 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000692224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000690176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkObjCore.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000684856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000679424 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000674304 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000668672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000651776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000650752 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000648192 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000640000 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000632320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000628408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000619008 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000614400 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000593424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000575488 _____ (Microsoft® Windows® Operating System) C:\Windows\system32\wvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000574464 _____ (Microsoft Corporation) C:\Windows\system32\msTextPrediction.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000572200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000569856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000567808 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2020-06-12 12:20 - 2020-06-12 12:20 - 000564496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StateRepository.Core.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000561464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 000557056 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000553984 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 000549376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000548984 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000544256 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000533504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000531768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2020-06-12 12:20 - 2020-06-12 12:20 - 000529920 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000529920 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000522240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000518456 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000516544 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000513536 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000508720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000508216 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2020-06-12 12:20 - 2020-06-12 12:20 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroles.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000498176 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000490496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.FileExplorer.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000484864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000478208 _____ (Microsoft® Windows® Operating System) C:\Windows\SysWOW64\wvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000477184 _____ (Microsoft Corporation) C:\Windows\system32\SharedRealitySvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000467952 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000462848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000462848 _____ (Microsoft Corporation) C:\Windows\system32\iassdo.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000461112 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000453944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000451864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000441152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 000440832 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000430592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000427008 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000426496 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000425056 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000423424 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000422400 _____ (Microsoft Corporation) C:\Windows\system32\mswmdm.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000407864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000405936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000398336 _____ (Microsoft Corporation) C:\Windows\system32\WlanMM.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000398336 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000394752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Preview.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000391680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000384512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000380728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000361472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\termmgr.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iassdo.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000357176 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\wpr.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000325120 _____ (Microsoft Corporation) C:\Windows\system32\rdpviewerax.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 000323584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000312832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000306688 _____ (Microsoft Corporation) C:\Windows\system32\RASMM.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WlanMM.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\CXHProvisioningServer.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Preview.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000283136 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000280376 _____ (Microsoft Corporation) C:\Windows\system32\Dism.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpviewerax.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000269312 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000264192 _____ (Microsoft Corporation) C:\Windows\system32\netman.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000260096 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000259776 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000259584 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2020-06-12 12:20 - 2020-06-12 12:20 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\FileHistory.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000248320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000247856 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000230912 _____ (Microsoft Corporation) C:\Windows\system32\RdpRelayTransport.