Logfile of random's system information tool 1.10 (written by random/random)
Run by maba at 2020-08-29 21:24:10
Microsoft Windows 10 Pro
System drive C: has 47 GB (41%) free of 114 GB
Total RAM: 8090 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:24:13, on 29. 8. 2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files\trend micro\maba.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\BHO\ie_to_edge_bho.dll
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- https://www.bing.com/entityexplore?q=Sh ... 2VVa4!AwBz
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O8 - Extra context menu item: Stiahnuť s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stiahnuť s IDM všetky prepojenia - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_15aeeaa9 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer - TeamViewer Germany GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TunnelBear Maintenance (TunnelBearMaintenance) - TunnelBear - C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10281 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3c495e05-1bf6-4c4b-9219-c054df5965f5 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-1e66a7c7-0d79-48f6-bd67-bee8e10d9fca -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-9a867f1f-e769-4f24-990e-5cfff1d995d0 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-80903b34-49d0-49d2-9b0b-4507c14dbf21 -LifetimeId:5c0ccb66-c019-4638-aa9d-1219a05ebbd3 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-f599c5c0-3124-45b6-85d3-47e84284a9a7 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-8d6adcc3-ef0f-4ab8-bd1f-17db5ce91c29 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-926de127-8ce1-421f-aa3b-7f9860f8f85f -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-6219eab6-4deb-4713-97e1-32a547ca3e4f -LifetimeId:c9df592b-7a64-4714-9174-75d7caf120c8 -DeviceGroupId:WpdFsGroup -HostArg:0
C:\WINDOWS\system32\AUDIODG.EXE 0x720
winlogon.exe
"fontdrvhost.exe"
"dwm.exe"
"C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\NVIDIA\DisplaySessionContainer%d.log -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
igfxEM.exe
C:\WINDOWS\system32\svchost.exe -k AarSvcGroup -p -s AarSvc
C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
taskhostw.exe
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --field-trial-handle=2148,17928733441336705530,9319017369600455393,131072 --disable-features=VizDisplayCompositor --no-sandbox --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --service-request-channel-token=5236149114789308222 --mojo-platform-channel-handle=2188 /prefetch:2
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --autoplay-policy=no-user-gesture-required --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --field-trial-handle=2148,17928733441336705530,9319017369600455393,131072 --disable-features=VizDisplayCompositor --service-pipe-token=1427232782720468311 --lang=en-US --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1427232782720468311 --renderer-client-id=3 --mojo-platform-channel-handle=2504 /prefetch:1
"C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20071.95.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"ctfmon.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20071.95.0_x64__8wekyb3d8bbwe\YourPhoneServer/YourPhoneServer.exe" -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2007.24723.0_x64__8wekyb3d8bbwe\Cortana.exe" -ServerName:App.AppX2y379sjp88wjq1y80217mddj3fargf2y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe" -ServerName:InputApp.AppX9jnwykgrccxc8by3hsrsh07r423xzvav.mca
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe" -ServerName:microsoft.windowslive.mail.AppXvpbcm2ctr1y0sg80nt9m7z51p2cqvsxm.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe" -ServerName:App.AppX2m6wj6jceb8yq7ppx1b3drf7yy51ha6f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\maba\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\maba\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\maba\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=84.0.4147.135 --initial-client-data=0xe8,0xec,0xf0,0xc4,0xf4,0x7ffbeda2ed20,0x7ffbeda2ed30,0x7ffbeda2ed40
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1600 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1996 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --extension-process --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3920 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --extension-process --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4100 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=nacl-loader --mojo-platform-channel-handle=4860 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6052 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4192 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6296 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe185_ Global\UsGthrCtrlFltPipeMssGthrPipe185 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 780 784 792 8192 788 764
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --extension-process --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6820 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\maba\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-01-21 666424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\BHO\ie_to_edge_bho_64.dll [2020-08-25 500616]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-01-21 470320]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\BHO\ie_to_edge_bho.dll [2020-08-25 386944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-06-29 18381792]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2018-12-17 731240]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2020-08-05 29271224]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #0"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2020-08-18 1820656]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2020-05-13 601784]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=lvcod64.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux2"=wdmaud.drv
"midi1"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer1"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"wave4"=wdmaud.drv
"aux3"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave5"=wdmaud.drv
"aux4"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave6"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"aux1"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave3"=wdmaud.drv
"aux5"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
======File associations======
.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-08-18 20:36:09 ----D---- C:\WINDOWS\LastGood
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\OpenCL.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvml.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvidia-smi.exe
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvdebugdump.exe
2020-08-18 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\system32\nvcuda.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\system32\MCU.exe
2020-08-17 16:04:06 ----D---- C:\Users\maba\AppData\Roaming\Zoom
2020-08-15 02:05:29 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2020-08-14 16:00:06 ----A---- C:\TDSSKiller.3.1.0.28_14.08.2020_16.00.06_log.txt
2020-08-13 18:45:11 ----A---- C:\WINDOWS\system32\fvecpl.dll
2020-08-13 18:45:10 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2020-08-13 18:45:10 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-08-13 18:45:10 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2020-08-13 18:45:10 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-08-13 18:45:09 ----A---- C:\WINDOWS\system32\cdp.dll
2020-08-13 18:45:09 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-08-13 18:45:08 ----A---- C:\WINDOWS\SYSWOW64\syncutil.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2020-08-13 18:45:08 ----A---- C:\WINDOWS\system32\syncutil.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2020-08-13 18:45:04 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\SYSWOW64\HvsiManagementApi.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\windowsdefenderapplicationguardcsp.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\rdpshell.exe
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\PrintBrmUi.exe
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mf.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\HvsiManagementApi.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\hvsigpext.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\hvsievaluator.exe
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\cscsvc.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\SYSWOW64\srmscan.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\SYSWOW64\srmclient.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\system32\srmscan.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\system32\srmclient.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-08-13 18:45:00 ----A---- C:\WINDOWS\SYSWOW64\Vault.dll
2020-08-13 18:45:00 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2020-08-13 18:45:00 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\tapisrv.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\tapi32.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\powercpl.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msxbde40.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\FrameServerClient.dll
2020-08-13 18:44:58 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2020-08-13 18:44:58 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-08-13 18:44:57 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-08-13 18:44:57 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-08-13 18:44:57 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\FirewallControlPanel.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\fdSSDP.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\DxpTaskSync.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\Dsui.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\autoplay.dll
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\wsp_health.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\Vault.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\themecpl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\tapisrv.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\tapi32.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\SIHClient.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\rdpclip.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\mstsc.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\fhcpl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\DiagCpl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\CPFilters.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\acmigration.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\AcGenral.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\reseteng.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\recovery.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\FrameServerClient.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\FrameServer.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\systemreset.exe
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\powercpl.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\netcenter.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\msisip.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\msi.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-08-13 18:44:49 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-08-13 18:44:49 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-08-13 18:44:49 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wsecedit.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wiatrace.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wiaservc.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wiarpc.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\sud.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\StorSvc.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\sti.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\jscript.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\FirewallControlPanel.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\edpcsp.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\DxpTaskSync.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\DXP.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\Dsui.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\computecore.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\autoplay.dll
2020-08-13 18:44:47 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-08-13 18:44:47 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-08-13 18:44:47 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\udhisapi.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\skci.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\securekernel.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\sdcpl.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\fdSSDP.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.FileExplorer.Common.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\scecli.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\upnphost.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\upnpcont.exe
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\NgcIso.exe
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\BioIso.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wow32.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidnsp.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidfdp.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\windowslivelogin.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\rtm.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\printui.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\newdev.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\ndadmin.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\msidcrl40.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\msauserext.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\iprtprio.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\instnm.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\UserAccountControlSettings.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\user.exe
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\ntvdm64.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\acwow64.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\ActionCenterCPL.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\unenrollhook.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\setupcl.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\pcaui.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\pcacli.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\omadmapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\msimg32.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mdmlocalmanagement.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\enterpriseresourcemanager.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dmcfgutils.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\accessibilitycpl.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\mskeyprotcli.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TextShaping.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TextInputMethodFormatter.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\UiaManager.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\sxstrace.exe
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\sxs.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\mapistub.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\mapi32.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\fixmapi.exe
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\wcmapi.dll
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\control.exe
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\SpatializerApo.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\HrtfApo.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntimewindows.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntime.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\AarSvc.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\SCardDlg.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\SCardBi.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\ngctasks.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\certprop.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\xpsservices.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\shell32.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\scecli.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rtm.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\RMapi.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasplap.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasmans.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasdlg.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rascustom.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasapi32.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\puiobj.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\puiapi.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\printui.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\OpenWith.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\newdev.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\newdev.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\ndadmin.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\mprdim.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\iprtprio.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\findnetprinters.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\drvsetup.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\compstui.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\AboutSettingsHandlers.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\6bea57fb-8dfb-4177-9ae8-42e8b3529933_RuntimeDeviceInstall.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\taskcomp.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\systemcpl.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\rasgcw.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidnsp.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidfdp.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidcli.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\windowslivelogin.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sxstrace.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sxs.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sppcext.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\msIso.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\msidcrl40.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\msauserext.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\MaintenanceUI.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\lpkinstall.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\LockHostingFramework.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\LockController.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\jsproxy.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\edgeIso.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\wininet.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\UserAccountControlSettings.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\policymanager.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\omadmclient.exe
