Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivna kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Gabo
Návštěvník
Návštěvník
Příspěvky: 344
Registrován: 25 kvě 2004 22:14
Bydliště: Slovakia

Preventivna kontrola

#1 Příspěvek od Gabo »

Ahoj, prosím o kontrolu logu po dlhšej dobe :) (pridávam aj log FRST v prílohe)

Logfile of random's system information tool 1.10 (written by random/random)
Run by linco at 2020-06-26 11:21:27
Microsoft Windows 10 Home
System drive C: has 26 GB (22%) free of 121 GB
Total RAM: 8073 MB (22% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:21:41, on 26. 6. 2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)
Boot mode: Normal

Running processes:
C:\WINDOWS\SysWOW64\UMonit64.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Users\linco\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
C:\Program Files\AVAST Software\SecureLine\Vpn.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\AVAST Software\SecureLine\VpnNM.exe
C:\Program Files\trend micro\linco.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus17win10.msn.com/?pc=ASTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus17win10.msn.com/?pc=ASTE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O4 - HKCU\..\Run: [OneDrive] "C:\Users\linco\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [MyDriveConnect.exe] C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe -startwithoutDA
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - Global Startup: Avast SecureLine VPN.lnk = C:\Program Files\AVAST Software\SecureLine\Vpn.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{42582e72-4c63-4be9-a426-7f1e4414f4ae}: NameServer = 100.120.76.1
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASUS Battery Health Charging Service (AsBhcService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall Service (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Avast Cleanup (CleanupPSvc) - AVAST Software - C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_353ae - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @oem9.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Unknown owner - C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Reader Update Service (FoxitReaderUpdateService) - Foxit Software Inc. - C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @oem23.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe
O23 - Service: Mobile Broadband HL Service - Unknown owner - C:\Program Files (x86)\MobileBrServ\mbbservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Intel Security PEF Service (PEFService) - Intel Security, Inc. - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Avast SecureLine VPN (SecureLine) - AVAST Software - C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 14372 bytes

======Listing Processes======









C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-1b1d41e0-929d-4466-a804-4084d3b9ba47 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-2a7b1815-f351-4452-93c6-2cf4a5e1cdba -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-7f2edb98-65db-44be-95ba-e6e4a5befe1d -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-faa123c5-0198-4938-906e-7a83494c69db -LifetimeId:6b712de8-c1dc-4b6b-8ba6-67ce2bf99cf7 -DeviceGroupId: -HostArg:0
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
dashost.exe {e04dfbb8-48de-4b20-bd39785ed95e2cf7}
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm

C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS

C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection

"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\SysWOW64\UMonit64.exe
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\system32\WLANExt.exe 2147836738736
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Explorer.EXE
"C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxEM.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe"
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\WINDOWS\system32\ibtsiva
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -s CertPropSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe"
"C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files (x86)\MobileBrServ\mbbservice.exe" -service
"C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
"C:\WINDOWS\TEMP\DPTF\esif_assist_64.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="5D68BEFE-39A0-39AE-F829-3A04F8CC90AA" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s Netman
rundll32.exe "c:\program files\nvidia corporation\nvstreamsrv\rxdiag.dll" RxDiagSetRuntimeMessagePump

"C:\Windows\System32\SecurityHealthSystray.exe"

AvastUI.exe /nogui
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\AVAST Software\Cleanup\TuneupUI.exe" /nogui
"C:\Users\linco\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe" -startwithoutDA
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2005.5739.0_x64__8wekyb3d8bbwe\Cortana.exe" -ServerName:App.AppX2y379sjp88wjq1y80217mddj3fargf2y.mca
"C:\Program Files\AVAST Software\SecureLine\Vpn.exe" /nogui
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --field-trial-handle=2020,17810266452074623750,15062846465732684239,131072 --disable-features=VizDisplayCompositor --no-sandbox --log-file="C:\Users\linco\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Users\linco\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --service-request-channel-token=10730321658990625249 --mojo-platform-channel-handle=2108 /prefetch:2
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /AECBYLISTENTOSTATUS
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --autoplay-policy=no-user-gesture-required --log-file="C:\Users\linco\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --field-trial-handle=2020,17810266452074623750,15062846465732684239,131072 --disable-features=VizDisplayCompositor --service-pipe-token=13122051569006484559 --lang=en-US --log-file="C:\Users\linco\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=13122051569006484559 --renderer-client-id=3 --mojo-platform-channel-handle=2592 /prefetch:1
C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe" -ServerName:InputApp.AppX9jnwykgrccxc8by3hsrsh07r423xzvav.mca
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Mozilla Firefox\firefox.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.0.1667703296\1235101144" -parentBuildID 20200602222727 -prefsHandle 1980 -prefMapHandle 1948 -prefsLen 1 -prefMapSize 239391 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 2060 gpu
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.3.560427133\1913009363" -childID 1 -isForBrowser -prefsHandle 2856 -prefMapHandle 2852 -prefsLen 145 -prefMapSize 239391 -parentBuildID 20200602222727 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 2868 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.13.456215550\1280149741" -childID 2 -isForBrowser -prefsHandle 5048 -prefMapHandle 5064 -prefsLen 6580 -prefMapSize 239391 -parentBuildID 20200602222727 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 5116 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.20.383281315\220137223" -childID 3 -isForBrowser -prefsHandle 5852 -prefMapHandle 5848 -prefsLen 7345 -prefMapSize 239391 -parentBuildID 20200602222727 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 5820 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.27.143415822\1449925994" -childID 4 -isForBrowser -prefsHandle 5552 -prefMapHandle 5620 -prefsLen 8622 -prefMapSize 239391 -parentBuildID 20200602222727 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 5656 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.34.2091832865\486508919" -childID 5 -isForBrowser -prefsHandle 6168 -prefMapHandle 6272 -prefsLen 8622 -prefMapSize 239391 -parentBuildID 20200602222727 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 6320 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.41.1468974512\1259908342" -childID 6 -isForBrowser -prefsHandle 6292 -prefMapHandle 6088 -prefsLen 8622 -prefMapSize 239391 -parentBuildID 20200602222727 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 6480 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.48.1974131197\1798638546" -childID 7 -isForBrowser -prefsHandle 6584 -prefMapHandle 6588 -prefsLen 8622 -prefMapSize 239391 -parentBuildID 20200602222727 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 6576 tab
"C:\Program Files\AVAST Software\SecureLine\VpnNM.exe" "C:\Program Files\AVAST Software\SecureLine\VpnNM_firefox.json" secureline-vpn@avast.com
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc

C:\Windows\System32\CompPkgSrv.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"

"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=10088,976108174582851390,3588671448854368425,131072 --no-sandbox --log-file="C:\Users\linco\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.4.2410)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --force-device-scale-factor=1.25 --pack_loading_disabled=1 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAMAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --service-request-channel-token=12179697267659362824 --mojo-platform-channel-handle=6288 /prefetch:2
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.69.340693647\844199937" -parentBuildID 20200602222727 -prefsHandle 9604 -prefMapHandle 9588 -prefsLen 9143 -prefMapSize 239391 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 11276 rdd
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20061.106.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\system32\AUDIODG.EXE 0x55c
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.88.1135772208\1220702902" -childID 12 -isForBrowser -prefsHandle 11360 -prefMapHandle 11232 -prefsLen 9282 -prefMapSize 239391 -parentBuildID 20200602222727 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 11760 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.102.915631501\231477972" -childID 14 -isForBrowser -prefsHandle 12268 -prefMapHandle 3668 -prefsLen 9282 -prefMapSize 239391 -parentBuildID 20200602222727 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 4364 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="15956.117.778742797\161335875" -childID 16 -isForBrowser -prefsHandle 7812 -prefMapHandle 5528 -prefsLen 9327 -prefMapSize 239391 -parentBuildID 20200602222727 -appdir "C:\Program Files\Mozilla Firefox\browser" - 15956 "\\.\pipe\gecko-crash-server-pipe.15956" 12200 tab
C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 788 792 800 8192 796 772
C:\Windows\System32\smartscreen.exe -Embedding
"D:\RSITx64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost

======Scheduled tasks folder======

C:\WINDOWS\tasks\Avast SecureLine VPN Update.job - C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\WpsExternal_20161114022915.job - C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe /wpscloudlaunch /wpsexternal /from=task

=========Mozilla firefox=========

ProfilePath - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default

"sparalarm@chip.de"=C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL


C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\extensions\
staged

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13 157904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2020-06-03 108136]
"TuneupUI.exe"=C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [2020-06-16 2573480]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\linco\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2020-06-02 1591656]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2020-05-22 29072568]
"MyDriveConnect.exe"=C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2020-05-03 2161624]
"Skype for Desktop"=C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [2020-06-09 91683688]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Avast SecureLine VPN.lnk - C:\Program Files\AVAST Software\SecureLine\Vpn.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"aux2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave3"=wdmaud.drv