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\psr.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wavemsp.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000224256 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000223544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Dism.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000221496 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000218624 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000211256 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000209216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryUpgrade.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\NPSM.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000205824 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2020-06-12 12:20 - 2020-06-12 12:20 - 000204008 _____ (Microsoft Corporation) C:\Windows\system32\SecurityCenterBroker.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000201528 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SIUF.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000199992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000199168 _____ (Microsoft Corporation) C:\Windows\system32\wmidx.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000196096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psr.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000193592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\AarSvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000190048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000186368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000184320 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000183808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000179512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2020-06-12 12:20 - 2020-06-12 12:20 - 000170496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000165888 _____ (Microsoft Corporation) C:\Windows\system32\msaatext.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000165832 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000165296 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000165192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cic.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NPSM.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000150328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\imapi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000133120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrecst.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000132608 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000132424 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000130112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000129600 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\NetworkStatus.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000128312 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\wkspbrokerAx.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\sdshext.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000124928 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaatext.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000114688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000108856 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000107520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasnap.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000104248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000099712 _____ (Microsoft Corporation) C:\Windows\system32\FsIso.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkspbrokerAx.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\atl.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000093448 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000090952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000089344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\WwanRadioManager.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2020-06-12 12:20 - 2020-06-12 12:20 - 000083600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000080384 _____ (Microsoft Corporation) C:\Windows\system32\RpcEpMap.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2020-06-12 12:20 - 2020-06-12 12:20 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\WlanRadioManager.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\XboxGipRadioManager.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000065024 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollCtrl.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000063288 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthHost.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasads.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\NfcRadioMedia.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnosticsTool.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnrollCtrl.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryCore.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000041864 _____ (Microsoft Corporation) C:\Windows\system32\SecurityCenterBrokerPS.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\WiFiConfigSP.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\atlthunk.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryCore.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000028368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SecurityCenterBrokerPS.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe
2020-06-12 12:20 - 2020-06-12 12:20 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2020-06-12 12:20 - 2020-06-12 12:20 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-06-12 12:13 - 2020-05-15 06:29 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-06-12 12:13 - 2020-05-15 06:10 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-06-08 09:07 - 2020-06-19 11:19 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-06-08 09:07 - 2020-06-08 19:13 - 000003576 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-06-08 09:07 - 2020-06-08 19:13 - 000003452 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-06-04 16:26 - 2020-06-04 16:27 - 000000000 ____D C:\AdwCleaner
2020-06-04 16:26 - 2020-06-04 16:26 - 008402608 _____ (Malwarebytes) C:\Users\Mr.X\Downloads\adwcleaner_8.0.5.exe
2020-06-04 10:16 - 2020-06-04 18:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-06-02 11:37 - 2020-06-02 11:37 - 000000000 ____D C:\Users\Mr.X\AppData\Roaming\WinRAR
2020-06-02 11:37 - 2020-06-02 11:37 - 000000000 ____D C:\Users\Mr.X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-06-02 11:37 - 2020-06-02 11:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-06-02 11:37 - 2020-06-02 11:37 - 000000000 ____D C:\Program Files\WinRAR