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\omadmapi.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\mdmlocalmanagement.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\hgcpl.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\dmcsps.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\DeviceDriverRetrievalClient.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\d3d9.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\actxprxy.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\wuuhext.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\netlogon.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\msimg32.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\mf3216.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\lpk.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\LogonController.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\fontsub.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dmcfgutils.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dciman32.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\coredpus.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wldp.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\weretw.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wer.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\utcutil.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ntdll.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\mswsock.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\hal.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\drivers\hwpolicy.sys
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\dnsapi.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\diagnosticdataquery.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ci.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\wimserv.exe
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\wimgapi.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\uDWM.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\setupcl.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\dwmcore.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\dwmapi.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2020-08-13 18:44:26 ----A---- C:\WINDOWS\system32\winresume.exe
2020-08-13 18:44:26 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2020-08-13 18:44:26 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\winload.exe
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\SRH.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\pcaui.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\pcacli.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\invagent.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\accessibilitycpl.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\QuietHours.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\Facilitator.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2020-08-13 18:44:22 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2020-08-13 18:44:22 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-08-13 18:44:22 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wups2.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wups.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuaueng.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuauclt.exe
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wpnprv.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wpncore.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wpnapps.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\win32u.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\win32k.sys
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\sbservicetrigger.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\ncbservice.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\keepaliveprovider.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\wintrust.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WindowManagement.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicPS.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\storewuauth.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\MapsStore.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\MapRouter.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\ISM.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\TextShaping.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\InputService.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\oemlicense.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\mskeyprotcli.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\D3D12.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\cryptngc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\Clipc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\cdd.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\wlidprov.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\UiaManager.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\thumbcache.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MSAProfileNotificationHandler.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\GameInput.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\XamlTileRender.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\wudriver.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\usercpl.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\twinui.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\StartTileData.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\RADCUI.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\mapistub.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\mapi32.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\fixmapi.exe
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\cdprt.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\wifitask.exe
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\taskbarcpl.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\fontext.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\control.exe
2020-08-13 18:44:09 ----A---- C:\WINDOWS\explorer.exe
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\win32spl.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wifidatacapabilityhandler.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wcmapi.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\localspl.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcTok.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcProxyStubs.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcMon.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcApi.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\Wpc.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\GPCSEWrapperCsp.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\ApproveChildRequest.exe
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\lpasvc.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\HrtfApo.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\fcon.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\drivers\MbbCx.sys
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\drivers\KNetPwrDepBroker.sys
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AudioEng.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\audiodg.exe
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-08-13 18:44:05 ----A---- C:\WINDOWS\system32\tellib.dll
2020-08-13 18:44:05 ----A---- C:\WINDOWS\system32\mssecuser.dll
2020-08-13 18:44:05 ----A---- C:\WINDOWS\system32\drivers\mssecflt.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\IntelTA.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\intelpep.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2020-08-13 18:39:25 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-08-13 18:39:25 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-08-12 12:36:19 ----HD---- C:\$WinREAgent
2020-08-10 14:36:50 ----D---- C:\Users\maba\AppData\Roaming\GoldWave
2020-08-10 14:36:46 ----D---- C:\Program Files\GoldWave
2020-08-10 13:50:07 ----D---- C:\Users\maba\AppData\Roaming\audacity
2020-08-10 13:49:58 ----D---- C:\Program Files (x86)\Audacity
======List of files/folders modified in the last 1 month======
2020-08-29 21:24:12 ----D---- C:\WINDOWS\Temp
2020-08-29 21:24:11 ----D---- C:\Program Files\trend micro
2020-08-29 21:16:11 ----D---- C:\ProgramData\NVIDIA
2020-08-29 21:14:36 ----D---- C:\WINDOWS\Prefetch
2020-08-29 21:14:11 ----D---- C:\WINDOWS\System32
2020-08-29 21:14:11 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-08-29 21:14:03 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-08-29 20:34:09 ----D---- C:\WINDOWS\system32\sru
2020-08-29 16:13:41 ----D---- C:\Users\maba\AppData\Roaming\vlc
2020-08-29 16:05:40 ----D---- C:\WINDOWS\system32\SleepStudy
2020-08-29 14:44:21 ----D---- C:\Users\maba\AppData\Roaming\qBittorrent
2020-08-29 14:19:37 ----D---- C:\Users\maba\AppData\Roaming\AIMP
2020-08-29 13:45:40 ----RD---- C:\WINDOWS\Microsoft.NET
2020-08-29 12:35:48 ----D---- C:\Program Files (x86)\Steam
2020-08-29 12:28:15 ----D---- C:\WINDOWS\system32\drivers\wd
2020-08-28 23:15:32 ----HD---- C:\Program Files\WindowsApps
2020-08-28 23:15:31 ----D---- C:\WINDOWS\AppReadiness
2020-08-25 13:39:17 ----D---- C:\Program Files (x86)\Rockstar Games
2020-08-25 13:39:11 ----D---- C:\Program Files\Rockstar Games
2020-08-24 14:33:08 ----D---- C:\WINDOWS\system32\config
2020-08-19 13:12:57 ----D---- C:\Windows
2020-08-19 00:16:06 ----D---- C:\Users\maba\AppData\Roaming\discord
2020-08-18 20:43:08 ----D---- C:\WINDOWS\system32\DriverStore
2020-08-18 20:43:08 ----D---- C:\WINDOWS\INF
2020-08-18 20:36:32 ----D---- C:\WINDOWS\system32\drivers
2020-08-18 20:36:12 ----D---- C:\WINDOWS\SysWOW64
2020-08-17 23:56:47 ----RD---- C:\Program Files (x86)
2020-08-15 19:53:46 ----D---- C:\Users\maba\AppData\Roaming\Twitch Studio
2020-08-15 16:54:46 ----D---- C:\WINDOWS\WinSxS
2020-08-15 16:54:34 ----D---- C:\WINDOWS\system32\catroot2
2020-08-15 02:12:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-15 02:05:39 ----D---- C:\WINDOWS\system32\LogFiles
2020-08-15 02:05:34 ----D---- C:\Program Files (x86)\TunnelBear
2020-08-15 02:05:33 ----D---- C:\Program Files (x86)\TeamViewer
2020-08-15 02:05:29 ----D---- C:\WINDOWS\ServiceState
2020-08-15 02:05:28 ----ASH---- C:\DumpStack.log.tmp
2020-08-14 16:27:03 ----RD---- C:\WINDOWS\assembly
2020-08-14 16:03:28 ----D---- C:\WINDOWS\system32\Tasks
2020-08-14 16:01:25 ----D---- C:\WINDOWS\Minidump
2020-08-14 16:01:25 ----D---- C:\Users\maba\AppData\Roaming\DAEMON Tools Lite
2020-08-14 16:00:08 ----D---- C:\WINDOWS\system32\WDI
2020-08-14 14:04:51 ----D---- C:\Users\maba\AppData\Roaming\VideoProc
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\setup
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\migration
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-08-14 02:11:51 ----D---- C:\WINDOWS\SystemResources
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\WinMetadata
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\wbem
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\Sysprep
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\sk-SK
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\setup
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\PerceptionSimulation
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\oobe
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\migwiz
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\migration
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\en-US
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\Dism
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\Boot
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\appraiser
2020-08-14 02:11:48 ----RD---- C:\WINDOWS\PrintDialog
2020-08-14 02:11:48 ----D---- C:\WINDOWS\ShellExperiences
2020-08-14 02:11:48 ----D---- C:\WINDOWS\ShellComponents
2020-08-14 02:11:48 ----D---- C:\WINDOWS\Provisioning
2020-08-14 02:11:48 ----D---- C:\WINDOWS\PolicyDefinitions
2020-08-14 02:11:47 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2020-08-14 02:11:47 ----D---- C:\WINDOWS\bcastdvr
2020-08-14 02:11:47 ----D---- C:\WINDOWS\apppatch
2020-08-14 02:11:47 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2020-08-14 02:11:43 ----D---- C:\WINDOWS\system32\drivers\UMDF
2020-08-14 01:00:44 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2020-08-14 00:58:22 ----A---- C:\WINDOWS\system32\nvapi64.dll
2020-08-13 18:47:03 ----D---- C:\WINDOWS\CbsTemp
2020-08-13 18:47:02 ----D---- C:\WINDOWS\servicing
2020-08-12 12:36:19 ----D---- C:\WINDOWS\Logs
2020-08-10 14:36:46 ----RD---- C:\Program Files
2020-08-06 12:01:04 ----D---- C:\Program Files (x86)\AIMP
2020-08-05 17:06:22 ----D---- C:\Users\maba\AppData\Roaming\ViberPC
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-04-11 645480]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 57360]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2020-08-13 293176]
R0 pwdrvio;pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [2019-05-29 19152]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2019-12-07 41984]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2019-12-07 91136]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R1 MpKslDrv;MpKslDrv; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6CEA3383-6F6E-4EC2-916C-A78CB831457E}\MpKslDrv.sys [2020-08-29 78056]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-07-17 143160]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-08-13 491520]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-12-07 53248]
R3 CompFilter64;UVCCompositeFilter; C:\WINDOWS\System32\drivers\lvbflt64.sys [2012-10-26 26784]
R3 dtlitescsibus;@oem23.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2017-10-03 30264]
R3 dtliteusbbus;@oem20.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2019-01-03 47672]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-11-02 7966192]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2017-06-29 5826560]
R3 lvrs64;@oem24.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2012-10-26 351520]
R3 LVUVC64;@oem5.inf,%PID_0826_DD%(UVC);Logitech HD Webcam C525(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc64.sys [2012-10-26 4758176]
R3 MEIx64;@oem33.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-07-27 206496]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2019-12-07 322600]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\nvlddmkm.sys [2020-08-14 24694504]
R3 NvModuleTracker;@oem32.inf,%ServiceName%;NvModuleTracker; C:\WINDOWS\System32\drivers\NvModuleTracker.sys [2020-03-04 50592]
R3 nvvad_WaveExtensible;@oem15.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2020-02-25 69840]
R3 nvvhci;@oem43.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-03-11 67456]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-12-07 694272]
R3 rzudd;@oem7.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-08-13 202952]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 MbamElam;MbamElam; C:\WINDOWS\system32\DRIVERS\MbamElam.sys [2019-06-26 20936]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-12-07 138040]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-12-07 158736]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 415232]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 anvsnddrv;@oem3.inf,%anvsnddrv.SvcDesc%;AnvSoft Virtual Sound Device; C:\WINDOWS\system32\drivers\anvsnddrv.sys [2011-11-28 33872]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-12-07 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2019-12-07 138272]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2019-12-07 174608]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2019-12-07 154936]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 279040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-08-13 113664]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-12-07 106496]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-08-13 45568]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-08-13 1548288]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-08-13 110592]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-07-17 95032]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2018-12-20 229296]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-12-07 47104]
S3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\System32\drivers\IntcDAud.sys [2017-11-30 491048]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2020-08-13 386048]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-12-07 206336]
S3 phantomtap;Phantom TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\phantomtap.sys [2018-08-14 45056]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-12-07 104456]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 pwdspio;pwdspio; \??\C:\WINDOWS\system32\pwdspio.sys [2019-05-29 12504]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-07 990008]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-12-07 35128]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]
S4 NVHDA;@oem43.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 CDPUserSvc_15aeeaa9;Connected Devices Platform User Service_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-11-02 373744]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-05-07 874472]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe [2020-08-14 883104]
R2 OneSyncSvc_15aeeaa9;Sync Host_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 AarSvc_15aeeaa9;Agent Activation Runtime_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 cbdhsvc_15aeeaa9;Používateľská služba schránky_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2018-12-17 3644008]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 PimIndexMaintenanceSvc_15aeeaa9;Kontaktné údaje_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2020-08-13 976680]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-04-21 224144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-05-29 154920]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2020-04-14 3446576]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BcastDVRUserService_15aeeaa9;GameDVR and Broadcast User Service_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BluetoothUserService_15aeeaa9;Služba podpory používateľov rozhrania Bluetooth_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 CaptureService_15aeeaa9;CaptureService_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 ConsentUxUserSvc_15aeeaa9;ConsentUX_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-11-02 301552]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-17 380632]
S3 CredentialEnrollmentManagerUserSvc_15aeeaa9;CredentialEnrollmentManagerUserSvc_15aeeaa9; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-17 380632]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DeviceAssociationBrokerSvc_15aeeaa9;DeviceAssociationBroker_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicePickerUserSvc_15aeeaa9;DevicePicker_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicesFlowUserSvc_15aeeaa9;DevicesFlow_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-07-17 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-08-22 781440]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-04-21 224144]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 GalaxyClientService;GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2019-12-06 1569864]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2019-12-06 6617160]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\elevation_service.exe [2020-08-18 1309680]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-05-29 154920]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2019-06-26 6744288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MessagingService_15aeeaa9;MessagingService_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\elevation_service.exe [2020-08-25 1536904]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2020-04-14 2495280]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2020-05-11 105984]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PrintWorkflowUserSvc_15aeeaa9;PrintWorkflow_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2020-08-05 1453184]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2020-08-13 5097344]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2019-12-07 1263104]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2020-05-11 756552]
-----------------EOF-----------------
Ďakujem za kontrolu
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventívka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventívka
Zdravím!
Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . RSIT není s desítkami plně komaptibilní.
Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . RSIT není s desítkami plně komaptibilní.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventívka
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-08-2020
Ran by maba (administrator) on MABA-PC (Gigabyte Technology Co., Ltd. H81M-S2H) (31-08-2020 00:16:25)
Running from C:\Users\maba\Desktop
Loaded Profiles: maba
Platform: Windows 10 Pro Version 2004 19041.450 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20>
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2007.24723.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.9-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.9-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe <2>
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TunnelBear -> TunnelBear) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(Unpacker) [File not signed] C:\Users\maba\AppData\Roaming\Unpacker\Unpacker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2020-05-13] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Run: [limepro] => "C:\Program Files (x86)\Lime Pro\LimePro.exe" -h
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- hxxps://www.bing.com/entityexplore?q=Sho (the data entry has 179 more characters).
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\Installer\chrmstp.exe [2020-08-20] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {06D19906-BD09-4FBE-9E06-A7A6628F3AC4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {17FD9830-5605-4B03-86F9-ED4540788D9B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {20149051-5BC5-4C0E-ABF3-C8F87D4EC226} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {25D3C21F-8F64-44F9-9121-46F59DD646F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-05-29] (Google Inc -> Google LLC)
Task: {524DB6B0-95AB-4BD5-96EB-6A11B334C951} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5BC76984-8544-43C6-81A0-342B77ABBBB7} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {621B04FF-180E-4CE1-82AB-ED02D86E8B27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-05-29] (Google Inc -> Google LLC)
Task: {67DB6398-4D57-4F59-9F0A-5D408F2348AE} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6DF4D1FE-04CB-43DA-A18F-A7DFD35C1E48} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7481D0A4-AC03-4B87-A2DD-0AF64FF85FDA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7DAE0251-F920-4AC0-B600-052E4E05C887} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B739B30-68B4-4FDD-86FB-8DCA08047DD6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8DD2FAD6-4576-4B0E-AF95-2EB71D4DD188} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {94677A9F-4A28-45E4-8DFE-087D6F3C621C} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1703468806-2507580088-2124554830-1000 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-07-17] (Microsoft Windows -> )
Task: {A3A49CBA-2806-4124-BD7E-74D347D16246} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BA0FBD57-2DD6-46C4-B94F-5F34FA713945} - System32\Tasks\SoundInit => schtasks [Argument = /create /f /k /tn SoundBassInit /tr %appdata%\Unpacker\Unpacker.exe /sc minute /mo 30]
Task: {D9A0C304-8749-485C-85E2-C71E5E7F733B} - System32\Tasks\SoundBassInit => C:\Users\maba\AppData\Roaming\Unpacker\Unpacker.exe [287912960 2020-05-23] (Unpacker) [File not signed]
Task: {D9FA6B68-6F5D-4301-8613-0AEC21F311D8} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F3003549-3500-46CA-BE19-0D0D3AD05C7F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F9A7EBDB-23FF-4878-AE54-628E3375B953} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FE071A30-F8DF-4F07-896C-F8F333D11A90} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 178.18.68.16
Tcpip\..\Interfaces\{ac2205c9-f801-4fdc-acdf-685ba4b1b0ab}: [DhcpNameServer] 178.18.68.16
Internet Explorer:
==================
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.19.0_neutral__d55gg7py3s0m0 [2020-02-14]
Edge DefaultProfile: Default
Edge Profile: C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-14]
Edge Extension: (The FFZ Add-On Pack) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aiimboljphncldaakcnapfolgnjonlea [2020-04-21] [UpdateUrl:hxxps://cdn.ffzap.com/firefox-updates.json] <==== ATTENTION
Edge Extension: (MEGA) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2020-08-06]
Edge Extension: (NowStreaming - Twitch) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cfdokgjlnihoblidldhdomakblbaegim [2020-04-21]
Edge Extension: (Quick Javascript Switcher) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\geddoclleiomckbhadiaipdggiiccfje [2020-04-21]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2020-08-10]
Edge Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hdhinadidafjejdhmfkjgnolgimiaplp [2020-07-03]
Edge Extension: (BetterTTV) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\icllegkipkooaicfmdfaloehobmglglb [2020-04-21]
Edge Extension: (Rozšírenie Google Keep pre Chrome) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2020-08-08]
Edge HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-04-17]
FireFox:
========
FF HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\maba\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\maba\AppData\Roaming\IDM\idmmzcc5 [2020-04-17] [Legacy] [not signed]
FF HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default [2020-08-31]
CHR Notifications: Default -> hxxps://www1a.michellehardin.pro
CHR StartupUrls: Default -> "hxxp://www.azet.sk/","hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://abs.twimg.com/responsive-web/web/icon-default.3c3b2244.png
CHR Extension: (Prezentácie) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-05]
CHR Extension: (The FFZ Add-On Pack) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimboljphncldaakcnapfolgnjonlea [2020-06-16] [UpdateUrl:hxxps://cdn.ffzap.com/firefox-updates.json] <==== ATTENTION
CHR Extension: (BetterTTV) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-08-02]
CHR Extension: (Dark Theme for Google Chrome) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\annfbnbieaamhaimclajlajpijgkdblo [2020-06-05]
CHR Extension: (Dokumenty) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-05]
CHR Extension: (Disk Google) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-05]
CHR Extension: (YouTube) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-05]
CHR Extension: (NowStreaming - Twitch) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfdokgjlnihoblidldhdomakblbaegim [2020-06-08]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-08-07]
CHR Extension: (Hudba Google Play) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-04-22]
CHR Extension: (Tabuľky) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-05]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-13]
CHR Extension: (Twitch Fullscreen Plus) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbbmdehmiclndmeedcocofcjlpgjnmea [2020-06-24]
CHR Extension: (Twitter) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi [2020-07-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-03-27]
CHR Extension: (Chrome Media Router) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-22]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-04-17]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-04-17]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3644008 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-08-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1569864 2019-12-06] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-06] (GOG Sp. z o.o. -> GOG.com)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495280 2020-04-14] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3446576 2020-04-14] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-08-05] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5097344 2020-08-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13216784 2020-04-09] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [139896 2019-04-11] (TunnelBear -> TunnelBear)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\NisSrv.exe [2343112 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MsMpEng.exe [128360 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Co., Ltd. -> AnvSoft Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-10-03] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2019-01-03] (Disc Soft Ltd -> Disc Soft Ltd)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2018-08-14] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-05-29] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-05-29] (MiniTool Solution Ltd -> )
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2019-03-20] (TunnelBear, Inc. -> The OpenVPN Project)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2018-06-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-13] (Windscribe Limited -> The OpenVPN Project)
R1 veracrypt; C:\WINDOWS\System32\drivers\veracrypt.sys [831328 2020-03-09] (IDRIX SARL -> IDRIX)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2020-08-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [428256 2020-08-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69856 2020-08-29] (Microsoft Windows -> Microsoft Corporation)
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-08-31 00:16 - 2020-08-31 00:17 - 000023336 _____ C:\Users\maba\Desktop\FRST.txt
2020-08-31 00:15 - 2020-08-31 00:16 - 002298880 _____ (Farbar) C:\Users\maba\Desktop\FRST64.exe
2020-08-30 16:34 - 2020-08-30 16:34 - 000003556 _____ C:\WINDOWS\system32\Tasks\SoundBassInit
2020-08-29 21:23 - 2020-08-29 21:23 - 001222144 _____ C:\Users\maba\Desktop\RSITx64.exe
2020-08-18 20:36 - 2020-08-18 20:36 - 000000000 ____D C:\WINDOWS\LastGood
2020-08-18 20:09 - 2020-08-14 01:04 - 001780960 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-08-18 20:09 - 2020-08-14 01:04 - 001780960 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-08-18 20:09 - 2020-08-14 01:04 - 001371360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-08-18 20:09 - 2020-08-14 01:04 - 001371360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-08-18 20:09 - 2020-08-14 01:04 - 001086688 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-08-18 20:09 - 2020-08-14 01:04 - 001086688 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-08-18 20:09 - 2020-08-14 01:04 - 000946400 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-08-18 20:09 - 2020-08-14 01:04 - 000946400 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-08-18 20:09 - 2020-08-14 01:04 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-08-18 20:09 - 2020-08-14 01:04 - 000349928 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 001485544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 001018768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 000816360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 000675224 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 000669416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 000582904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-08-18 20:09 - 2020-08-14 01:01 - 000555920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 000541928 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 006653328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 005882600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 002376080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 002078096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 001570704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 000811240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 000443624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-08-18 20:09 - 2020-08-14 00:59 - 003916688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-08-18 20:09 - 2020-08-14 00:59 - 000849640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-08-18 20:09 - 2020-08-14 00:58 - 004707696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-08-18 20:09 - 2020-08-13 03:47 - 000077891 _____ C:\WINDOWS\system32\nvinfo.pb
2020-08-18 00:36 - 2020-08-18 00:36 - 000000000 ____D C:\Users\maba\AppData\Local\DOSBox
2020-08-18 00:33 - 2020-08-18 00:33 - 000000000 ____D C:\Users\maba\Desktop\polda 1 win 7
2020-08-17 23:44 - 2020-08-17 23:44 - 000000000 ____D C:\Users\maba\Downloads\Polda 1 - 6
2020-08-17 16:04 - 2020-08-17 16:04 - 000000000 ____D C:\Users\maba\AppData\Roaming\Zoom
2020-08-17 16:04 - 2020-08-17 16:04 - 000000000 ____D C:\Users\maba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-08-15 02:05 - 2020-08-15 02:05 - 000632840 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-08-14 16:00 - 2020-08-14 16:00 - 000080922 _____ C:\TDSSKiller.3.1.0.28_14.08.2020_16.00.06_log.txt
2020-08-13 18:45 - 2020-08-13 18:45 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 018766848 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 004819968 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 004783328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 004465664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 004307456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 004273664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 003661312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 003547280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 003364864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 002523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 002520056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 002254544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 002113032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 002018632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001879488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001818568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001501000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001423360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001352248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001332224 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001328936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001264128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 001225640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001117328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001014888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000945152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000913120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000759784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 000756224 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000665256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 000638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000530440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmscan.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000362064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vault.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvsievaluator.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 000162616 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvsigpext.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000137016 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsdefenderapplicationguardcsp.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintBrmUi.exe