======File associations======

.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2020-06-26 11:21:28 ----D---- C:\Program Files\trend micro
2020-06-26 11:21:27 ----D---- C:\rsit
2020-06-20 23:05:24 ----D---- C:\ProgramData\Microsoft OneDrive
2020-06-20 23:03:14 ----SHD---- C:\ProgramData\Templates
2020-06-20 23:03:14 ----SHD---- C:\ProgramData\Start Menu
2020-06-20 23:03:14 ----SHD---- C:\ProgramData\Documents
2020-06-20 23:03:14 ----SHD---- C:\ProgramData\Desktop
2020-06-20 23:03:14 ----SHD---- C:\ProgramData\Application Data
2020-06-20 23:01:13 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-20 22:57:45 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2020-06-20 22:55:32 ----D---- C:\WINDOWS\system32\SleepStudy
2020-06-20 22:55:32 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2020-06-20 22:55:30 ----D---- C:\WINDOWS\Prefetch
2020-06-20 22:55:28 ----ASH---- C:\DumpStack.log.tmp
2020-06-20 22:55:25 ----D---- C:\Windows.old
2020-06-20 22:54:26 ----A---- C:\WINDOWS\system32\drivers\WinSetupBoot.sys
2020-06-20 21:45:36 ----SD---- C:\Users\linco\AppData\Roaming\Microsoft
2020-06-20 21:44:30 ----AS---- C:\WINDOWS\bootstat.dat
2020-06-20 21:43:18 ----D---- C:\WINDOWS\system32\Microsoft
2020-06-20 21:43:18 ----D---- C:\WINDOWS\ServiceProfiles
2020-06-20 21:41:41 ----D---- C:\ProgramData\ssh
2020-06-20 21:38:02 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2020-06-20 21:38:02 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2020-06-20 21:38:02 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2020-06-20 21:38:01 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2020-06-20 21:38:01 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2020-06-20 21:38:00 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2020-06-20 21:38:00 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2020-06-20 21:38:00 ----A---- C:\WINDOWS\system32\wmp.dll
2020-06-20 21:38:00 ----A---- C:\WINDOWS\system32\msra.exe
2020-06-20 21:38:00 ----A---- C:\WINDOWS\system32\fveapibase.dll
2020-06-20 21:38:00 ----A---- C:\WINDOWS\system32\fveapi.dll
2020-06-20 21:38:00 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2020-06-20 21:38:00 ----A---- C:\WINDOWS\system32\bdesvc.dll
2020-06-20 21:37:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2020-06-20 21:37:59 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2020-06-20 21:37:59 ----A---- C:\WINDOWS\SYSWOW64\ConsoleLogon.dll
2020-06-20 21:37:59 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2020-06-20 21:37:59 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2020-06-20 21:37:59 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2020-06-20 21:37:59 ----A---- C:\WINDOWS\system32\wbengine.exe
2020-06-20 21:37:59 ----A---- C:\WINDOWS\system32\wbadmin.exe
2020-06-20 21:37:59 ----A---- C:\WINDOWS\system32\TSSessionUX.dll
2020-06-20 21:37:59 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-06-20 21:37:59 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2020-06-20 21:37:53 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-06-20 21:37:53 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-06-20 21:37:53 ----A---- C:\WINDOWS\system32\cdp.dll
2020-06-20 21:37:53 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2020-06-20 21:37:52 ----A---- C:\WINDOWS\SYSWOW64\AccountsRt.dll
2020-06-20 21:37:52 ----A---- C:\WINDOWS\system32\notepad.exe
2020-06-20 21:37:52 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2020-06-20 21:37:52 ----A---- C:\WINDOWS\notepad.exe
2020-06-20 21:37:50 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-06-20 21:37:50 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\WMNetMgr.dll
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\wmidx.dll
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\mswmdm.dll
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\MSFlacEncoder.dll
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\HoloShellRuntime.dll
2020-06-20 21:37:39 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\system32\MixedReality.Broker.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\system32\HoloSHExtensions.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\system32\HolographicRuntimes.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2020-06-20 21:37:38 ----A---- C:\WINDOWS\system32\Analog.Shell.Broker.dll
2020-06-20 21:37:37 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-06-20 21:37:37 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\WMNetMgr.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\wmidx.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\winmde.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\mswmdm.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\HoloShellRuntime.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-06-20 21:37:36 ----A---- C:\WINDOWS\system32\DMRServer.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\MSFlacEncoder.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\mfsvr.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\mfplat.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-06-20 21:37:35 ----A---- C:\WINDOWS\system32\mfds.dll
2020-06-20 21:37:34 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2020-06-20 21:37:34 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2020-06-20 21:37:34 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2020-06-20 21:37:34 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-06-20 21:37:34 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2020-06-20 21:37:34 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-06-20 21:37:34 ----A---- C:\WINDOWS\system32\mf.dll
2020-06-20 21:37:31 ----A---- C:\WINDOWS\SYSWOW64\WinSATAPI.dll
2020-06-20 21:37:31 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2020-06-20 21:37:31 ----A---- C:\WINDOWS\SYSWOW64\SecurityCenterBrokerPS.dll
2020-06-20 21:37:31 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2020-06-20 21:37:31 ----A---- C:\WINDOWS\SYSWOW64\psisdecd.dll
2020-06-20 21:37:31 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2020-06-20 21:37:24 ----A---- C:\WINDOWS\SYSWOW64\wkspbrokerAx.dll
2020-06-20 21:37:24 ----A---- C:\WINDOWS\SYSWOW64\wavemsp.dll
2020-06-20 21:37:24 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2020-06-20 21:37:24 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2020-06-20 21:37:24 ----A---- C:\WINDOWS\SYSWOW64\termmgr.dll
2020-06-20 21:37:24 ----A---- C:\WINDOWS\SYSWOW64\tapisrv.dll
2020-06-20 21:37:24 ----A---- C:\WINDOWS\SYSWOW64\tapi3.dll
2020-06-20 21:37:24 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-06-20 21:37:24 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\msltus40.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\cic.dll
2020-06-20 21:37:23 ----A---- C:\WINDOWS\SYSWOW64\cdosys.dll
2020-06-20 21:37:22 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-06-20 21:37:22 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-06-20 21:37:22 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-06-20 21:37:22 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2020-06-20 21:37:22 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-06-20 21:37:22 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-06-20 21:37:22 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-06-20 21:37:21 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-06-20 21:37:21 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2020-06-20 21:37:21 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-06-20 21:37:21 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2020-06-20 21:37:21 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-06-20 21:37:21 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-06-20 21:37:21 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\wiatrace.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\wiadss.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\wiaaut.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\sti.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\srumapi.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\imapi.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\iassdo.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\iasrecst.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\iasads.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\fdWSD.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\fdSSDP.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\dfrgui.exe
2020-06-20 21:37:20 ----A---- C:\WINDOWS\SYSWOW64\azroles.dll
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\sysmain.dll
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\SrTasks.exe
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\srrstr.dll
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\srcore.dll
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\SecurityCenterBrokerPS.dll
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\SecurityCenterBroker.dll
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\rstrui.exe
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\recdisc.exe
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\rdbui.dll
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-06-20 21:37:19 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-06-20 21:37:12 ----A---- C:\WINDOWS\system32\Windows.Internal.PredictionUnit.dll
2020-06-20 21:37:12 ----A---- C:\WINDOWS\system32\Spectrum.exe
2020-06-20 21:37:12 ----A---- C:\WINDOWS\system32\ProvSysprep.dll
2020-06-20 21:37:12 ----A---- C:\WINDOWS\system32\icsvcext.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\wkspbrokerAx.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\WinSATAPI.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\WinSAT.exe
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\VAN.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\tsmf.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\tsgqec.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\termsrv.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\qedit.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\psisdecd.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\FileHistory.exe
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2020-06-20 21:37:11 ----A---- C:\WINDOWS\system32\CPFilters.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\wsp_health.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\wavemsp.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\termmgr.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\tapisrv.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\tapi3.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\rdpudd.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\rdpencom.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\rdpcore.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\rdpclip.exe
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\quartz.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\qdvd.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\nltest.exe
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\FsIso.exe
2020-06-20 21:37:10 ----A---- C:\WINDOWS\system32\devenum.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\wvc.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\WlanMM.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\systemreset.exe
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\reseteng.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\nshwfp.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\msi.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\LocationApi.dll
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2020-06-20 21:37:09 ----A---- C:\WINDOWS\system32\cic.dll
2020-06-20 21:37:08 ----A---- C:\WINDOWS\system32\mmc.exe
2020-06-20 21:37:08 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-06-20 21:37:08 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-06-20 21:37:08 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2020-06-20 21:37:08 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-06-20 21:37:08 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-06-20 21:37:08 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-06-20 21:37:08 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-06-20 21:37:08 ----A---- C:\WINDOWS\system32\cdosys.dll
2020-06-20 21:37:07 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-06-20 21:37:07 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-06-20 21:37:06 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-06-20 21:37:06 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-06-20 21:37:06 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\wiatrace.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\wiaservc.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\wiarpc.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\wiadss.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\wiaaut.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\sti_ci.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\sti.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\mshtmled.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\jscript.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\imapi2.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\imapi.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-06-20 21:37:05 ----A---- C:\WINDOWS\system32\dxtrans.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\wsecedit.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\werui.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\StorSvc.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\iassdo.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\iasrecst.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\iasnap.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\iasads.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\easwrt.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\dialclient.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\dfrgui.exe
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\defragsvc.dll
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\Defrag.exe
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\DataExchangeHost.exe
2020-06-20 21:36:58 ----A---- C:\WINDOWS\system32\azroles.dll
2020-06-20 21:36:57 ----A---- C:\WINDOWS\system32\WinHvPlatform.dll
2020-06-20 21:36:57 ----A---- C:\WINDOWS\system32\WinHvEmulation.dll
2020-06-20 21:36:57 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2020-06-20 21:36:57 ----A---- C:\WINDOWS\system32\fdWSD.dll
2020-06-20 21:36:57 ----A---- C:\WINDOWS\system32\ConsentUxClient.dll
2020-06-20 21:36:57 ----A---- C:\WINDOWS\system32\computestorage.dll
2020-06-20 21:36:57 ----A---- C:\WINDOWS\system32\computecore.dll
2020-06-20 21:36:57 ----A---- C:\WINDOWS\system32\ClipUp.exe
2020-06-20 21:36:57 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\upnphost.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\upnpcont.exe
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\udhisapi.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\SgrmBroker.exe
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\securekernel.exe
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\resutils.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\NgcIso.exe
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\hvloader.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\fdSSDP.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\diagperf.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\clusapi.dll
2020-06-20 21:36:56 ----A---- C:\WINDOWS\system32\CIDiag.exe
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\rtmpltfm.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\rtmpal.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\rtmmvrortc.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\rtmcodecs.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\ortcengine.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\WwanRadioManager.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\wwanmm.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\srumsvc.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\srumapi.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\NgcIsoCtnr.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\DataUsageHandlers.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\csplte.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\CfgSPCellular.dll