2020-05-31 11:28 - 2020-05-18 22:44 - 001729232 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-05-31 11:28 - 2020-05-18 22:44 - 001729232 _____ C:\Windows\system32\vulkaninfo.exe
2020-05-31 11:28 - 2020-05-18 22:44 - 001329360 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-05-31 11:28 - 2020-05-18 22:44 - 001329360 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-05-31 11:28 - 2020-05-18 22:44 - 001079000 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-05-31 11:28 - 2020-05-18 22:44 - 001079000 _____ C:\Windows\system32\vulkan-1.dll
2020-05-31 11:28 - 2020-05-18 22:44 - 000937680 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-05-31 11:28 - 2020-05-18 22:44 - 000937680 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-05-31 11:28 - 2020-05-18 22:44 - 000451480 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-05-31 11:28 - 2020-05-18 22:44 - 000348048 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-05-31 11:27 - 2020-05-18 22:41 - 011944864 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2020-05-31 11:27 - 2020-05-18 22:41 - 010286480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-05-31 11:27 - 2020-05-18 22:40 - 001005968 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2020-05-31 11:27 - 2020-05-18 22:40 - 000816872 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2020-05-31 11:27 - 2020-05-18 22:40 - 000676240 _____ C:\Windows\system32\nvofapi64.dll
2020-05-31 11:27 - 2020-05-18 22:40 - 000543136 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-05-31 11:27 - 2020-05-18 22:39 - 002073008 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-05-31 11:27 - 2020-05-18 22:39 - 001566104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-05-31 11:27 - 2020-05-18 22:39 - 001482144 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-05-31 11:27 - 2020-05-18 22:39 - 001350576 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2020-05-31 11:27 - 2020-05-18 22:39 - 001142008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-05-31 11:27 - 2020-05-18 22:39 - 001048488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-05-31 11:27 - 2020-05-18 22:39 - 000680864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-05-31 11:27 - 2020-05-18 22:39 - 000561400 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2020-05-31 11:27 - 2020-05-18 22:39 - 000546728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-05-31 11:27 - 2020-05-18 22:38 - 005856664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-05-31 11:27 - 2020-05-18 22:38 - 000811256 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-05-31 11:27 - 2020-05-18 22:38 - 000655080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2020-05-31 11:27 - 2020-05-18 22:38 - 000444816 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2020-05-31 11:27 - 2020-05-18 22:37 - 017600240 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-05-31 11:27 - 2020-05-18 22:37 - 015157992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-05-31 11:27 - 2020-05-18 22:37 - 005159312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-05-31 11:27 - 2020-05-18 22:37 - 000849824 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2020-05-31 11:27 - 2020-05-18 22:36 - 004195672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-05-31 11:27 - 2020-05-16 09:07 - 000077294 _____ C:\Windows\system32\nvinfo.pb
2020-05-30 14:39 - 2020-05-30 14:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2020-05-29 18:02 - 2020-05-29 18:02 - 000000000 ____D C:\Program Files\UNP
2020-05-25 19:20 - 2020-05-25 19:20 - 000003688 _____ C:\Windows\system32\Tasks\ProtonVPN Update
2020-05-25 19:20 - 2020-05-25 19:20 - 000000000 ____D C:\Users\Mr.X\AppData\Local\ProtonVPN
2020-05-25 19:20 - 2020-05-25 19:20 - 000000000 ____D C:\ProgramData\ProtonVPN
2020-05-25 19:19 - 2020-05-25 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProtonVPN
2020-05-25 19:19 - 2020-05-25 19:19 - 000000000 ____D C:\Program Files (x86)\Proton Technologies
2020-05-24 15:07 - 2020-05-24 15:07 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2020-05-24 10:57 - 2020-06-19 19:11 - 000000000 ____D C:\Users\Mr.X\AppData\Roaming\qBittorrent
2020-05-24 10:57 - 2020-05-24 10:58 - 000000000 ____D C:\Users\Mr.X\AppData\Local\qBittorrent
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-06-23 14:29 - 2020-05-17 21:48 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-06-23 14:28 - 2020-05-17 21:56 - 000000000 ____D C:\Users\Mr.X\AppData\LocalLow\Mozilla
2020-06-23 14:28 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF
2020-06-23 14:23 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-23 14:20 - 2019-03-19 06:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-06-23 14:19 - 2020-05-17 22:19 - 000049064 _____ C:\Windows\system32\perfh01B.dat
2020-06-23 14:19 - 2020-05-17 22:19 - 000012206 _____ C:\Windows\system32\perfc01B.dat
2020-06-23 14:19 - 2020-05-17 21:30 - 000885446 _____ C:\Windows\system32\PerfStringBackup.INI
2020-06-23 14:17 - 2020-05-17 23:04 - 000000000 ____D C:\Users\Mr.X\AppData\Roaming\discord
2020-06-23 14:16 - 2020-05-17 23:04 - 000000000 ____D C:\Users\Mr.X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-06-23 14:16 - 2020-05-17 23:04 - 000000000 ____D C:\Users\Mr.X\AppData\Local\SquirrelTemp
2020-06-23 14:15 - 2020-05-17 21:51 - 000000000 ____D C:\ProgramData\NVIDIA
2020-06-23 14:13 - 2020-05-17 21:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-23 14:12 - 2020-05-17 22:11 - 000000000 ____D C:\ProgramData\Package Cache
2020-06-23 14:12 - 2020-05-17 21:54 - 000011625 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-06-23 14:12 - 2020-05-17 21:50 - 000020689 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-06-23 14:12 - 2020-05-17 21:50 - 000017574 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-06-23 14:12 - 2019-03-19 06:37 - 000262144 _____ C:\Windows\system32\config\BBI
2020-06-23 12:45 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\AppReadiness
2020-06-23 12:41 - 2020-05-17 21:50 - 000001206 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-06-22 21:26 - 2020-05-17 21:21 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-06-22 13:06 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-06-21 13:19 - 2020-05-17 22:11 - 000000000 ____D C:\Users\Mr.X\AppData\Local\NVIDIA
2020-06-19 19:10 - 2020-05-18 10:25 - 000000000 ____D C:\Users\Mr.X\AppData\Local\Riot Games
2020-06-19 18:54 - 2020-05-18 10:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-06-19 11:06 - 2019-03-19 06:37 - 000032768 _____ C:\Windows\system32\config\ELAM
2020-06-15 18:43 - 2020-05-17 21:21 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-06-15 18:43 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-06-13 10:16 - 2020-05-17 21:50 - 000012956 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-06-12 15:07 - 2020-05-17 21:26 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-06-12 15:07 - 2020-05-17 21:26 - 000000000 ___RD C:\Users\Mr.X\3D Objects