2020-08-13 18:44 - 2020-08-13 18:45 - 007104000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 026271744 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 023434752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 019868160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 018071040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 014754816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 010925880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 010336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 008894656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 008229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 008004728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 007972696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 007628208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 007596032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006709248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006406144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006362176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006192640 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006188544 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006029312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005990344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005858136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005820416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005771904 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005420648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005056000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004880896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004746752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004726784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004629312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 004582288 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 004523520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004362832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-08-13 18:44 - 2020-08-13 18:44 - 004003384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 003999744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003913216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003867136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003859968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003846144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003843584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003818472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003810816 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 003806720 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003779400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 003750400 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003380224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003181056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003062784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002994504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 002947584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 002918728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002806160 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-08-13 18:44 - 2020-08-13 18:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-08-13 18:44 - 2020-08-13 18:44 - 002744832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 002686464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002587464 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002541056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002450944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002433024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002422072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002403328 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002265336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002259968 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002245632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002242048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002202112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002178040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002103712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002101248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002023688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001980744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001930200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001922048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001868152 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001819648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001805744 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-08-13 18:44 - 2020-08-13 18:44 - 001777152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001766912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001765376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001763640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001719096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001717760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001702400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001695216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001641472 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001616576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001596464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001557832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001543168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001538664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001514496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001506616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001504768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001496576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001472824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001394552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-08-13 18:44 - 2020-08-13 18:44 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001370112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001337168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001323520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001314616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001314616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001309512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-08-13 18:44 - 2020-08-13 18:44 - 001277440 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001255424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001252864 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001233408 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001221632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001209624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001197752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001197568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001184360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001181200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001158656 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-08-13 18:44 - 2020-08-13 18:44 - 001132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagCpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001095168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001093432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001090560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001089336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001047040 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001046528 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001044880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001041920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001030656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001030656 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001029632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001024744 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001019008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000994616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Facilitator.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000989184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000986976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000976680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000943416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000938416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000930304 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000920904 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000912744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000900936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000881624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000876544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000867328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000843416 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000837120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000827704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000825864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000801544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000768512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000765408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000760120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000759296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000755664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000749960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000747864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000743320 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000725608 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000722432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000707584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000707024 _____ C:\WINDOWS\system32\TextShaping.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000706032 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000696760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000685568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000675640 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000664064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000660584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000647992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntimewindows.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000639920 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UiaManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000634240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntime.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000630088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000602184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000600376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-08-13 18:44 - 2020-08-13 18:44 - 000589824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000583608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000581576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000565760 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000548544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000538440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000528360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000524088 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000517976 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000517432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UiaManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000509248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000508720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000502600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-08-13 18:44 - 2020-08-13 18:44 - 000500952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000495840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000471600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcIso.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-08-13 18:44 - 2020-08-13 18:44 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000454984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000442680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000440120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServerClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000420464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000417376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000401720 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000396288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallControlPanel.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000381704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000373560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000367416 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Vault.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000360024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000359936 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000353256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FrameServerClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AarSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxpTaskSync.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000324424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallControlPanel.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000303288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000293176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000292664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000288152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.FileExplorer.Common.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\accessibilitycpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000269624 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxpTaskSync.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000264704 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000253016 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApproveChildRequest.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000249672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000227640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\accessibilitycpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000217912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000214840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000213352 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000212480 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000202568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000195248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000195128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mskeyprotcli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dsui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000172496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000167896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapistub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000166288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\control.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpcsp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000153600 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000151864 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dsui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\control.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000142008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000139952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000138928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mskeyprotcli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000134984 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000132744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\recovery.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountControlSettings.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000123968 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000118072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MaintenanceUI.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000116040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcfgutils.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidfdp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000099640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountControlSettings.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcfgutils.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000094496 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000092960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000090416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\GPCSEWrapperCsp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcacli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000070968 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndadmin.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidnsp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndadmin.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidfdp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000064824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmlocalmanagement.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unenrollhook.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcacli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAProfileNotificationHandler.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardBi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmlocalmanagement.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDriverRetrievalClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifidatacapabilityhandler.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000042808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000042312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidnsp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000033096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000020280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000017224 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msidcrl40.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msidcrl40.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000012088 _____ (Microsoft Corporation) C:\WINDOWS\system32\6bea57fb-8dfb-4177-9ae8-42e8b3529933_RuntimeDeviceInstall.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000009281 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-08-13 18:44 - 2020-08-13 18:44 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-08-13 18:43 - 2020-08-13 18:43 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000808248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000678200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000639288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000602424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-08-13 18:43 - 2020-08-13 18:43 - 000472888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000418800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000215880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-08-13 18:43 - 2020-08-13 18:43 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-08-13 18:43 - 2020-08-13 18:43 - 000026600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IntelTA.sys
2020-08-13 18:39 - 2020-07-18 04:22 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-08-13 18:39 - 2020-07-18 04:01 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-08-12 12:36 - 2020-08-12 12:36 - 000000000 ___HD C:\$WinREAgent
2020-08-10 14:36 - 2020-08-10 14:37 - 000000000 ____D C:\Program Files\GoldWave