2020-06-20 21:36:55 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\xpsservices.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\scecli.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\rtutils.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\rdpviewerax.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\printui.exe
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\nlmsprep.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\nlmproxy.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\msaatext.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2020-06-20 21:36:54 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2020-06-20 21:36:53 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2020-06-20 21:36:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-06-20 21:36:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-20 21:36:53 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2020-06-20 21:36:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2020-06-20 21:36:53 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2020-06-20 21:36:53 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\windowsperformancerecordercontrol.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\WerEnc.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\Websocket.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\msimg32.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\enterpriseresourcemanager.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2020-06-20 21:36:46 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.RetailInfo.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\PickerPlatform.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2020-06-20 21:36:45 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Compression.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Management.Workplace.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Devices.Sensors.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.AI.MachineLearning.Preview.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\CertEnrollCtrl.exe
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2020-06-20 21:36:44 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\WindowManagementAPI.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\profext.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\DiagnosticInvoker.dll
2020-06-20 21:36:43 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2020-06-20 21:36:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2020-06-20 21:36:42 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2020-06-20 21:36:42 ----A---- C:\WINDOWS\SYSWOW64\TaskApis.dll
2020-06-20 21:36:42 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2020-06-20 21:36:42 ----A---- C:\WINDOWS\SYSWOW64\PeopleAPIs.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\socialapis.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\PhoneOm.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\mbussdapi.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2020-06-20 21:36:35 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\TextShaping.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\LicenseManagerApi.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\InkObjCore.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\coloradapterclient.dll
2020-06-20 21:36:34 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Preview.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.Phone.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Printers.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Haptics.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\windows.applicationmodel.datatransfer.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\useractivitybroker.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\gamingtcui.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\ffbroker.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\DataExchange.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\AppExtension.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2020-06-20 21:36:33 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRClient.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRBroker.dll
2020-06-20 21:36:32 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\DeviceReactivation.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\atlthunk.dll
2020-06-20 21:36:31 ----A---- C:\WINDOWS\SYSWOW64\atl.dll
2020-06-20 21:36:30 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\VoipRT.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\SystemSettings.DataModel.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntimewindows.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntime.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\SYSWOW64\AarSvc.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\system32\spwizres.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\system32\spwizeng.dll
2020-06-20 21:36:24 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2020-06-20 21:36:23 ----A---- C:\WINDOWS\system32\TSpkg.dll
2020-06-20 21:36:23 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-06-20 21:36:23 ----A---- C:\WINDOWS\system32\pku2u.dll
2020-06-20 21:36:23 ----A---- C:\WINDOWS\system32\efswrt.dll
2020-06-20 21:36:23 ----A---- C:\WINDOWS\system32\credssp.dll
2020-06-20 21:36:22 ----A---- C:\WINDOWS\system32\rtmpltfm.dll
2020-06-20 21:36:22 ----A---- C:\WINDOWS\system32\rtmpal.dll
2020-06-20 21:36:22 ----A---- C:\WINDOWS\system32\rtmmvrortc.dll
2020-06-20 21:36:22 ----A---- C:\WINDOWS\system32\rtmcodecs.dll
2020-06-20 21:36:22 ----A---- C:\WINDOWS\system32\ortcengine.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\xpsservices.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\vpnike.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\tcpmon.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\shell32.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\scrrun.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\scecli.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\rtutils.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\rdpviewerax.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\RASMM.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\rasdlg.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\puiobj.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\puiapi.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\printui.exe
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\icsunattend.exe
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\findnetprinters.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\compstui.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\comdlg32.dll
2020-06-20 21:36:21 ----A---- C:\WINDOWS\system32\APMon.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\SettingsHandlers_IME.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\SettingsHandlers_Fonts.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\netshell.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\ncsi.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\msaatext.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\Family.Client.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\AudioHandlers.dll
2020-06-20 21:36:20 ----A---- C:\WINDOWS\system32\AboutSettingsHandlers.dll
2020-06-20 21:36:13 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2020-06-20 21:36:13 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-06-20 21:36:13 ----A---- C:\WINDOWS\system32\sxssrv.dll
2020-06-20 21:36:13 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-06-20 21:36:13 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2020-06-20 21:36:13 ----A---- C:\WINDOWS\system32\sppcext.dll
2020-06-20 21:36:13 ----A---- C:\WINDOWS\system32\schedsvc.dll
2020-06-20 21:36:13 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2020-06-20 21:36:13 ----A---- C:\WINDOWS\system32\InkEd.dll
2020-06-20 21:36:13 ----A---- C:\WINDOWS\system32\DeviceReactivation.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\wlidcli.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\wininet.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\urlmon.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\MUILanguageCleanup.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\lpremove.exe
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\lpksetup.exe
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\LockScreenData.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\LockController.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\jsproxy.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\gpapi.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\edgeIso.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\DismApi.dll
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\Dism.exe
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\AxInstUI.exe
2020-06-20 21:36:12 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\wuuhext.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\winsrvext.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\usermgr.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\tdh.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\t2embed.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\msimg32.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\msctf.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\mf3216.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\lpk.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\LogonController.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\gpsvc.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\Geolocation.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\fontsub.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\dciman32.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\DAMM.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\cryptui.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\credprovs.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2020-06-20 21:36:11 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-06-20 21:36:10 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-06-20 21:36:10 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2020-06-20 21:36:10 ----A---- C:\WINDOWS\system32\RpcEpMap.dll
2020-06-20 21:36:10 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-06-20 21:36:10 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2020-06-20 21:36:10 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2020-06-20 21:36:10 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2020-06-20 21:36:10 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2020-06-20 21:36:10 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2020-06-20 21:36:10 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\WerFault.exe
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\weretw.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\WerEnc.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\wer.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\utcutil.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\runexehelper.exe
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\ntdll.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\Faultrep.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-06-20 21:36:09 ----A---- C:\WINDOWS\system32\diagnosticdataquery.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\wpr.exe
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\winhttp.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\Websocket.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\wdigest.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\tzres.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\schannel.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\rpcss.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\profsvc.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\oleaut32.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\logoncli.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\dcomp.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\crypt32.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\ConhostV1.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\conhost.exe
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\combase.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\ci.dll
2020-06-20 21:36:01 ----A---- C:\WINDOWS\system32\aepic.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\winresume.exe
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\winload.exe
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\wimserv.exe
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\wimgapi.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\ole32.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\invagent.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\CredDialogBroker.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\comsvcs.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\clfsw32.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\CaptureService.dll
2020-06-20 21:36:00 ----A---- C:\WINDOWS\system32\browserbroker.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\SwitcherDataModel.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\SRH.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\SettingsHandlers_Display.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\Narrator.exe
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\MtcModel.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\Magnify.exe
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\EoAExperiences.exe
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-06-20 21:35:59 ----A---- C:\WINDOWS\system32\ConstraintIndex.Search.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\wow64win.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\wow64.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\QuietHours.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\NotificationController.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-06-20 21:35:58 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2020-06-20 21:35:57 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2020-06-20 21:35:57 ----A---- C:\WINDOWS\system32\ReAgent.dll
2020-06-20 21:35:57 ----A---- C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-06-20 21:35:57 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-06-20 21:35:57 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-06-20 21:35:57 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-06-20 21:35:57 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-06-20 21:35:57 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2020-06-20 21:35:57 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\wups2.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\wups.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\wuaueng.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\wuauclt.exe
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\wuapi.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\VSSVC.exe
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\swprv.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_User.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_OptionalFeatures.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\MusNotification.exe
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-06-20 21:35:56 ----A---- C:\WINDOWS\system32\AppResolver.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\UsoClient.exe