2020-06-12 15:07 - 2020-05-17 21:21 - 000258088 _____ C:\Windows\system32\FNTCACHE.DAT
2020-06-12 15:06 - 2019-03-19 12:55 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-06-12 15:06 - 2019-03-19 12:55 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ___SD C:\Windows\SysWOW64\F12
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ___SD C:\Windows\system32\F12
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\Com
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SystemResources
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\oobe
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\Dism
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\Com
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-06-12 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\bcastdvr
2020-06-12 12:23 - 2019-03-19 06:37 - 000000000 ____D C:\Windows\CbsTemp
2020-06-12 12:20 - 2020-05-17 22:20 - 000410840 __RSH C:\bootmgr
2020-06-12 12:20 - 2020-05-17 21:24 - 002876416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-06-10 09:59 - 2020-05-23 13:13 - 000004544 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-06-10 09:59 - 2020-05-23 13:13 - 000004380 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-06-10 09:59 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-06-10 09:59 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\Macromed
2020-06-05 23:03 - 2019-03-19 06:56 - 000835480 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-06-05 23:03 - 2019-03-19 06:56 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-04 18:25 - 2020-05-17 21:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-06-04 10:27 - 2020-05-17 21:56 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-06-02 13:07 - 2020-05-17 21:25 - 000000000 ____D C:\Users\Mr.X
2020-05-31 11:32 - 2020-05-17 22:17 - 000000000 ____D C:\Users\Mr.X\AppData\Local\D3DSCache
2020-05-31 11:28 - 2020-05-17 21:50 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-05-30 15:18 - 2019-03-19 07:00 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2020-05-30 15:18 - 2019-03-19 07:00 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2020-05-30 15:18 - 2019-03-19 07:00 - 000060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2020-05-30 15:18 - 2019-03-19 07:00 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2020-05-30 15:18 - 2019-03-19 07:00 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2020-05-30 15:18 - 2019-03-19 07:00 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2020-05-30 15:18 - 2019-03-19 07:00 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2020-05-30 15:18 - 2019-03-19 07:00 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2020-05-30 15:18 - 2019-03-19 07:00 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2020-05-30 15:18 - 2019-03-19 07:00 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2020-05-30 15:18 - 2019-03-19 07:00 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2020-05-30 15:18 - 2019-03-19 06:57 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2020-05-30 15:18 - 2019-03-19 06:57 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2020-05-30 15:18 - 2019-03-19 06:57 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2020-05-30 15:18 - 2019-03-19 06:57 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2020-05-30 15:18 - 2019-03-19 06:57 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2020-05-30 15:18 - 2019-03-19 06:57 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2020-05-30 15:18 - 2019-03-19 06:57 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2020-05-30 14:40 - 2020-05-17 21:48 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2020-05-30 11:25 - 2020-05-20 12:34 - 000012945 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-05-29 20:43 - 2020-05-19 21:31 - 000012954 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-05-27 19:50 - 2020-05-17 22:11 - 000000000 ____D C:\Users\Mr.X\AppData\Local\NVIDIA Corporation
2020-05-25 21:41 - 2020-05-20 20:11 - 000006565 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivna prehliadka PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Preventivna prehliadka PC
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro
Som jednoduchý človek ktorý má rád techniku a prírodu
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro
Som jednoduchý človek ktorý má rád techniku a prírodu
Re: Preventivna prehliadka PC
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-06-2020
Ran by Mr.X (23-06-2020 14:30:08)
Running from C:\Users\Mr.X\Desktop
Windows 10 Home Version 1909 18363.900 (X64) (2020-05-17 19:23:58)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2296205798-3636821469-339802987-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2296205798-3636821469-339802987-503 - Limited - Disabled)
Guest (S-1-5-21-2296205798-3636821469-339802987-501 - Limited - Disabled)
Mr.X (S-1-5-21-2296205798-3636821469-339802987-1001 - Administrator - Enabled) => C:\Users\Mr.X
WDAGUtilityAccount (S-1-5-21-2296205798-3636821469-339802987-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Free (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Aktualizácie NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Blitz 1.10.14 (HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.10.14 - Blitz Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.66 - Piriform)
Discord (HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GIMP 2.10.20 (HKLM\...\GIMP-2_is1) (Version: 2.10.20 - The GIMP Team)
Kaspersky Free (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Free (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.54 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.31 - )
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mozilla Firefox 77.0.1 (x64 sk) (HKLM\...\Mozilla Firefox 77.0.1 (x64 sk)) (Version: 77.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 76.0.1 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
NVIDIA Grafický ovládač 446.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 446.14 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.26 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
ProtonVPN (HKLM-x32\...\{8C8177CB-EBFD-40E1-8948-B032F285A3FC}) (Version: 1.15.0 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.15.0) (Version: 1.15.0 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
TrucksBook Client verze 1.3.5 (HKLM-x32\...\TrucksBook Client_is1) (Version: 1.3.5 - TrucksBook)
VALORANT (HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.2.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Packages:
=========