2020-08-10 14:36 - 2020-08-10 14:36 - 000000000 ____D C:\Users\maba\AppData\Roaming\GoldWave
2020-08-10 14:36 - 2020-08-10 14:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoldWave
2020-08-10 13:50 - 2020-08-10 14:06 - 000000000 ____D C:\Users\maba\AppData\Roaming\audacity
2020-08-10 13:50 - 2020-08-10 13:50 - 000001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2020-08-10 13:50 - 2020-08-10 13:50 - 000000000 ____D C:\Users\maba\Documents\Audacity
2020-08-10 13:50 - 2020-08-10 13:50 - 000000000 ____D C:\Users\maba\AppData\Local\Audacity
2020-08-10 13:49 - 2020-08-10 13:50 - 000000000 ____D C:\Program Files (x86)\Audacity
2020-08-02 16:06 - 2020-08-02 16:07 - 000000000 ____D C:\Users\maba\AppData\Local\Viber
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-08-31 00:16 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-08-31 00:16 - 2019-03-16 20:09 - 000000000 ____D C:\FRST
2020-08-31 00:08 - 2018-11-15 14:35 - 000000000 ____D C:\Users\maba\AppData\Roaming\AIMP
2020-08-30 23:48 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-30 23:32 - 2020-07-17 22:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-30 16:36 - 2020-02-05 18:49 - 000000000 ____D C:\ProgramData\NVIDIA
2020-08-30 16:34 - 2018-11-05 18:15 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-08-30 16:34 - 2017-09-27 21:31 - 000000000 __SHD C:\Users\maba\IntelGraphicsProfiles
2020-08-30 14:08 - 2020-05-01 15:56 - 000000000 ____D C:\Users\maba\AppData\Roaming\qBittorrent
2020-08-29 21:24 - 2019-02-28 20:23 - 000000000 ____D C:\Program Files\trend micro
2020-08-29 16:17 - 2018-11-05 20:53 - 000000000 ____D C:\Users\maba\AppData\Local\Dontnod
2020-08-29 16:13 - 2018-11-23 14:21 - 000000000 ____D C:\Users\maba\AppData\Roaming\vlc
2020-08-29 14:50 - 2020-07-17 21:58 - 000000000 ____D C:\Users\maba
2020-08-29 12:35 - 2018-11-05 20:25 - 000000000 ____D C:\Program Files (x86)\Steam
2020-08-29 12:28 - 2018-11-05 17:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-08-28 23:15 - 2020-04-21 13:27 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-28 23:15 - 2020-04-21 13:27 - 000002265 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-08-28 23:15 - 2020-04-21 13:27 - 000002265 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-08-28 23:15 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-28 23:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-08-27 15:08 - 2018-11-05 21:03 - 000000000 ____D C:\Users\maba\AppData\Local\D3DSCache
2020-08-25 13:39 - 2018-11-05 20:54 - 000000000 ____D C:\Program Files\Rockstar Games
2020-08-25 13:39 - 2018-11-05 20:54 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-08-25 13:35 - 2020-02-05 23:12 - 000000000 ____D C:\Users\maba\AppData\Local\NVIDIA
2020-08-20 15:09 - 2020-07-17 22:48 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-08-20 15:09 - 2020-07-17 22:48 - 000003452 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-08-20 01:03 - 2020-05-29 11:25 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-08-20 01:03 - 2020-05-29 11:25 - 000002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-08-20 01:03 - 2020-05-29 11:25 - 000002272 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-08-19 00:55 - 2018-11-05 21:01 - 000000000 ____D C:\Users\maba\AppData\Roaming\discord
2020-08-16 18:33 - 2018-11-05 21:01 - 000000000 ____D C:\Users\maba\AppData\Local\Discord
2020-08-16 18:33 - 2017-10-01 17:43 - 000000000 ____D C:\Users\maba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-08-16 13:32 - 2017-12-24 20:09 - 000000000 ____D C:\Users\maba\Desktop\Programy
2020-08-15 19:53 - 2020-04-16 17:10 - 000000000 ____D C:\Users\maba\AppData\Roaming\Twitch Studio
2020-08-15 02:12 - 2020-07-17 22:46 - 000840598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-15 02:05 - 2020-07-17 22:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-08-15 02:05 - 2020-07-17 22:43 - 000008192 ___SH C:\DumpStack.log.tmp
2020-08-15 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-08-15 02:05 - 2019-04-14 23:51 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2020-08-15 02:05 - 2018-11-06 00:29 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-08-15 02:00 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-08-14 16:03 - 2020-07-17 22:48 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-08-14 16:01 - 2020-07-23 22:37 - 000000000 ____D C:\WINDOWS\Minidump
2020-08-14 16:01 - 2019-01-03 22:25 - 000000000 ____D C:\Users\maba\AppData\Roaming\DAEMON Tools Lite
2020-08-14 14:04 - 2019-01-13 21:45 - 000000000 ____D C:\Users\maba\AppData\Roaming\VideoProc
2020-08-14 02:11 - 2019-12-07 16:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-08-14 01:00 - 2020-07-11 21:21 - 000656784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-08-14 00:58 - 2020-07-11 21:21 - 005395088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-08-13 18:47 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-08-13 18:47 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-08-06 14:00 - 2020-05-15 14:15 - 000000000 ____D C:\Users\maba\AppData\LocalLow\Mozilla
2020-08-06 12:01 - 2018-11-15 14:35 - 000000000 ____D C:\Program Files (x86)\AIMP
2020-08-05 17:06 - 2019-02-02 02:01 - 000000000 ____D C:\Users\maba\AppData\Roaming\ViberPC
==================== Files in the root of some directories ========
2019-01-14 16:57 - 2019-01-14 16:57 - 000007605 _____ () C:\Users\maba\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by maba (administrator) on MABA-PC (Gigabyte Technology Co., Ltd. H81M-S2H) (31-08-2020 00:16:25)
Running from C:\Users\maba\Desktop
Loaded Profiles: maba
Platform: Windows 10 Pro Version 2004 19041.450 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20>
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2007.24723.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.9-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2008.9-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe <2>
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TunnelBear -> TunnelBear) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(Unpacker) [File not signed] C:\Users\maba\AppData\Roaming\Unpacker\Unpacker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2020-05-13] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Run: [limepro] => "C:\Program Files (x86)\Lime Pro\LimePro.exe" -h
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- hxxps://www.bing.com/entityexplore?q=Sho (the data entry has 179 more characters).
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\Installer\chrmstp.exe [2020-08-20] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {06D19906-BD09-4FBE-9E06-A7A6628F3AC4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {17FD9830-5605-4B03-86F9-ED4540788D9B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {20149051-5BC5-4C0E-ABF3-C8F87D4EC226} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {25D3C21F-8F64-44F9-9121-46F59DD646F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-05-29] (Google Inc -> Google LLC)
Task: {524DB6B0-95AB-4BD5-96EB-6A11B334C951} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5BC76984-8544-43C6-81A0-342B77ABBBB7} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {621B04FF-180E-4CE1-82AB-ED02D86E8B27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-05-29] (Google Inc -> Google LLC)
Task: {67DB6398-4D57-4F59-9F0A-5D408F2348AE} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6DF4D1FE-04CB-43DA-A18F-A7DFD35C1E48} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7481D0A4-AC03-4B87-A2DD-0AF64FF85FDA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7DAE0251-F920-4AC0-B600-052E4E05C887} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B739B30-68B4-4FDD-86FB-8DCA08047DD6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8DD2FAD6-4576-4B0E-AF95-2EB71D4DD188} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {94677A9F-4A28-45E4-8DFE-087D6F3C621C} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1703468806-2507580088-2124554830-1000 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-07-17] (Microsoft Windows -> )
Task: {A3A49CBA-2806-4124-BD7E-74D347D16246} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MpCmdRun.exe [525032 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BA0FBD57-2DD6-46C4-B94F-5F34FA713945} - System32\Tasks\SoundInit => schtasks [Argument = /create /f /k /tn SoundBassInit /tr %appdata%\Unpacker\Unpacker.exe /sc minute /mo 30]
Task: {D9A0C304-8749-485C-85E2-C71E5E7F733B} - System32\Tasks\SoundBassInit => C:\Users\maba\AppData\Roaming\Unpacker\Unpacker.exe [287912960 2020-05-23] (Unpacker) [File not signed]
Task: {D9FA6B68-6F5D-4301-8613-0AEC21F311D8} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F3003549-3500-46CA-BE19-0D0D3AD05C7F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F9A7EBDB-23FF-4878-AE54-628E3375B953} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FE071A30-F8DF-4F07-896C-F8F333D11A90} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 178.18.68.16
Tcpip\..\Interfaces\{ac2205c9-f801-4fdc-acdf-685ba4b1b0ab}: [DhcpNameServer] 178.18.68.16
Internet Explorer:
==================
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.19.0_neutral__d55gg7py3s0m0 [2020-02-14]
Edge DefaultProfile: Default
Edge Profile: C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-14]
Edge Extension: (The FFZ Add-On Pack) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aiimboljphncldaakcnapfolgnjonlea [2020-04-21] [UpdateUrl:hxxps://cdn.ffzap.com/firefox-updates.json] <==== ATTENTION
Edge Extension: (MEGA) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2020-08-06]
Edge Extension: (NowStreaming - Twitch) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cfdokgjlnihoblidldhdomakblbaegim [2020-04-21]
Edge Extension: (Quick Javascript Switcher) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\geddoclleiomckbhadiaipdggiiccfje [2020-04-21]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2020-08-10]
Edge Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hdhinadidafjejdhmfkjgnolgimiaplp [2020-07-03]
Edge Extension: (BetterTTV) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\icllegkipkooaicfmdfaloehobmglglb [2020-04-21]
Edge Extension: (Rozšírenie Google Keep pre Chrome) - C:\Users\maba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2020-08-08]
Edge HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-04-17]
FireFox:
========
FF HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\maba\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\maba\AppData\Roaming\IDM\idmmzcc5 [2020-04-17] [Legacy] [not signed]
FF HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default [2020-08-31]
CHR Notifications: Default -> hxxps://www1a.michellehardin.pro
CHR StartupUrls: Default -> "hxxp://www.azet.sk/","hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://abs.twimg.com/responsive-web/web/icon-default.3c3b2244.png
CHR Extension: (Prezentácie) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-05]
CHR Extension: (The FFZ Add-On Pack) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimboljphncldaakcnapfolgnjonlea [2020-06-16] [UpdateUrl:hxxps://cdn.ffzap.com/firefox-updates.json] <==== ATTENTION
CHR Extension: (BetterTTV) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-08-02]
CHR Extension: (Dark Theme for Google Chrome) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\annfbnbieaamhaimclajlajpijgkdblo [2020-06-05]
CHR Extension: (Dokumenty) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-05]
CHR Extension: (Disk Google) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-05]
CHR Extension: (YouTube) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-05]
CHR Extension: (NowStreaming - Twitch) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfdokgjlnihoblidldhdomakblbaegim [2020-06-08]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-08-07]
CHR Extension: (Hudba Google Play) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-04-22]
CHR Extension: (Tabuľky) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-05]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-13]
CHR Extension: (Twitch Fullscreen Plus) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbbmdehmiclndmeedcocofcjlpgjnmea [2020-06-24]
CHR Extension: (Twitter) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi [2020-07-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-03-27]
CHR Extension: (Chrome Media Router) - C:\Users\maba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-22]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-04-17]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-04-17]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3644008 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-08-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1569864 2019-12-06] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-06] (GOG Sp. z o.o. -> GOG.com)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495280 2020-04-14] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3446576 2020-04-14] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-08-05] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5097344 2020-08-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13216784 2020-04-09] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [139896 2019-04-11] (TunnelBear -> TunnelBear)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\NisSrv.exe [2343112 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MsMpEng.exe [128360 2020-08-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Co., Ltd. -> AnvSoft Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-10-03] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2019-01-03] (Disc Soft Ltd -> Disc Soft Ltd)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2018-08-14] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-05-29] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-05-29] (MiniTool Solution Ltd -> )
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2019-03-20] (TunnelBear, Inc. -> The OpenVPN Project)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2018-06-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-13] (Windscribe Limited -> The OpenVPN Project)
R1 veracrypt; C:\WINDOWS\System32\drivers\veracrypt.sys [831328 2020-03-09] (IDRIX SARL -> IDRIX)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2020-08-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [428256 2020-08-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69856 2020-08-29] (Microsoft Windows -> Microsoft Corporation)
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-08-31 00:16 - 2020-08-31 00:17 - 000023336 _____ C:\Users\maba\Desktop\FRST.txt
2020-08-31 00:15 - 2020-08-31 00:16 - 002298880 _____ (Farbar) C:\Users\maba\Desktop\FRST64.exe
2020-08-30 16:34 - 2020-08-30 16:34 - 000003556 _____ C:\WINDOWS\system32\Tasks\SoundBassInit
2020-08-29 21:23 - 2020-08-29 21:23 - 001222144 _____ C:\Users\maba\Desktop\RSITx64.exe
2020-08-18 20:36 - 2020-08-18 20:36 - 000000000 ____D C:\WINDOWS\LastGood
2020-08-18 20:09 - 2020-08-14 01:04 - 001780960 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-08-18 20:09 - 2020-08-14 01:04 - 001780960 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-08-18 20:09 - 2020-08-14 01:04 - 001371360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-08-18 20:09 - 2020-08-14 01:04 - 001371360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-08-18 20:09 - 2020-08-14 01:04 - 001086688 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-08-18 20:09 - 2020-08-14 01:04 - 001086688 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-08-18 20:09 - 2020-08-14 01:04 - 000946400 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-08-18 20:09 - 2020-08-14 01:04 - 000946400 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-08-18 20:09 - 2020-08-14 01:04 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-08-18 20:09 - 2020-08-14 01:04 - 000349928 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 001485544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 001018768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 000816360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 000675224 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 000669416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 000582904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-08-18 20:09 - 2020-08-14 01:01 - 000555920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-08-18 20:09 - 2020-08-14 01:01 - 000541928 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 006653328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 005882600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 002376080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 002078096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 001570704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 000811240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-08-18 20:09 - 2020-08-14 01:00 - 000443624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-08-18 20:09 - 2020-08-14 00:59 - 003916688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-08-18 20:09 - 2020-08-14 00:59 - 000849640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-08-18 20:09 - 2020-08-14 00:58 - 004707696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-08-18 20:09 - 2020-08-13 03:47 - 000077891 _____ C:\WINDOWS\system32\nvinfo.pb
2020-08-18 00:36 - 2020-08-18 00:36 - 000000000 ____D C:\Users\maba\AppData\Local\DOSBox
2020-08-18 00:33 - 2020-08-18 00:33 - 000000000 ____D C:\Users\maba\Desktop\polda 1 win 7
2020-08-17 23:44 - 2020-08-17 23:44 - 000000000 ____D C:\Users\maba\Downloads\Polda 1 - 6