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\usoapi.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\upshared.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\SHCore.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\SettingsHandlers_Devices.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\SensorService.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\PickerPlatform.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2020-06-20 21:35:49 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\wpnprv.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\wpncore.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\wpnapps.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\win32u.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\win32k.sys
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\user32.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\rdpbase.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\psmsrv.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Proxy.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\daxexec.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\container.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2020-06-20 21:35:48 ----A---- C:\WINDOWS\system32\bindfltapi.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\profext.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2020-06-20 21:35:47 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\WwaApi.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\WindowManagementAPI.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\WindowManagement.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\WaaSMedicPS.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\UserDataService.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\TaskApis.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\storewuauth.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\socialapis.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\PushToInstall.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\PeopleAPIs.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\ChatApis.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\EmailApis.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\ContactApis.dll
2020-06-20 21:35:46 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\rdpsharercom.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\PhoneOm.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\NPSM.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\moshostcore.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\mbussdapi.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\MapsStore.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\MapRouter.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\ISM.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-06-20 21:35:45 ----A---- C:\WINDOWS\system32\InputHost.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\tquery.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\mssrch.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\mssprxy.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\InkObjCore.dll
2020-06-20 21:35:44 ----A---- C:\WINDOWS\system32\BingMaps.dll
2020-06-20 21:35:38 ----A---- C:\WINDOWS\system32\mssvp.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\Windows.Graphics.Display.DisplayEnhancementOverride.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\TextShaping.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\mssph.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\mssitlb.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\msscntrs.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\mscms.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\icm32.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\HeatCore.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\FntCache.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\dxgiadaptercache.exe
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\DWrite.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\directxdatabaseupdater.exe
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\ddisplay.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\d3d9on12.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\d3d11on12.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2020-06-20 21:35:37 ----A---- C:\WINDOWS\system32\coloradapterclient.dll
2020-06-20 21:35:36 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-06-20 21:35:36 ----A---- C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-06-20 21:35:36 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-06-20 21:35:36 ----A---- C:\WINDOWS\system32\SEMgrSvc.dll
2020-06-20 21:35:36 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2020-06-20 21:35:36 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2020-06-20 21:35:36 ----A---- C:\WINDOWS\system32\dosvc.dll
2020-06-20 21:35:36 ----A---- C:\WINDOWS\system32\domgmt.dll
2020-06-20 21:35:36 ----A---- C:\WINDOWS\system32\d2d1.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\Windows.Internal.Devices.Sensors.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\vaultcli.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\msxml6.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\D3D12.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\cdd.dll
2020-06-20 21:35:31 ----A---- C:\WINDOWS\system32\bisrv.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Storage.Compression.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\Windows.AI.MachineLearning.Preview.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-06-20 21:35:30 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\useractivitybroker.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\qmgr.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\MSAJApi.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2020-06-20 21:35:29 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2020-06-20 21:35:23 ----A---- C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-06-20 21:35:23 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2020-06-20 21:35:23 ----A---- C:\WINDOWS\system32\smartscreen.exe
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\wlidprov.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\UiaManager.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\msftedit.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\gamingtcui.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\GameInput.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\ffbroker.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\dstokenclean.exe
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\dssvc.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\AppExtension.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\AppContracts.dll
2020-06-20 21:35:22 ----A---- C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\Windows.Devices.Haptics.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\ShareHost.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\DataExchange.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\cdprt.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\BcastDVRClient.dll
2020-06-20 21:35:21 ----A---- C:\WINDOWS\system32\BcastDVRBroker.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\wksprt.exe
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\WindowsInternal.ComposableShell.ComposerFramework.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\twinui.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\twinapi.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\StartTileData.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\localui.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\kernel32.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\CoreShellAPI.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\CoreShell.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\ComposerFramework.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\atlthunk.dll
2020-06-20 21:35:20 ----A---- C:\WINDOWS\system32\atl.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\wlansvc.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\wlansec.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\WlanRadioManager.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\wlanapi.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\wifitask.exe
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\wfdprov.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\UtcDecoderHost.exe
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\usbmon.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\SystemSettingsBroker.exe
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_Accessibility.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\secproc_isv.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\provops.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\provhandlers.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\provengine.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\provdatastore.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\provcore.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\netman.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\NaturalAuth.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\system32\dot3mm.dll
2020-06-20 21:35:19 ----A---- C:\WINDOWS\explorer.exe
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\Wpc.dll
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\win32spl.dll
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\provtool.exe
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\printfilterpipelineprxy.dll
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\oleprn.dll
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\localspl.dll
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-06-20 21:35:18 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-06-20 21:35:18 ----A---- C:\WINDOWS\splwow64.exe
2020-06-20 21:35:13 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2020-06-20 21:35:13 ----A---- C:\WINDOWS\system32\WpcMon.exe
2020-06-20 21:35:13 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-06-20 21:35:13 ----A---- C:\WINDOWS\system32\WpcApi.dll
2020-06-20 21:35:13 ----A---- C:\WINDOWS\system32\ApproveChildRequest.exe
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\WpcTok.exe
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\Windows.Internal.System.UserProfile.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\VoipRT.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\vac.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\PhoneService.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\EapTeapAuth.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\DTUHandler.exe
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\CoreMas.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\autopilot.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\AudioSes.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\AudioEng.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\audiodg.exe
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-06-20 21:35:12 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\XboxGipRadioManager.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\XblGameSaveTask.exe
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\wwansvc.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\umpo.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\MitigationClient.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\lpasvc.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\drivers\KNetPwrDepBroker.sys
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\BthAvrcp.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\BthAvctpSvc.dll
2020-06-20 21:35:11 ----A---- C:\WINDOWS\system32\BTAGService.dll
2020-06-20 21:35:10 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2020-06-20 21:35:10 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2020-06-20 21:35:10 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2020-06-20 21:35:09 ----A---- C:\WINDOWS\system32\drivers\HdAudio.sys
2020-06-20 21:29:35 ----A---- C:\WINDOWS\SYSWOW64\NlsData001b.dll
2020-06-20 21:29:35 ----A---- C:\WINDOWS\SYSWOW64\MLS2.dll
2020-06-20 21:29:35 ----A---- C:\WINDOWS\system32\NlsLexicons001b.dll
2020-06-20 21:29:35 ----A---- C:\WINDOWS\system32\NlsData001b.dll
2020-06-20 21:29:35 ----A---- C:\WINDOWS\system32\MLS2.dll
2020-06-20 21:29:22 ----A---- C:\WINDOWS\system32\prm0006.dll
2020-06-20 21:24:56 ----A---- C:\WINDOWS\SYSWOW64\XPSSHHDR.dll
2020-06-20 21:24:56 ----A---- C:\WINDOWS\SYSWOW64\XpsFilt.dll
2020-06-20 21:24:55 ----A---- C:\WINDOWS\system32\XPSSHHDR.dll
2020-06-20 21:24:55 ----A---- C:\WINDOWS\system32\XpsFilt.dll
2020-06-20 21:24:27 ----A---- C:\WINDOWS\system32\perfi006.dat
2020-06-20 21:24:27 ----A---- C:\WINDOWS\system32\perfh006.dat
2020-06-20 21:24:27 ----A---- C:\WINDOWS\system32\perfd006.dat
2020-06-20 21:24:27 ----A---- C:\WINDOWS\system32\perfc006.dat
2020-06-20 21:24:24 ----D---- C:\WINDOWS\SYSWOW64\drivers\da-DK
2020-06-20 21:24:24 ----D---- C:\WINDOWS\SYSWOW64\da
2020-06-20 21:24:23 ----D---- C:\WINDOWS\system32\drivers\da-DK
2020-06-20 21:24:22 ----D---- C:\WINDOWS\system32\da
2020-06-20 21:24:20 ----D---- C:\WINDOWS\da-DK
2020-06-20 21:21:24 ----D---- C:\WINDOWS\SYSWOW64\drivers\sk-SK
2020-06-20 21:21:23 ----D---- C:\WINDOWS\system32\sk
2020-06-20 21:21:22 ----D---- C:\WINDOWS\system32\drivers\sk-SK
2020-06-20 21:21:22 ----D---- C:\WINDOWS\sk-SK
2020-06-20 21:16:15 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2020-06-20 21:16:13 ----D---- C:\Program Files\Reference Assemblies
2020-06-20 21:16:13 ----D---- C:\Program Files\MSBuild
2020-06-20 21:16:13 ----D---- C:\Program Files (x86)\Reference Assemblies
2020-06-20 21:16:13 ----D---- C:\Program Files (x86)\MSBuild
2020-06-20 21:15:43 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2020-06-20 21:15:43 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2020-06-20 21:15:43 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2020-06-20 21:15:39 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2020-06-20 21:15:39 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2020-06-20 21:15:39 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2020-06-20 21:15:17 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-06-20 21:15:16 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-06-20 20:09:39 ----DC---- C:\WINDOWS\Panther
2020-06-20 20:03:44 ----HD---- C:\$WinREAgent
2020-06-16 10:02:21 ----A---- C:\WINDOWS\system32\icarus_rvrt.exe
2020-06-05 13:16:53 ----D---- C:\Program Files\Mozilla Firefox
2020-06-03 18:00:49 ----A---- C:\WINDOWS\system32\aswBoot.exe
2020-06-03 18:00:42 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2020-06-03 18:00:42 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2020-05-31 19:17:12 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-05-31 19:17:12 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2020-05-31 19:17:12 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-05-31 19:17:12 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2020-05-31 19:17:12 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2020-05-31 19:17:12 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-05-31 19:17:12 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2020-05-31 19:17:12 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-05-31 19:17:12 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2020-05-31 19:17:12 ----A---- C:\WINDOWS\system32\OpenCL.dll
2020-05-31 19:17:10 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2020-05-31 19:17:10 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\system32\nvdispgenco6444614.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\system32\nvdispco6444614.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2020-05-31 19:17:07 ----A---- C:\WINDOWS\system32\nvcuda.dll
2020-05-31 19:17:06 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2020-05-31 19:17:06 ----A---- C:\WINDOWS\system32\nvapi64.dll
2020-05-27 18:51:19 ----D---- C:\NPE
2020-05-27 18:49:22 ----D---- C:\Users\linco\AppData\Roaming\kingsoft
2020-05-27 18:48:43 ----D---- C:\ProgramData\Norton
Přílohy
frst log111.rar
(35.97 KiB) Staženo 85 x
Naposledy upravil(a) Gabo dne 26 čer 2020 11:28, celkem upraveno 3 x.