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.957.0_x64__56jybvy8sckqj [2020-06-22] (NVIDIA Corp.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => E:\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => E:\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2eaf9d620160f138\nvshext.dll [2020-05-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Mr.X\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
==================== Loaded Modules (Whitelisted) =============
2020-06-19 13:15 - 2020-06-19 13:15 - 001655296 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_8444db7d32915e4c\MFC80U.DLL
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2296205798-3636821469-339802987-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mr.X\AppData\Roaming\Mozilla\Firefox\Pozadie plochy.bmp
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{5F9C3EEC-B844-4843-8EED-15B8BC4F1668}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AFDD4EA9-9F0B-4AF3-B198-9D5ED7370A27}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{432FF41C-C41F-46BC-BC7B-CB256D61B012}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AB4078E8-A2BF-4BE6-BE8D-862A16643879}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{17E7EACE-6773-47C7-9403-FBCE8A7221CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A5F8A3BB-644C-4D67-B2EE-77D3ABFFF6D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{39DD59B1-0AE5-442D-AF69-1EFF80EDE5E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{159900AC-FE7E-43D5-A560-A789C21C9042}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{50DD6BA4-C9D9-4443-B843-772724FD6B0C}D:\games\epic games - games\farmingsimulator19\x64\farmingsimulator2019game.exe] => (Allow) D:\games\epic games - games\farmingsimulator19\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [UDP Query User{E1E81F6D-EE8D-4790-A3B8-3FB72C236453}D:\games\epic games - games\farmingsimulator19\x64\farmingsimulator2019game.exe] => (Allow) D:\games\epic games - games\farmingsimulator19\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{22518B32-E8A7-4B05-8746-AB63CC94409F}] => (Allow) E:\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{669F66D3-2D3D-477B-81B9-73319F5C7FB6}] => (Allow) E:\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{D4227BF2-547C-406A-8238-19E14F19C338}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{0FA160FF-CA83-476F-88B1-48E44D811EA1}C:\users\mr.x\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\mr.x\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{44DC70FC-E428-4929-8231-EAC6AB578B5D}C:\users\mr.x\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\mr.x\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [{91534295-6426-4C39-8018-2715415131A9}] => (Allow) D:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{40E983F5-E234-4F2C-9AD3-3D759D0A61DF}] => (Allow) D:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E86E998B-3FEC-4AFB-8FDB-568500F40E09}] => (Allow) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{24A99F42-3B5D-4D13-98E3-3F006C1EE5B2}] => (Allow) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37D1652F-321A-4325-B39D-760BBB051122}] => (Allow) D:\Games\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{B683FC31-7A08-469D-AEB3-D2039C36E55E}] => (Allow) D:\Games\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{2726658F-4A2E-405D-BC79-6ACEDABD7EF1}] => (Allow) D:\Games\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{2EA27740-656A-4B59-AF34-B71DA2E1C6CC}] => (Allow) D:\Games\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:111.22 GB) (Free:78.69 GB) (71%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/23/2020 02:20:47 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.
Error: (06/21/2020 06:11:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: firefox.exe, verzia: 77.0.1.7458, časová značka: 0x5ed6e1ae
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.18362.815, časová značka: 0xb29ecf52
Kód výnimky: 0xc0000374
Odstup chyby: 0x00000000000f9229
Identifikácia chybujúceho procesu: 0x1358
Čas spustenia chybujúcej aplikácie: 0x01d647e6ac1619bc
Cesta chybujúcej aplikácie: C:\Program Files\Mozilla Firefox\firefox.exe
Cesta chybujúceho modulu: C:\Windows\SYSTEM32\ntdll.dll
Identifikácia hlásenia: f59fc822-0b8f-420a-8ae8-7dc18e776532
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (06/19/2020 12:22:44 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe
Error: (06/15/2020 09:21:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.18362.836, časová značka: 0x3b8d781d
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.18362.815, časová značka: 0xb29ecf52
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000009fe10
Identifikácia chybujúceho procesu: 0x26b0
Čas spustenia chybujúcej aplikácie: 0x01d642e5a2bd47d9
Cesta chybujúcej aplikácie: C:\Windows\system32\AUDIODG.EXE
Cesta chybujúceho modulu: C:\Windows\SYSTEM32\ntdll.dll
Identifikácia hlásenia: d0789968-9529-4660-a566-b6ead16ee404
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (06/14/2020 12:13:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.18362.836, časová značka: 0x3b8d781d
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.18362.815, časová značka: 0xb29ecf52
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000009c734
Identifikácia chybujúceho procesu: 0x2248
Čas spustenia chybujúcej aplikácie: 0x01d642346add9ff4
Cesta chybujúcej aplikácie: C:\Windows\system32\AUDIODG.EXE
Cesta chybujúceho modulu: C:\Windows\SYSTEM32\ntdll.dll
Identifikácia hlásenia: e5de28a4-53b4-4543-819b-68601ee2fc83
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (06/08/2020 10:27:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.18362.836, časová značka: 0x3b8d781d
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.18362.815, časová značka: 0xb29ecf52
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000009c234
Identifikácia chybujúceho procesu: 0x4a8
Čas spustenia chybujúcej aplikácie: 0x01d63d6e98c7dd36
Cesta chybujúcej aplikácie: C:\Windows\system32\AUDIODG.EXE
Cesta chybujúceho modulu: C:\Windows\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 821f7b34-fcd9-408f-878b-d1d66fd3d153
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (06/04/2020 10:27:28 AM) (Source: Firefox Default Browser Agent) (EventID: 5) (User: )
Description: Event-ID 5
Error: (05/17/2020 09:27:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: StartMenuExperienceHost (3532,R,98) TILEREPOSITORYS-1-5-21-2296205798-3636821469-339802987-1001: Error -1023 (0xfffffc01) occurred while opening logfile C:\Users\Mr.X\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Windows Defender:
===================================
Date: 2020-06-17 19:37:15.296
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.315.869.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17000.7
Error code: 0x80240017
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.