2020-08-17 16:04 - 2020-08-17 16:04 - 000000000 ____D C:\Users\maba\AppData\Roaming\Zoom
2020-08-17 16:04 - 2020-08-17 16:04 - 000000000 ____D C:\Users\maba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-08-15 02:05 - 2020-08-15 02:05 - 000632840 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-08-14 16:00 - 2020-08-14 16:00 - 000080922 _____ C:\TDSSKiller.3.1.0.28_14.08.2020_16.00.06_log.txt
2020-08-13 18:45 - 2020-08-13 18:45 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 018766848 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 004819968 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 004783328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 004465664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 004307456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 004273664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 003661312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 003547280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 003364864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 002523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 002520056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 002254544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 002113032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 002018632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001879488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001818568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001501000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001423360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001352248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001332224 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001328936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001264128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 001225640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001117328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 001014888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000945152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000913120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000759784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 000756224 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000665256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 000638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000530440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmscan.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000362064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2020-08-13 18:45 - 2020-08-13 18:45 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vault.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvsievaluator.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 000162616 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvsigpext.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000137016 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsdefenderapplicationguardcsp.dll
2020-08-13 18:45 - 2020-08-13 18:45 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-08-13 18:45 - 2020-08-13 18:45 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintBrmUi.exe
2020-08-13 18:44 - 2020-08-13 18:45 - 007104000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 026271744 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 023434752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 019868160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 018071040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 014754816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 010925880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 010336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 008894656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 008229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 008004728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 007972696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 007628208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 007596032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006709248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006406144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006362176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006192640 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006188544 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 006029312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005990344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005858136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005820416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005771904 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005420648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 005056000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004880896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004746752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004726784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004629312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 004582288 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 004523520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004362832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-08-13 18:44 - 2020-08-13 18:44 - 004003384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 003999744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003913216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003867136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003859968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003846144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003843584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003818472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003810816 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 003806720 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003779400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 003750400 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003380224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003181056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 003062784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002994504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 002947584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 002918728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002806160 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-08-13 18:44 - 2020-08-13 18:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-08-13 18:44 - 2020-08-13 18:44 - 002744832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 002686464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002587464 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002541056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002450944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002433024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002422072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002403328 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002265336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002259968 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002245632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002242048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002202112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002178040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002103712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002101248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 002023688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001980744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001930200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001922048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001868152 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001819648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001805744 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-08-13 18:44 - 2020-08-13 18:44 - 001777152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001766912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001765376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001763640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001719096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001717760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001702400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001695216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001641472 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001616576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001596464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001557832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001543168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001538664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001514496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001506616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001504768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001496576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001472824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001394552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-08-13 18:44 - 2020-08-13 18:44 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001370112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001337168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001323520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001314616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001314616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001309512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-08-13 18:44 - 2020-08-13 18:44 - 001277440 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001255424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001252864 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001233408 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001221632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001209624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001197752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001197568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001184360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 001181200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001158656 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-08-13 18:44 - 2020-08-13 18:44 - 001132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagCpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001095168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001093432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001090560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001089336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001047040 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001046528 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001044880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001041920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001030656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001030656 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001029632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001024744 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001019008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000994616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Facilitator.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000994304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000989184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000986976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000976680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000943416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000938416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000930304 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000920904 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000912744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000900936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000881624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000876544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000867328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000843416 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000837120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000827704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000825864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000801544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000768512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000765408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000760120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000759296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000755664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000749960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000747864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000743320 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000725608 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000722432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000707584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000707024 _____ C:\WINDOWS\system32\TextShaping.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000706032 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000696760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000685568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000675640 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000664064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000660584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000647992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntimewindows.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000639920 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UiaManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000634240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntime.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000630088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000602184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000600376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-08-13 18:44 - 2020-08-13 18:44 - 000589824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000583608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000581576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000565760 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000548544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000538440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000528360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000524088 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000517976 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000517432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UiaManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000509248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000508720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000502600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-08-13 18:44 - 2020-08-13 18:44 - 000500952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000495840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000471600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcIso.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-08-13 18:44 - 2020-08-13 18:44 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000454984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000442680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000440120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServerClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000420464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000417376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000401720 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000396288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallControlPanel.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000381704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000373560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000367416 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Vault.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000360024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000359936 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000353256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FrameServerClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AarSvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxpTaskSync.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000324424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallControlPanel.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000303288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000293176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000292664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000288152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.FileExplorer.Common.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\accessibilitycpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000269624 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxpTaskSync.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000264704 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000253016 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApproveChildRequest.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000249672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000227640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\accessibilitycpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000217912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000214840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000213352 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000212480 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000202568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000195248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000195128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mskeyprotcli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dsui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000172496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000167896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapistub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000166288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\control.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpcsp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000153600 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000151864 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dsui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\control.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000142008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000139952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000138928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mskeyprotcli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000134984 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000132744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\recovery.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountControlSettings.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000123968 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000118072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MaintenanceUI.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000116040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcfgutils.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidfdp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000099640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountControlSettings.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcfgutils.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000094496 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000092960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000090416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\GPCSEWrapperCsp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcacli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000070968 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndadmin.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidnsp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndadmin.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidfdp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000064824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmlocalmanagement.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unenrollhook.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcacli.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAProfileNotificationHandler.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardBi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmlocalmanagement.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDriverRetrievalClient.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifidatacapabilityhandler.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000042808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000042312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidnsp.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000033096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-08-13 18:44 - 2020-08-13 18:44 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000020280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000017224 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msidcrl40.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msidcrl40.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000012088 _____ (Microsoft Corporation) C:\WINDOWS\system32\6bea57fb-8dfb-4177-9ae8-42e8b3529933_RuntimeDeviceInstall.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000009281 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-08-13 18:44 - 2020-08-13 18:44 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2020-08-13 18:44 - 2020-08-13 18:44 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-08-13 18:44 - 2020-08-13 18:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-08-13 18:43 - 2020-08-13 18:43 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000808248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000678200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000639288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000602424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-08-13 18:43 - 2020-08-13 18:43 - 000472888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000418800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000215880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-08-13 18:43 - 2020-08-13 18:43 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-08-13 18:43 - 2020-08-13 18:43 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-08-13 18:43 - 2020-08-13 18:43 - 000026600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IntelTA.sys
2020-08-13 18:39 - 2020-07-18 04:22 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-08-13 18:39 - 2020-07-18 04:01 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-08-12 12:36 - 2020-08-12 12:36 - 000000000 ___HD C:\$WinREAgent
2020-08-10 14:36 - 2020-08-10 14:37 - 000000000 ____D C:\Program Files\GoldWave
2020-08-10 14:36 - 2020-08-10 14:36 - 000000000 ____D C:\Users\maba\AppData\Roaming\GoldWave
2020-08-10 14:36 - 2020-08-10 14:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoldWave
2020-08-10 13:50 - 2020-08-10 14:06 - 000000000 ____D C:\Users\maba\AppData\Roaming\audacity
2020-08-10 13:50 - 2020-08-10 13:50 - 000001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2020-08-10 13:50 - 2020-08-10 13:50 - 000000000 ____D C:\Users\maba\Documents\Audacity
2020-08-10 13:50 - 2020-08-10 13:50 - 000000000 ____D C:\Users\maba\AppData\Local\Audacity
2020-08-10 13:49 - 2020-08-10 13:50 - 000000000 ____D C:\Program Files (x86)\Audacity
2020-08-02 16:06 - 2020-08-02 16:07 - 000000000 ____D C:\Users\maba\AppData\Local\Viber
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-08-31 00:16 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-08-31 00:16 - 2019-03-16 20:09 - 000000000 ____D C:\FRST
2020-08-31 00:08 - 2018-11-15 14:35 - 000000000 ____D C:\Users\maba\AppData\Roaming\AIMP
2020-08-30 23:48 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-30 23:32 - 2020-07-17 22:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-30 16:36 - 2020-02-05 18:49 - 000000000 ____D C:\ProgramData\NVIDIA
2020-08-30 16:34 - 2018-11-05 18:15 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-08-30 16:34 - 2017-09-27 21:31 - 000000000 __SHD C:\Users\maba\IntelGraphicsProfiles
2020-08-30 14:08 - 2020-05-01 15:56 - 000000000 ____D C:\Users\maba\AppData\Roaming\qBittorrent
2020-08-29 21:24 - 2019-02-28 20:23 - 000000000 ____D C:\Program Files\trend micro
2020-08-29 16:17 - 2018-11-05 20:53 - 000000000 ____D C:\Users\maba\AppData\Local\Dontnod
2020-08-29 16:13 - 2018-11-23 14:21 - 000000000 ____D C:\Users\maba\AppData\Roaming\vlc
2020-08-29 14:50 - 2020-07-17 21:58 - 000000000 ____D C:\Users\maba
2020-08-29 12:35 - 2018-11-05 20:25 - 000000000 ____D C:\Program Files (x86)\Steam
2020-08-29 12:28 - 2018-11-05 17:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-08-28 23:15 - 2020-04-21 13:27 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-28 23:15 - 2020-04-21 13:27 - 000002265 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-08-28 23:15 - 2020-04-21 13:27 - 000002265 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-08-28 23:15 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-28 23:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-08-27 15:08 - 2018-11-05 21:03 - 000000000 ____D C:\Users\maba\AppData\Local\D3DSCache
2020-08-25 13:39 - 2018-11-05 20:54 - 000000000 ____D C:\Program Files\Rockstar Games
2020-08-25 13:39 - 2018-11-05 20:54 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-08-25 13:35 - 2020-02-05 23:12 - 000000000 ____D C:\Users\maba\AppData\Local\NVIDIA
2020-08-20 15:09 - 2020-07-17 22:48 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-08-20 15:09 - 2020-07-17 22:48 - 000003452 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-08-20 01:03 - 2020-05-29 11:25 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-08-20 01:03 - 2020-05-29 11:25 - 000002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-08-20 01:03 - 2020-05-29 11:25 - 000002272 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-08-19 00:55 - 2018-11-05 21:01 - 000000000 ____D C:\Users\maba\AppData\Roaming\discord
2020-08-16 18:33 - 2018-11-05 21:01 - 000000000 ____D C:\Users\maba\AppData\Local\Discord
2020-08-16 18:33 - 2017-10-01 17:43 - 000000000 ____D C:\Users\maba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-08-16 13:32 - 2017-12-24 20:09 - 000000000 ____D C:\Users\maba\Desktop\Programy
2020-08-15 19:53 - 2020-04-16 17:10 - 000000000 ____D C:\Users\maba\AppData\Roaming\Twitch Studio
2020-08-15 02:12 - 2020-07-17 22:46 - 000840598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-15 02:05 - 2020-07-17 22:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-08-15 02:05 - 2020-07-17 22:43 - 000008192 ___SH C:\DumpStack.log.tmp
2020-08-15 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-08-15 02:05 - 2019-04-14 23:51 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2020-08-15 02:05 - 2018-11-06 00:29 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-08-15 02:00 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-08-14 16:03 - 2020-07-17 22:48 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-08-14 16:01 - 2020-07-23 22:37 - 000000000 ____D C:\WINDOWS\Minidump
2020-08-14 16:01 - 2019-01-03 22:25 - 000000000 ____D C:\Users\maba\AppData\Roaming\DAEMON Tools Lite
2020-08-14 14:04 - 2019-01-13 21:45 - 000000000 ____D C:\Users\maba\AppData\Roaming\VideoProc
2020-08-14 02:11 - 2019-12-07 16:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-08-14 02:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-08-14 01:00 - 2020-07-11 21:21 - 000656784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-08-14 00:58 - 2020-07-11 21:21 - 005395088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-08-13 18:47 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-08-13 18:47 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-08-06 14:00 - 2020-05-15 14:15 - 000000000 ____D C:\Users\maba\AppData\LocalLow\Mozilla
2020-08-06 12:01 - 2018-11-15 14:35 - 000000000 ____D C:\Program Files (x86)\AIMP
2020-08-05 17:06 - 2019-02-02 02:01 - 000000000 ____D C:\Users\maba\AppData\Roaming\ViberPC
==================== Files in the root of some directories ========
2019-01-14 16:57 - 2019-01-14 16:57 - 000007605 _____ () C:\Users\maba\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Re: Preventívka
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-08-2020
Ran by maba (31-08-2020 00:17:47)
Running from C:\Users\maba\Desktop
Windows 10 Pro Version 2004 19041.450 (X64) (2020-07-17 20:48:35)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1703468806-2507580088-2124554830-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1703468806-2507580088-2124554830-503 - Limited - Disabled)
Guest (S-1-5-21-1703468806-2507580088-2124554830-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1703468806-2507580088-2124554830-1002 - Limited - Enabled)
maba (S-1-5-21-1703468806-2507580088-2124554830-1000 - Administrator - Enabled) => C:\Users\maba
WDAGUtilityAccount (S-1-5-21-1703468806-2507580088-2124554830-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Emsisoft Anti-Malware (Disabled - Up to date) {5FD8BF8F-F242-6153-61B5-8FF333E8736B}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AIMP (HKLM-x32\...\AIMP) (Version: v4.70.2224, 22.07.2020 - AIMP DevTeam)
AIMP2: Audio Tools (HKLM-x32\...\AIMP2at) (Version: - AIMP DevTeam)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo WinOptimizer 2018 (HKLM-x32\...\{4209F371-DBD7-A4A8-3604-A669D1DB15F3}_is1) (Version: 15.00.05 - Ashampoo GmbH & Co. KG)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bee Simulator (HKLM-x32\...\Bee Simulator_is1) (Version: - )
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.45.10 - Bethesda Softworks)
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
Colin McRae Rally (HKLM-x32\...\Colin McRae Rally) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0677 - Disc Soft Ltd)
Dangerous Driving (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Dangerous Driving) (Version: - HOODLUM)
DiRT Rally 2 0 (HKLM-x32\...\DiRT Rally 2 0_is1) (Version: - )
Discord (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Discord) (Version: 0.0.307 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
GoldWave v6.51 (HKLM\...\GoldWave v6.51) (Version: 6.51 - GoldWave Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.135 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Grand Prix Circuit version 1.0 (HKLM-x32\...\{857137D5-4D20-404F-AC94-75B2435D5EBF}_is1) (Version: 1.0 - )
ICQ New (version 10.0.40117) (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\icq.desktop) (Version: 10.0.40117 - Mail.ru LLC)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Leisure Suit Larry Wet Dreams Dont Dry (HKLM-x32\...\Leisure Suit Larry Wet Dreams Dont Dry_is1) (Version: - )
LibreOffice 6.3.3.2 (HKLM\...\{4DACF7A7-C851-4943-A63D-3CAE495C48E0}) (Version: 6.3.3.2 - The Document Foundation)
Lumina (HKLM-x32\...\Lumina_is1) (Version: - )
Mafia II Definitive Edition version final (HKLM-x32\...\Mafia II Definitive Edition_is1) (Version: final - The)
Malwarebytes verzia 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.41 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft OneDrive (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\OneDriveSetup.exe) (Version: 20.064.0329.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
MiniTool Partition Wizard Free 11 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Software Limited)
Mortal Kombat 2 (HKLM-x32\...\1207667053_is1) (Version: 2.0.0.2 - GOG.com)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
Need for Speed Most Wanted (black edition) (HKLM-x32\...\Need for Speed Most Wanted (black edition)) (Version: 1.3 - Electronic Arts)
nGlide 2.10 (HKLM-x32\...\nGlide) (Version: 2.10 - Zeus Software)
NHL 2001 (HKLM-x32\...\{BBA471C0-5EF2-11D4-0091-A500A0245DC0}) (Version: - )
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Grafický ovládač 452.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 452.06 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.68.39605 - Electronic Arts, Inc.)
OverDisk (remove only) (HKLM-x32\...\OverDisk) (Version: - )
Parkitect (HKLM-x32\...\Parkitect_is1) (Version: - )
Prince of Persia Sands of Time (HKLM-x32\...\Uplay Install 111) (Version: - Ubisoft)
Project64 version 2.3.2.202 (HKLM-x32\...\{BEB5FB69-4080-466F-96C4-F15DF271718B}_is1) (Version: 2.3.2.202 - )
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Raft v1.03 (HKLM-x32\...\vsetop.org Raft v1.03_is1) (Version: 1.03 - vsetop.org)
Rayman Origins (HKLM-x32\...\Uplay Install 80) (Version: - Ubisoft)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.34 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Roblox Player for maba (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for maba (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games)
Rygar (MAME 0.141 emulation for 64-bit Windows) (HKLM-x32\...\Rygar (MAME 0.141 emulation for 64-bit Windows)) (Version: - )
Someday Youll Return (HKLM-x32\...\Someday Youll Return_is1) (Version: 0.0.0 - DODI-Repacks)
South Park - The Stick of Truth (HKLM-x32\...\Uplay Install 3584) (Version: - Ubisoft)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.4.8332 - TeamViewer)
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft)
The Suicide of Rachel Foster (HKLM-x32\...\The Suicide of Rachel Foster_is1) (Version: - )
Tom Clancy's Splinter Cell (HKLM-x32\...\Uplay Install 109) (Version: - Ubisoft)
Tropico 6 (HKLM-x32\...\Tropico 6_is1) (Version: - )
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
TrucksBook Client verze 1.3.3 (HKLM-x32\...\TrucksBook Client_is1) (Version: 1.3.3 - TrucksBook)
TunnelBear (HKLM-x32\...\{1713CFE6-1661-47A9-91D3-B35C367FE421}) (Version: 3.7.8.0 - TunnelBear) Hidden
TunnelBear (HKLM-x32\...\{a30a854f-0c68-44b5-8173-e370fcf4dc7f}) (Version: 3.7.8.0 - TunnelBear)
Turrican II version 1.0 (HKLM-x32\...\{4F3BC276-BE24-4D54-83D3-3B898905255D}_is1) (Version: 1.0 - )
Twitch (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Twitch Sings (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372C0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Twitch Studio (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 102.0 - Ubisoft)
VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.24-Update4 - IDRIX)
Viber (HKLM-x32\...\{E5AA947D-110B-492B-A71B-DA111290BA87}) (Version: 9.9.6.53 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\{c00b42e6-072e-4993-bd15-e6fd61f4ce4f}) (Version: 9.9.6.53 - Viber Media Inc.)