Gabo
Návštěvník
Návštěvník
Příspěvky: 344
Registrován: 25 kvě 2004 22:14
Bydliště: Slovakia

Re: Preventivna kontrola

#2 Příspěvek od Gabo »

======List of files/folders modified in the last 1 month======

2020-06-26 11:21:39 ----D---- C:\WINDOWS\system32\drivers\etc
2020-06-26 11:21:30 ----D---- C:\WINDOWS\Temp
2020-06-26 11:21:28 ----RD---- C:\Program Files
2020-06-26 10:48:03 ----D---- C:\WINDOWS\system32\sru
2020-06-26 10:13:31 ----D---- C:\ProgramData\AVAST Software
2020-06-26 09:52:43 ----D---- C:\WINDOWS\System32
2020-06-26 09:52:43 ----D---- C:\WINDOWS\INF
2020-06-26 09:47:15 ----D---- C:\ProgramData\NVIDIA
2020-06-26 09:46:40 ----HD---- C:\Program Files\WindowsApps
2020-06-26 09:46:07 ----D---- C:\WINDOWS\AppReadiness
2020-06-26 09:45:20 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-06-26 09:45:12 ----D---- C:\WINDOWS\ServiceState
2020-06-25 23:34:22 ----RD---- C:\WINDOWS\Microsoft.NET
2020-06-25 13:56:55 ----D---- C:\WINDOWS\system32\config
2020-06-25 08:41:22 ----D---- C:\WINDOWS\appcompat
2020-06-24 15:59:40 ----D---- C:\WINDOWS\Logs
2020-06-24 15:58:19 ----D---- C:\WINDOWS\CbsTemp
2020-06-24 15:58:18 ----D---- C:\WINDOWS\SysWOW64
2020-06-24 15:58:18 ----D---- C:\WINDOWS\system32\en-US
2020-06-23 23:16:17 ----D---- C:\WINDOWS\system32\catroot2
2020-06-23 12:00:07 ----RD---- C:\WINDOWS\assembly
2020-06-23 08:53:35 ----D---- C:\WINDOWS\WinSxS
2020-06-22 23:09:13 ----D---- C:\WINDOWS\system32\WDI
2020-06-22 11:40:20 ----D---- C:\WINDOWS\system32\LogFiles
2020-06-22 10:06:14 ----D---- C:\WINDOWS\SoftwareDistribution
2020-06-22 10:06:13 ----D---- C:\Windows
2020-06-21 08:49:50 ----RD---- C:\WINDOWS\PrintDialog
2020-06-21 08:49:08 ----D---- C:\WINDOWS\system32\drivers
2020-06-20 23:18:13 ----D---- C:\WINDOWS\system32\Tasks
2020-06-20 23:05:25 ----D---- C:\ProgramData\USOPrivate
2020-06-20 23:05:24 ----HD---- C:\ProgramData
2020-06-20 23:04:19 ----SD---- C:\ProgramData\Microsoft
2020-06-20 23:03:51 ----D---- C:\ProgramData\Packages
2020-06-20 23:03:48 ----D---- C:\WINDOWS\system32\DriverStore
2020-06-20 23:03:33 ----D---- C:\WINDOWS\Registration
2020-06-20 23:03:19 ----D---- C:\WINDOWS\system32\oobe
2020-06-20 23:03:11 ----D---- C:\WINDOWS\Tasks
2020-06-20 23:03:10 ----D---- C:\Program Files\Windows Defender
2020-06-20 23:02:34 ----D---- C:\WINDOWS\system32\wbem
2020-06-20 23:00:28 ----RSD---- C:\WINDOWS\Media
2020-06-20 22:58:12 ----D---- C:\Program Files\NVIDIA Corporation
2020-06-20 22:57:56 ----D---- C:\WINDOWS\system32\DAX3
2020-06-20 22:57:56 ----D---- C:\WINDOWS\system32\DAX2
2020-06-20 22:57:53 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2020-06-20 22:57:52 ----D---- C:\WINDOWS\system32\drivers\UMDF
2020-06-20 22:56:01 ----SHD---- C:\Recovery
2020-06-20 22:56:01 ----D---- C:\WINDOWS\system32\Recovery
2020-06-20 22:55:32 ----D---- C:\WINDOWS\debug
2020-06-20 22:55:27 ----RSD---- C:\WINDOWS\Fonts
2020-06-20 22:55:27 ----HD---- C:\WINDOWS\system32\WLANProfiles
2020-06-20 22:55:27 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2020-06-20 22:55:27 ----D---- C:\WINDOWS\SYSWOW64\drivers
2020-06-20 22:55:27 ----D---- C:\WINDOWS\system32\WinBioDatabase
2020-06-20 22:55:27 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2020-06-20 22:55:27 ----D---- C:\WINDOWS\system32\spool
2020-06-20 22:55:27 ----D---- C:\WINDOWS\system32\NDF
2020-06-20 22:55:27 ----D---- C:\WINDOWS\apppatch
2020-06-20 22:55:26 ----RD---- C:\Program Files (x86)
2020-06-20 22:55:26 ----HDC---- C:\WINDOWS\Installer
2020-06-20 22:55:26 ----D---- C:\WINDOWS\system32\MsDtc
2020-06-20 22:55:26 ----D---- C:\WINDOWS\LiveKernelReports
2020-06-20 22:55:26 ----D---- C:\Program Files\UNP
2020-06-20 22:55:26 ----D---- C:\Program Files\Intel
2020-06-20 22:55:26 ----D---- C:\Program Files\Common Files\microsoft shared
2020-06-20 22:55:26 ----D---- C:\Program Files\Common Files
2020-06-20 22:55:26 ----D---- C:\Program Files (x86)\Microsoft.NET
2020-06-20 22:55:26 ----D---- C:\Program Files (x86)\Common Files
2020-06-20 22:54:23 ----D---- C:\WINDOWS\Setup
2020-06-20 21:47:30 ----D---- C:\WINDOWS\twain_32
2020-06-20 21:47:28 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2020-06-20 21:47:22 ----D---- C:\WINDOWS\system32\Intel
2020-06-20 21:47:22 ----D---- C:\WINDOWS\system32\drivers\NVIDIA Corporation
2020-06-20 21:47:04 ----D---- C:\WINDOWS\Resources
2020-06-20 21:47:04 ----D---- C:\WINDOWS\OCR
2020-06-20 21:47:02 ----D---- C:\WINDOWS\Help
2020-06-20 21:46:55 ----D---- C:\Program Files (x86)\Windows Mail
2020-06-20 21:46:54 ----D---- C:\Program Files\Windows Mail
2020-06-20 21:46:54 ----D---- C:\Program Files\Realtek
2020-06-20 21:45:37 ----RD---- C:\Users
2020-06-20 21:41:45 ----SD---- C:\WINDOWS\SYSWOW64\F12
2020-06-20 21:41:45 ----D---- C:\WINDOWS\SYSWOW64\wbem
2020-06-20 21:41:45 ----D---- C:\WINDOWS\SYSWOW64\oobe
2020-06-20 21:41:45 ----D---- C:\WINDOWS\SYSWOW64\migration
2020-06-20 21:41:45 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-06-20 21:41:45 ----D---- C:\WINDOWS\SYSWOW64\Com
2020-06-20 21:41:45 ----D---- C:\WINDOWS\SYSWOW64\AdvancedInstallers
2020-06-20 21:41:44 ----SD---- C:\WINDOWS\system32\UNP
2020-06-20 21:41:44 ----SD---- C:\WINDOWS\system32\F12
2020-06-20 21:41:44 ----SD---- C:\WINDOWS\system32\DiagSvcs
2020-06-20 21:41:44 ----D---- C:\WINDOWS\SystemResources
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\sk-SK
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\ShellExperiences
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\PerceptionSimulation
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\migwiz
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\migration
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\ja-jp
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\fr-FR
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\fr-CA
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\Dism
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\de-DE
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\da-DK
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\cs-CZ
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\Com
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\Boot
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\appraiser
2020-06-20 21:41:44 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2020-06-20 21:41:42 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2020-06-20 21:41:42 ----D---- C:\WINDOWS\ShellExperiences
2020-06-20 21:41:42 ----D---- C:\WINDOWS\ShellComponents
2020-06-20 21:41:42 ----D---- C:\WINDOWS\servicing
2020-06-20 21:41:42 ----D---- C:\WINDOWS\DiagTrack
2020-06-20 21:41:42 ----D---- C:\WINDOWS\bcastdvr
2020-06-20 21:41:42 ----D---- C:\Program Files\Windows Photo Viewer
2020-06-20 21:41:42 ----D---- C:\Program Files\Windows Media Player
2020-06-20 21:41:42 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2020-06-20 21:41:42 ----D---- C:\Program Files (x86)\Windows Media Player
2020-06-20 21:28:53 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2020-06-20 21:28:45 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\th-TH
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-RS
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\sl-SI
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\lv-LV
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\hr-HR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\fr-CA
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\et-EE
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\es-MX
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\en-US
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\bg-BG
2020-06-20 21:25:05 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\zh-TW
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\zh-CN
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\uk-UA
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\tr-TR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\th-TH
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\sv-SE
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\sl-SI
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\ru-RU
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\ro-RO
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\pt-PT
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\pt-BR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\pl-PL
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\nl-NL
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\nb-NO
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\lv-LV
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\lt-LT
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\ko-KR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\it-IT
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\hu-HU
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\hr-HR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\he-IL
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\fi-FI
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\et-EE
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\es-MX
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\es-ES
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\en-GB
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\el-GR
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\bg-BG
2020-06-20 21:25:05 ----D---- C:\WINDOWS\system32\ar-SA
2020-06-20 21:24:24 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2020-06-20 21:24:24 ----D---- C:\WINDOWS\SYSWOW64\winrm
2020-06-20 21:24:24 ----D---- C:\WINDOWS\SYSWOW64\WCN
2020-06-20 21:24:24 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2020-06-20 21:24:24 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2020-06-20 21:24:24 ----D---- C:\WINDOWS\SYSWOW64\MUI
2020-06-20 21:24:24 ----D---- C:\WINDOWS\SYSWOW64\DriverStore
2020-06-20 21:24:24 ----D---- C:\WINDOWS\system32\winrm
2020-06-20 21:24:24 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2020-06-20 21:24:24 ----D---- C:\WINDOWS\system32\WCN
2020-06-20 21:24:24 ----D---- C:\WINDOWS\system32\Sysprep
2020-06-20 21:24:24 ----D---- C:\WINDOWS\system32\slmgr
2020-06-20 21:24:24 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2020-06-20 21:24:24 ----D---- C:\WINDOWS\system32\MUI
2020-06-20 21:24:22 ----D---- C:\WINDOWS\PolicyDefinitions
2020-06-20 21:24:21 ----D---- C:\WINDOWS\IME
2020-06-20 21:24:20 ----D---- C:\Program Files\Internet Explorer
2020-06-20 21:24:20 ----D---- C:\Program Files\Common Files\System
2020-06-20 21:24:20 ----D---- C:\Program Files (x86)\Windows Defender
2020-06-20 21:24:20 ----D---- C:\Program Files (x86)\Internet Explorer
2020-06-20 21:21:24 ----D---- C:\WINDOWS\SYSWOW64\en
2020-06-20 21:21:24 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2020-06-20 21:21:22 ----D---- C:\WINDOWS\system32\en
2020-06-20 21:21:22 ----D---- C:\WINDOWS\system32\drivers\en-US
2020-06-20 21:21:21 ----D---- C:\WINDOWS\en-US
2020-06-16 16:49:53 ----AD---- C:\Program Files (x86)\TeamViewer
2020-06-16 10:15:06 ----SHD---- C:\System Volume Information
2020-06-16 10:12:14 ----D---- C:\ProgramData\install_clap
2020-06-16 10:02:53 ----D---- C:\Users\linco\AppData\Roaming\AVAST Software
2020-06-16 10:02:22 ----D---- C:\Program Files\Common Files\AVAST Software
2020-06-16 10:02:22 ----D---- C:\Program Files\AVAST Software
2020-06-10 10:47:21 ----D---- C:\Program Files (x86)\Microsoft
2020-06-09 13:00:51 ----D---- C:\Program Files (x86)\Rockstar Games
2020-06-09 13:00:44 ----D---- C:\Program Files\Rockstar Games
2020-06-09 12:56:21 ----AD---- C:\Program Files\Microsoft Office
2020-06-07 15:38:12 ----D---- C:\Program Files\OpenTTD
2020-06-06 18:52:14 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2020-06-02 07:52:43 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2020-05-29 15:04:56 ----D---- C:\Users\linco\AppData\Roaming\Foxit Scanner Images