Date: 2020-06-17 09:57:50.932
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.315.869.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17000.7
Error code: 0x80240017
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.
Date: 2020-06-17 08:29:50.701
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.315.869.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17000.7
Error code: 0x80070645
Error description: This action is only valid for products that are currently installed.
Date: 2020-06-17 08:29:50.700
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.315.869.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17000.7
Error code: 0x80070645
Error description: This action is only valid for products that are currently installed.
Date: 2020-06-17 08:29:50.700
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.315.869.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17000.7
Error code: 0x80070645
Error description: This action is only valid for products that are currently installed.
CodeIntegrity:
===================================
Date: 2020-06-23 14:14:49.204
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 14:14:13.121
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 14:14:09.840
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 14:14:09.636
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 14:14:09.609
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 14:12:53.052
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 12:42:10.667
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 12:41:42.602
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Award Software International, Inc. F7 11/24/2010
Motherboard: Gigabyte Technology Co., Ltd. GA-880GA-UD3H
Processor: AMD Phenom(tm) II X4 965 Processor
Percentage of memory in use: 38%
Total physical RAM: 8188.53 MB
Available physical RAM: 5054.46 MB
Total Virtual: 9468.53 MB
Available Virtual: 4918.32 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.22 GB) (Free:78.69 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:465.76 GB) (Free:427.64 GB) NTFS
Drive e: () (Fixed) (Total:465.75 GB) (Free:422.63 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 2DBDBCBE)
Partition 1: (Active) - (Size=111.2 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6C90B5D4)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by Mr.X (23-06-2020 14:30:08)
Running from C:\Users\Mr.X\Desktop
Windows 10 Home Version 1909 18363.900 (X64) (2020-05-17 19:23:58)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2296205798-3636821469-339802987-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2296205798-3636821469-339802987-503 - Limited - Disabled)
Guest (S-1-5-21-2296205798-3636821469-339802987-501 - Limited - Disabled)
Mr.X (S-1-5-21-2296205798-3636821469-339802987-1001 - Administrator - Enabled) => C:\Users\Mr.X
WDAGUtilityAccount (S-1-5-21-2296205798-3636821469-339802987-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Free (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Aktualizácie NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Blitz 1.10.14 (HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.10.14 - Blitz Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.66 - Piriform)
Discord (HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GIMP 2.10.20 (HKLM\...\GIMP-2_is1) (Version: 2.10.20 - The GIMP Team)
Kaspersky Free (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Free (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.54 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.31 - )
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mozilla Firefox 77.0.1 (x64 sk) (HKLM\...\Mozilla Firefox 77.0.1 (x64 sk)) (Version: 77.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 76.0.1 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
NVIDIA Grafický ovládač 446.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 446.14 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.26 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
ProtonVPN (HKLM-x32\...\{8C8177CB-EBFD-40E1-8948-B032F285A3FC}) (Version: 1.15.0 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.15.0) (Version: 1.15.0 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
TrucksBook Client verze 1.3.5 (HKLM-x32\...\TrucksBook Client_is1) (Version: 1.3.5 - TrucksBook)
VALORANT (HKU\S-1-5-21-2296205798-3636821469-339802987-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.2.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Packages:
=========
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.957.0_x64__56jybvy8sckqj [2020-06-22] (NVIDIA Corp.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => E:\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => E:\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2eaf9d620160f138\nvshext.dll [2020-05-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\ShellEx.dll [2020-05-17] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Mr.X\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
==================== Loaded Modules (Whitelisted) =============
2020-06-19 13:15 - 2020-06-19 13:15 - 001655296 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_8444db7d32915e4c\MFC80U.DLL
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2296205798-3636821469-339802987-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mr.X\AppData\Roaming\Mozilla\Firefox\Pozadie plochy.bmp
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{5F9C3EEC-B844-4843-8EED-15B8BC4F1668}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AFDD4EA9-9F0B-4AF3-B198-9D5ED7370A27}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{432FF41C-C41F-46BC-BC7B-CB256D61B012}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AB4078E8-A2BF-4BE6-BE8D-862A16643879}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{17E7EACE-6773-47C7-9403-FBCE8A7221CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A5F8A3BB-644C-4D67-B2EE-77D3ABFFF6D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{39DD59B1-0AE5-442D-AF69-1EFF80EDE5E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{159900AC-FE7E-43D5-A560-A789C21C9042}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{50DD6BA4-C9D9-4443-B843-772724FD6B0C}D:\games\epic games - games\farmingsimulator19\x64\farmingsimulator2019game.exe] => (Allow) D:\games\epic games - games\farmingsimulator19\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [UDP Query User{E1E81F6D-EE8D-4790-A3B8-3FB72C236453}D:\games\epic games - games\farmingsimulator19\x64\farmingsimulator2019game.exe] => (Allow) D:\games\epic games - games\farmingsimulator19\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{22518B32-E8A7-4B05-8746-AB63CC94409F}] => (Allow) E:\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{669F66D3-2D3D-477B-81B9-73319F5C7FB6}] => (Allow) E:\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{D4227BF2-547C-406A-8238-19E14F19C338}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{0FA160FF-CA83-476F-88B1-48E44D811EA1}C:\users\mr.x\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\mr.x\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{44DC70FC-E428-4929-8231-EAC6AB578B5D}C:\users\mr.x\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\mr.x\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [{91534295-6426-4C39-8018-2715415131A9}] => (Allow) D:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{40E983F5-E234-4F2C-9AD3-3D759D0A61DF}] => (Allow) D:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E86E998B-3FEC-4AFB-8FDB-568500F40E09}] => (Allow) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{24A99F42-3B5D-4D13-98E3-3F006C1EE5B2}] => (Allow) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37D1652F-321A-4325-B39D-760BBB051122}] => (Allow) D:\Games\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{B683FC31-7A08-469D-AEB3-D2039C36E55E}] => (Allow) D:\Games\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{2726658F-4A2E-405D-BC79-6ACEDABD7EF1}] => (Allow) D:\Games\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{2EA27740-656A-4B59-AF34-B71DA2E1C6CC}] => (Allow) D:\Games\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:111.22 GB) (Free:78.69 GB) (71%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/23/2020 02:20:47 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.