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2020-06-03 178768]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2020-06-03 60496]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2020-02-26 16304]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2020-06-03 84856]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2020-06-09 322256]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2016-11-24 795648]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 57360]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2019-12-07 41984]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2020-06-03 205896]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2020-06-03 235088]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2020-06-03 42784]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2020-06-03 506152]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2020-06-03 109280]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2020-06-03 851608]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2020-06-15 462592]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2015-05-08 20096]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2019-12-07 91136]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2020-06-03 175208]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2020-06-03 216824]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-06-20 143160]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-06-20 490496]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-12-07 53248]
R3 AiCharger;ASUS Charger Driver; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [2016-11-14 29312]
R3 AsusHFilter;@oem11.inf,%AsusFilter.SvcDesc%;ASUS Patch; C:\WINDOWS\System32\drivers\AsusHFilter.sys [2016-12-22 30200]
R3 AsusPTPDrv;@oem13.inf,%AsusPTP.SvcDesc%;ASUS Touch Service; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [2019-04-24 108504]
R3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 279040]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-12-07 113664]
R3 BthHFAud;@microsoft_bluetooth_hfp.inf,%BTHHFAUD_DISPLAY_NAME%;Microsoft Bluetooth Hands-Free Audio driver; C:\WINDOWS\System32\drivers\BthHfAud.sys [2019-12-07 65536]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-12-07 106496]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-12-07 133632]
R3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2019-12-07 1548288]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-12-07 110592]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
R3 dptf_cpu;dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [2016-12-26 67968]
R3 esif_lf;esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [2016-12-26 355200]
R3 HIDSwitch;@oem18.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsRadioControl.sys [2019-08-07 32680]
R3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
R3 ibtusb;@oem23.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2016-10-06 730384]
R3 igfx;igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igdkmd64.sys [2019-10-30 20620368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2017-02-23 5637624]
R3 IntcDAud;@oem14.inf,%IntcAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\DriverStore\FileRepository\intcdaud.inf_amd64_af5afa2a89e9d034\IntcDAud.sys [2019-10-30 354152]
R3 MEIx64;@oem31.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-09-23 204896]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2019-12-07 322600]
R3 Netwtw06;___ Intel(R) Wireless Adapter Driver for Windows 10 - 64 Bit; C:\WINDOWS\System32\drivers\Netwtw06.sys [2019-12-07 8803328]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_c807de6afd0e45f0\nvlddmkm.sys [2020-05-18 23454448]
R3 nvvad_WaveExtensible;@oem16.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2019-03-19 69840]
R3 nvvhci;@oem41.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-05-16 67456]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
R3 rt640x64;@oem4.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-08-22 943112]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-12-07 138040]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 415232]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-12-07 18432]
S3 aswTap;@oem0.inf,%DeviceDescription%;avast! SecureLine TAP Adapter v3; C:\WINDOWS\System32\drivers\aswTap.sys [2018-09-05 53904]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2019-12-07 45568]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 GeneStor;@oem5.inf,%GeneStor.SvcDesc%;Genesys Logic Storage Driver; C:\WINDOWS\System32\drivers\GeneStor.sys [2019-05-03 180776]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-06-20 95048]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-12-07 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-12-07 386048]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-12-07 206336]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2020-04-01 30336]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-12-07 104456]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-07 990008]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AsBhcService;ASUS Battery Health Charging Service; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [2016-10-20 114360]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [2016-12-29 131960]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2020-06-03 348968]
R2 avast! Firewall;Avast Firewall Service; C:\Program Files\AVAST Software\Avast\afwServ.exe [2020-06-03 1052984]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2020-06-03 58048]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 CDPUserSvc_353ae;CDPUserSvc_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 CleanupPSvc;Avast Cleanup; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [2020-06-16 12942184]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 cplspcon;Intel(R) Content Protection HDCP Service; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe [2019-10-30 510008]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R2 esifsvc;@oem9.inf,%ServiceDisplayName%;ESIF Upper Framework Service; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2016-12-26 2210424]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2016-11-29 640928]
R2 FoxitReaderUpdateService;Foxit Reader Update Service; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe [2020-04-29 1995184]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2018-11-19 190784]
R2 ibtsiva;@oem23.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe [2019-10-30 391736]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2016-10-05 177440]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2016-10-05 419616]
R2 Mobile Broadband HL Service;Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [2016-03-24 242264]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-03-18 850928]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2020-05-16 873272]