Error: (06/21/2020 06:11:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: firefox.exe, verzia: 77.0.1.7458, časová značka: 0x5ed6e1ae
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.18362.815, časová značka: 0xb29ecf52
Kód výnimky: 0xc0000374
Odstup chyby: 0x00000000000f9229
Identifikácia chybujúceho procesu: 0x1358
Čas spustenia chybujúcej aplikácie: 0x01d647e6ac1619bc
Cesta chybujúcej aplikácie: C:\Program Files\Mozilla Firefox\firefox.exe
Cesta chybujúceho modulu: C:\Windows\SYSTEM32\ntdll.dll
Identifikácia hlásenia: f59fc822-0b8f-420a-8ae8-7dc18e776532
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (06/19/2020 12:22:44 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe
Error: (06/15/2020 09:21:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.18362.836, časová značka: 0x3b8d781d
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.18362.815, časová značka: 0xb29ecf52
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000009fe10
Identifikácia chybujúceho procesu: 0x26b0
Čas spustenia chybujúcej aplikácie: 0x01d642e5a2bd47d9
Cesta chybujúcej aplikácie: C:\Windows\system32\AUDIODG.EXE
Cesta chybujúceho modulu: C:\Windows\SYSTEM32\ntdll.dll
Identifikácia hlásenia: d0789968-9529-4660-a566-b6ead16ee404
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (06/14/2020 12:13:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.18362.836, časová značka: 0x3b8d781d
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.18362.815, časová značka: 0xb29ecf52
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000009c734
Identifikácia chybujúceho procesu: 0x2248
Čas spustenia chybujúcej aplikácie: 0x01d642346add9ff4
Cesta chybujúcej aplikácie: C:\Windows\system32\AUDIODG.EXE
Cesta chybujúceho modulu: C:\Windows\SYSTEM32\ntdll.dll
Identifikácia hlásenia: e5de28a4-53b4-4543-819b-68601ee2fc83
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (06/08/2020 10:27:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.18362.836, časová značka: 0x3b8d781d
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.18362.815, časová značka: 0xb29ecf52
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000009c234
Identifikácia chybujúceho procesu: 0x4a8
Čas spustenia chybujúcej aplikácie: 0x01d63d6e98c7dd36
Cesta chybujúcej aplikácie: C:\Windows\system32\AUDIODG.EXE
Cesta chybujúceho modulu: C:\Windows\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 821f7b34-fcd9-408f-878b-d1d66fd3d153
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (06/04/2020 10:27:28 AM) (Source: Firefox Default Browser Agent) (EventID: 5) (User: )
Description: Event-ID 5
Error: (05/17/2020 09:27:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: StartMenuExperienceHost (3532,R,98) TILEREPOSITORYS-1-5-21-2296205798-3636821469-339802987-1001: Error -1023 (0xfffffc01) occurred while opening logfile C:\Users\Mr.X\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (06/23/2020 02:12:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MUIPQGN)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Windows Defender:
===================================
Date: 2020-06-17 19:37:15.296
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.315.869.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17000.7
Error code: 0x80240017
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.
Date: 2020-06-17 09:57:50.932
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.315.869.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17000.7
Error code: 0x80240017
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.
Date: 2020-06-17 08:29:50.701
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.315.869.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17000.7
Error code: 0x80070645
Error description: This action is only valid for products that are currently installed.
Date: 2020-06-17 08:29:50.700
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.315.869.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17000.7
Error code: 0x80070645
Error description: This action is only valid for products that are currently installed.
Date: 2020-06-17 08:29:50.700
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.315.869.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17000.7
Error code: 0x80070645
Error description: This action is only valid for products that are currently installed.
CodeIntegrity:
===================================
Date: 2020-06-23 14:14:49.204
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 14:14:13.121
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 14:14:09.840
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 14:14:09.636
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 14:14:09.609
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 14:12:53.052
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 12:42:10.667
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2020-06-23 12:41:42.602
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Award Software International, Inc. F7 11/24/2010
Motherboard: Gigabyte Technology Co., Ltd. GA-880GA-UD3H
Processor: AMD Phenom(tm) II X4 965 Processor
Percentage of memory in use: 38%
Total physical RAM: 8188.53 MB
Available physical RAM: 5054.46 MB
Total Virtual: 9468.53 MB
Available Virtual: 4918.32 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.22 GB) (Free:78.69 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:465.76 GB) (Free:427.64 GB) NTFS
Drive e: () (Fixed) (Total:465.75 GB) (Free:422.63 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 2DBDBCBE)
Partition 1: (Active) - (Size=111.2 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6C90B5D4)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro
Som jednoduchý človek ktorý má rád techniku a prírodu
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro
Som jednoduchý človek ktorý má rád techniku a prírodu
Re: Preventivna prehliadka PC
+ log AdwCleaner
# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-23-2020
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1406 octets] - [04/06/2020 16:27:09]
AdwCleaner[S01].txt - [1467 octets] - [23/06/2020 15:51:18]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Kazdy den (2x) raz cez den a raz vecer pred spanim vycistim PC Kaspersky (free)
Zatiaľ nikdy nič nenašlo
# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-23-2020
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1406 octets] - [04/06/2020 16:27:09]
AdwCleaner[S01].txt - [1467 octets] - [23/06/2020 15:51:18]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Kazdy den (2x) raz cez den a raz vecer pred spanim vycistim PC Kaspersky (free)
Zatiaľ nikdy nič nenašlo
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro
Som jednoduchý človek ktorý má rád techniku a prírodu
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro
Som jednoduchý človek ktorý má rád techniku a prírodu