R2 OneSyncSvc_353ae;OneSyncSvc_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 PEFService;Intel Security PEF Service; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2016-05-25 1045336]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2016-11-29 157600]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-04-14 389896]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2020-06-03 6392728]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 cbdhsvc_353ae;cbdhsvc_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe [2019-10-30 508984]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 PimIndexMaintenanceSvc_353ae;PimIndexMaintenanceSvc_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [2016-05-31 1910000]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 AarSvc_353ae;AarSvc_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BcastDVRUserService_353ae;BcastDVRUserService_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BluetoothUserService_353ae;BluetoothUserService_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 CaptureService_353ae;CaptureService_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 ConsentUxUserSvc_353ae;ConsentUxUserSvc_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-06-20 380080]
S3 CredentialEnrollmentManagerUserSvc_353ae;CredentialEnrollmentManagerUserSvc_353ae; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-06-20 380080]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DeviceAssociationBrokerSvc_353ae;DeviceAssociationBrokerSvc_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicePickerUserSvc_353ae;DevicePickerUserSvc_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicesFlowUserSvc_353ae;DevicesFlowUserSvc_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-06-20 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2016-07-26 987432]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MessagingService_353ae;MessagingService_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\83.0.478.56\elevation_service.exe [2020-06-24 1507208]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2020-06-05 244432]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2016-11-29 268704]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 263488]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2020-06-20 105984]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PrintWorkflowUserSvc_353ae;PrintWorkflowUserSvc_353ae; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2020-06-09 1705088]
S4 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2020-05-29 10637168]

-----------------EOF-----------------

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: Preventivna kontrola

#3 Příspěvek od Diallix »

Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

Gabo
Návštěvník
Návštěvník
Příspěvky: 344
Registrován: 25 kvě 2004 22:14
Bydliště: Slovakia

Re: Preventivna kontrola

#4 Příspěvek od Gabo »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-26-2020
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1250 octets] - [13/05/2019 15:24:23]
AdwCleaner[C00].txt - [1436 octets] - [13/05/2019 15:25:21]
AdwCleaner[S01].txt - [1372 octets] - [31/05/2019 22:29:03]
AdwCleaner[S02].txt - [1433 octets] - [02/06/2019 20:42:52]
AdwCleaner[S03].txt - [1494 octets] - [15/06/2019 22:48:57]
AdwCleaner[S04].txt - [1555 octets] - [18/06/2019 15:39:54]
AdwCleaner[S05].txt - [1616 octets] - [18/06/2019 15:40:13]
AdwCleaner[C05].txt - [1802 octets] - [18/06/2019 15:40:21]
AdwCleaner[S06].txt - [1738 octets] - [07/07/2019 16:26:30]
AdwCleaner[S07].txt - [1799 octets] - [19/07/2019 09:34:58]
AdwCleaner[S08].txt - [1860 octets] - [26/07/2019 20:12:50]
AdwCleaner[S09].txt - [2176 octets] - [26/07/2019 20:13:23]
AdwCleaner[C09].txt - [2420 octets] - [26/07/2019 20:13:42]
AdwCleaner[S10].txt - [2120 octets] - [28/07/2019 12:24:20]
AdwCleaner[C10].txt - [2313 octets] - [28/07/2019 12:24:29]
AdwCleaner[S11].txt - [2241 octets] - [30/07/2019 17:11:59]
AdwCleaner[C11].txt - [2429 octets] - [30/07/2019 17:12:31]
AdwCleaner[S12].txt - [2363 octets] - [03/08/2019 11:11:02]
AdwCleaner[S13].txt - [2348 octets] - [06/08/2019 21:14:28]
AdwCleaner[S14].txt - [2485 octets] - [06/08/2019 21:15:03]
AdwCleaner[S15].txt - [2546 octets] - [17/08/2019 21:26:03]
AdwCleaner[S16].txt - [2607 octets] - [19/08/2019 18:02:20]
AdwCleaner[C16].txt - [2795 octets] - [19/08/2019 18:02:28]
AdwCleaner[S17].txt - [2729 octets] - [24/08/2019 17:20:11]
AdwCleaner[S18].txt - [2790 octets] - [04/09/2019 19:01:47]
AdwCleaner_Debug.log - [119592 octets] - [09/09/2019 20:33:39]
AdwCleaner[S19].txt - [2913 octets] - [09/09/2019 20:34:00]
AdwCleaner[S20].txt - [2974 octets] - [13/09/2019 18:04:35]
AdwCleaner[S21].txt - [3036 octets] - [19/09/2019 19:57:41]
AdwCleaner[S22].txt - [3097 octets] - [26/09/2019 16:55:50]
AdwCleaner[S23].txt - [3158 octets] - [28/09/2019 20:14:48]
AdwCleaner[S24].txt - [3219 octets] - [04/10/2019 20:54:04]
AdwCleaner[S25].txt - [3280 octets] - [05/10/2019 17:39:08]
AdwCleaner[S26].txt - [3383 octets] - [10/10/2019 20:46:57]
AdwCleaner[C26].txt - [3551 octets] - [10/10/2019 20:47:09]
AdwCleaner[S27].txt - [3463 octets] - [12/10/2019 23:58:02]
AdwCleaner[S28].txt - [3524 octets] - [15/10/2019 15:27:58]
AdwCleaner[S29].txt - [3585 octets] - [20/10/2019 20:55:01]
AdwCleaner[S30].txt - [3646 octets] - [26/10/2019 22:47:33]
AdwCleaner[S31].txt - [3707 octets] - [27/10/2019 21:18:06]
AdwCleaner[S32].txt - [3768 octets] - [31/10/2019 17:41:24]
AdwCleaner[S33].txt - [3829 octets] - [04/11/2019 19:54:47]
AdwCleaner[S34].txt - [3890 octets] - [09/11/2019 15:13:55]
AdwCleaner[S35].txt - [3952 octets] - [18/11/2019 21:15:32]
AdwCleaner[S36].txt - [4013 octets] - [21/11/2019 14:53:17]
AdwCleaner[S37].txt - [4074 octets] - [23/11/2019 23:53:43]
AdwCleaner[S38].txt - [4135 octets] - [30/11/2019 18:46:01]
AdwCleaner[S39].txt - [4196 octets] - [03/12/2019 18:11:30]
AdwCleaner[S40].txt - [4257 octets] - [08/12/2019 00:11:10]
AdwCleaner[S41].txt - [4318 octets] - [15/12/2019 10:57:03]
AdwCleaner[S42].txt - [4379 octets] - [22/12/2019 14:00:38]
AdwCleaner[S43].txt - [4440 octets] - [01/01/2020 09:33:20]
AdwCleaner[S44].txt - [4501 octets] - [08/01/2020 16:09:58]
AdwCleaner[S45].txt - [4562 octets] - [12/01/2020 19:59:45]
AdwCleaner[S46].txt - [4623 octets] - [15/01/2020 20:03:39]
AdwCleaner[S47].txt - [4684 octets] - [20/01/2020 22:05:38]
AdwCleaner[S48].txt - [4825 octets] - [03/02/2020 14:31:21]
AdwCleaner[S49].txt - [4886 octets] - [10/02/2020 16:28:40]
AdwCleaner[S50].txt - [4947 octets] - [22/02/2020 17:09:50]
AdwCleaner[S51].txt - [5008 octets] - [01/03/2020 01:28:12]
AdwCleaner[S52].txt - [5069 octets] - [21/03/2020 11:22:38]
AdwCleaner[S53].txt - [5130 octets] - [14/04/2020 10:52:31]
AdwCleaner[S54].txt - [5191 octets] - [28/04/2020 15:22:52]
AdwCleaner[S55].txt - [5252 octets] - [03/05/2020 12:39:54]
AdwCleaner[C55].txt - [5442 octets] - [03/05/2020 12:40:49]
AdwCleaner[S56].txt - [5388 octets] - [16/05/2020 14:51:11]
AdwCleaner[C56].txt - [5558 octets] - [16/05/2020 14:51:29]
AdwCleaner[S57].txt - [5496 octets] - [27/05/2020 18:35:23]
AdwCleaner[S58].txt - [5557 octets] - [27/05/2020 18:35:50]
AdwCleaner[S59].txt - [5618 octets] - [30/05/2020 15:48:22]
AdwCleaner[S60].txt - [5679 octets] - [02/06/2020 12:23:25]
AdwCleaner[S61].txt - [5740 octets] - [06/06/2020 14:20:06]
AdwCleaner[S62].txt - [5801 octets] - [08/06/2020 20:19:54]
AdwCleaner[S63].txt - [5862 octets] - [11/06/2020 22:33:56]
AdwCleaner[S64].txt - [5923 octets] - [14/06/2020 11:15:20]
AdwCleaner[S65].txt - [5984 octets] - [18/06/2020 19:46:45]
AdwCleaner[S66].txt - [6045 octets] - [20/06/2020 20:16:44]
AdwCleaner[S67].txt - [6106 octets] - [26/06/2020 14:52:35]
AdwCleaner[S68].txt - [6167 octets] - [26/06/2020 14:53:09]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C68].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivna kontrola

#5 Příspěvek od Conder »

Ahoj :)

:arrow: Po dohode s kolegom prevezmem riesenie.

:arrow: Kedze RSIT je nepouzitelny v tomto pripade, poprosim o obidva logy z FRST (FRST.txt a Addition.txt) podla tohto navodu: https://forum.viry.cz/viewtopic.php?f=13&t=154679
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Gabo
Návštěvník
Návštěvník
Příspěvky: 344
Registrován: 25 kvě 2004 22:14
Bydliště: Slovakia

Re: Preventivna kontrola

#6 Příspěvek od Gabo »

Ahoj, prikladám logy v prílohe.
frst logy.rar
(37.5 KiB) Staženo 80 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivna kontrola

#7 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
    ExportKey: HKLM\SOFTWARE\Policies\Mozilla\Firefox
    ExportKey: HKLM\SOFTWARE\Policies\Google
    
    BootExecute: autocheck autochk * icarus_rvrt.exe
    FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
    CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
    Task: {2EBFE872-9459-494E-B78C-4369DC2AB788} - System32\Tasks\ASUSTek Computer Inc\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
    Task: {37A81875-7FF2-442A-8198-B095A860D44B} - System32\Tasks\EOSv3 Scheduler onLogOn => D:\esetonlinescanner_sky(1).exe
    Task: {79648DC4-78DA-4418-BDFB-612E53E363D6} - System32\Tasks\EOSv3 Scheduler onTime => D:\esetonlinescanner_sky(1).exe
    Task: {D81FF288-7101-479D-A50C-96F80DAFDC0C} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe
    Task: {F1BF6F52-19A1-4349-A55B-CB0E78E8B23A} - System32\Tasks\WpsExternal_20161114022915 => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe
    HKU\S-1-5-21-2298117505-976418258-3832342613-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
    HKU\S-1-5-21-2298117505-976418258-3832342613-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
    S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1910000 2016-05-31] (McAfee, Inc. -> McAfee, Inc.)
    C:\Program Files\Common Files\McAfee
    R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1045336 2016-05-25] (McAfee, Inc. -> Intel Security, Inc.)
    2020-07-04 11:45 - 2020-07-04 11:45 - 000000000 ____D C:\Users\linco\Desktop\FRST-OlderVersion
    2020-06-26 11:21 - 2020-06-26 11:21 - 000000000 ____D C:\rsit
    2020-06-26 11:21 - 2020-06-26 11:21 - 000000000 ____D C:\Program Files\trend micro
    ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
    ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
    ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
    ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
    ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
    ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
    ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
    ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
    ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Gabo
Návštěvník
Návštěvník
Příspěvky: 344
Registrován: 25 kvě 2004 22:14
Bydliště: Slovakia

Re: Preventivna kontrola

#8 Příspěvek od Gabo »

DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24265605 B
Java, Flash, Steam htmlcache => 89810223 B
Windows/system/drivers => 725502 B
Edge => 60954 B
Chrome => 0 B
Firefox => 1189861032 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 5224 B
NetworkService => 5224 B
defaultuser0 => 5224 B
linco => 8375163 B

RecycleBin => 0 B
EmptyTemp: => 1.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:03:11 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivna kontrola

#9 Příspěvek od Conder »

Fixlog nie je kompletny, chyba zaciatok. Skus skontrolovat, ci je naozaj skopirovany cely. Pokial ano, tak posli fixlog s poslednym datumom, ktory sa nachadza v adresari C:\FRST\Logs
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Gabo
Návštěvník
Návštěvník
Příspěvky: 344
Registrován: 25 kvě 2004 22:14
Bydliště: Slovakia

Re: Preventivna kontrola

#10 Příspěvek od Gabo »

Nechápem to, ale tam priamo v priečinku sa nachádza tiež ten istý nekompletný log.

DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24265605 B
Java, Flash, Steam htmlcache => 89810223 B
Windows/system/drivers => 725502 B
Edge => 60954 B
Chrome => 0 B
Firefox => 1189861032 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 5224 B
NetworkService => 5224 B
defaultuser0 => 5224 B
linco => 8375163 B

RecycleBin => 0 B
EmptyTemp: => 1.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:03:11 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivna kontrola

#11 Příspěvek od Conder »

Vyzera to na bug vo FRST. Poprosim teda este raz o obidva nove logy z FRST a tiez o info, ci su s PC nejake problemy.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Gabo
Návštěvník
Návštěvník
Příspěvky: 344
Registrován: 25 kvě 2004 22:14
Bydliště: Slovakia

Re: Preventivna kontrola

#12 Příspěvek od Gabo »

PC je ok :)
frst logy 444.rar
(36.57 KiB) Staženo 82 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivna kontrola

#13 Příspěvek od Conder »

:arrow: Logy vyzeraju OK.

:arrow: Tak este upraceme po pouzitych nastrojoch:
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Gabo
Návštěvník
Návštěvník
Příspěvky: 344
Registrován: 25 kvě 2004 22:14
Bydliště: Slovakia

Re: Preventivna kontrola

#14 Příspěvek od Gabo »

Ďakujem za pomoc :idea:

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivna kontrola

#15 Příspěvek od Conder »

Nie je zaco, rad som pomohol :)
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Zamčeno