VideoProc (HKLM-x32\...\VideoProc) (Version: 3.2 - Digiarty, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.23072 - Microsoft Corporation)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Within Whispers The Fall (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Within Whispers The Fall) (Version: - HOODLUM)
Zoom (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\ZoomUMX) (Version: 5.2.1 (44052.0816) - Zoom Video Communications, Inc.)
Packages:
=========
Adblock Plus -> C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.19.0_neutral__d55gg7py3s0m0 [2020-02-14] (eyeo GmbH)
Adobe Photoshop Express: Image Editor, Adjustments, Filters, Effects, Borders -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobePhotoshopExpress_3.2.14.0_x64__ynb6jyjzte8ga [2020-08-08] (Adobe Inc.)
Asphalt 9: Legends -> C:\Program Files\WindowsApps\A278AB0D.Asphalt9_2.3.400.2_x86__h6adky7gbf63m [2020-07-05] (Gameloft SE)
Australian Landscapes by Ian Johnson -> C:\Program Files\WindowsApps\Microsoft.AustralianLandscapesbyIanJohnson_1.0.0.0_neutral__8wekyb3d8bbwe [2019-05-24] (Microsoft Corporation)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1820.3.0_x86__kgqvnymyfvs32 [2020-08-08] (king.com)
Command your Cortana -> C:\Program Files\WindowsApps\3038Spaceclick.CommandyourCortana_1.2.5.0_x64__rc5bk8kfz70cr [2020-07-17] (Spaceclick) [MS Ad]
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-18] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-07-20] (Microsoft Corporation)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-06] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8042.0_x64__8wekyb3d8bbwe [2020-08-08] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.1002.0_x64__8wekyb3d8bbwe [2020-08-08] (Microsoft Studios)
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-06-23] (NVIDIA Corp.)
Pinterest -> C:\Program Files\WindowsApps\1424566A.147190DF3DE79_1.0.20.0_neutral__5byw4zywtsh80 [2020-02-11] (Pinterest Inc.)
ROBLOX -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.442.16156.0_x86__55nm5eh3cm0pr [2020-08-08] (ROBLOX Corporation)
The Solar Eclipse -> C:\Program Files\WindowsApps\Microsoft.TheSolarEclipse_1.0.0.0_neutral__8wekyb3d8bbwe [2019-11-07] (Microsoft Corporation)
Trio Office -> C:\Program Files\WindowsApps\64343GTDocStudio.OfficeDocOpener_3.2.19.0_x86__3h5nez1g3qt2c [2020-08-08] (GT Office PDF Studio)
Ultra Blu-ray Player Supports DVD -> C:\Program Files\WindowsApps\D5BE6627.UltraBlu-rayPlayerSupportsDVD_2.0.8.0_x86__9pm2v9747qaaa [2020-05-15] (CompuClever Systems Inc.)
Ultra Office -> C:\Program Files\WindowsApps\D5BE6627.UltraOffice_1.0.9.0_x86__9pm2v9747qaaa [2020-02-14] (CompuClever Systems Inc.)
UNO Free! -> C:\Program Files\WindowsApps\50483MicroGames.UNOFree_2.1.16.0_x64__gkngqq7ztxek8 [2020-07-12] (MicroGames)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\nvshext.dll [2020-08-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\maba\Desktop\Programy\Twitter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
ShortcutWithArgument: C:\Users\maba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Hudba Google Play.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
ShortcutWithArgument: C:\Users\maba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Twitter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
==================== Loaded Modules (Whitelisted) =============
2019-04-11 13:49 - 2019-04-11 13:49 - 000030720 _____ () [File not signed] [File is in use] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2019-04-11 13:50 - 2019-04-11 13:50 - 000167424 _____ () [File not signed] [File is in use] C:\Program Files (x86)\TunnelBear\TunnelBear.VigilantBear.Wrapper.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\maba\Downloads\OperaSetup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\maba\Downloads\TeamSpeak3-Client-win64-3.5.3.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [446]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 09:31 - 2020-08-15 02:05 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\maba\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\mafia-ukazala-svoj-novy-art-244590-2288324.jpg
DNS Servers: 178.18.68.16
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "AvastUI.exe"
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E7F47E01-1551-4BFF-8A38-49F472859259}] => (Allow) E:\SteamLibrary\steamapps\common\GenitalJousting\GenitalJousting.exe () [File not signed]
FirewallRules: [{FCDF3450-E40A-41AB-816F-342B1AA27586}] => (Allow) E:\SteamLibrary\steamapps\common\GenitalJousting\GenitalJousting.exe () [File not signed]
FirewallRules: [{34F552FD-7D30-4006-9F70-44EFDCA2CEE1}] => (Allow) E:\SteamLibrary\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe () [File not signed]
FirewallRules: [{10FF5583-C57E-4780-BD1F-DC6852BDD736}] => (Allow) E:\SteamLibrary\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe () [File not signed]
FirewallRules: [{7A9455B4-9510-4369-ABC2-65710BEBDCD5}] => (Allow) E:\Stiahnute\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{2410AD50-ACCB-4CD5-990F-9BD0B2042AE1}] => (Allow) E:\Stiahnute\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{A6600874-9C16-45DE-8A07-0A59311AB0F7}] => (Allow) E:\SteamLibrary\steamapps\common\Whos Your Daddy\WhosYourDaddy.exe () [File not signed]
FirewallRules: [{CA225FC5-8DAB-4C1E-9095-7AFD9ECD9DF4}] => (Allow) E:\SteamLibrary\steamapps\common\Whos Your Daddy\WhosYourDaddy.exe () [File not signed]
FirewallRules: [{7E2073B4-7D65-40CF-8FFE-815BE592A97D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34E0CA26-FBF5-4211-8101-DDC4898C781F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A3F3F767-9538-4DBA-B426-39A235F54932}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5822EEF6-879B-4AC9-9F1B-2E1B1ACE8BE9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BC3D3304-64A2-42A0-8758-E17E0D7EBEC1}] => (Allow) E:\SteamLibrary\steamapps\common\Shadow of the Tomb Raider\SOTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{D101CFDD-EDC2-46D8-A0CD-B7ABAF08D6C7}] => (Allow) E:\SteamLibrary\steamapps\common\Shadow of the Tomb Raider\SOTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{8E4033D5-3F83-461C-82FB-6BA820B7FEFA}] => (Allow) E:\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F38B5D25-2368-42F3-A4E8-3FF80C2DF444}] => (Allow) E:\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F14244AF-BFA4-4F45-8473-A09FEFAE6CEB}] => (Allow) E:\SteamLibrary\steamapps\common\VELVETIST prototype\MLS.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{7F6E5E35-33F1-4AA6-9CF4-4DF2D5BA31DB}] => (Allow) E:\SteamLibrary\steamapps\common\VELVETIST prototype\MLS.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{2F2BAFF4-C017-432B-9DEB-41FFBC3E4AD9}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{C6AF812E-6BCC-478E-8646-148A4B3DD2FF}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{EA9748E4-4CE7-4F16-86BE-B1E461EA4A60}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{7BE5B7C2-F3EF-455E-B7C6-4723E3C906B8}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{76938471-BAE1-49F6-A4E6-81DCAF535A82}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{4FEFEFDF-56FD-4682-A5AF-289BD983FBA4}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1C43D5BD-959C-4091-B135-F66C633FB325}] => (Allow) E:\SteamLibrary\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe () [File not signed]
FirewallRules: [{16226C39-4DB6-45FF-8165-003767FD8419}] => (Allow) E:\SteamLibrary\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe () [File not signed]
FirewallRules: [{2458512B-A929-4AB8-871B-CEBAAF840116}] => (Allow) E:\SteamLibrary\steamapps\common\Engine Evolution\Engine Evolution.exe () [File not signed]
FirewallRules: [{18BE3648-2562-4EE9-ADB8-662448DE910C}] => (Allow) E:\SteamLibrary\steamapps\common\Engine Evolution\Engine Evolution.exe () [File not signed]
FirewallRules: [{E065B3B5-707A-467C-A458-11213B3CE619}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{B79A98AC-9A78-4F6A-813A-633415AC9911}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{377AE01D-1868-4EC4-BCA6-8832A3C11C48}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C5F883F1-4D7D-481F-B2C0-D633F0E829DC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AEC50333-009E-42F8-8E58-C43253887490}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{549CFE22-9C86-4E2F-8847-6C9462B338C7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{378B4A86-13CB-4A4F-B2ED-BE0758A6B32F}] => (Allow) E:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{D467978B-9C3D-4470-AE1F-516E93ED73E6}] => (Allow) E:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{C303E923-16BA-487C-9842-7F411D6CB23F}] => (Allow) E:\SteamLibrary\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{01253CD6-2DCB-4CFF-874A-BAFA8C34A1AA}] => (Allow) E:\SteamLibrary\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{D6F04EA6-A13E-412C-8BA6-6C15FE2C5FD5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F2193E7A-07EF-4558-B6F9-A3B63FF0F9ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CB8320DA-C6DA-4B5B-B8BF-37AF02B56C05}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{69657C91-BDD7-42A1-8488-0F5A22A5DA3D}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{553E69D4-BB41-4BEC-A348-9CDDAC975FEB}] => (Allow) E:\Stiahnute\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7CF7B974-62DE-41FE-87DA-4C8096044C67}] => (Allow) E:\Stiahnute\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{5D050769-B78D-4DB3-B8CB-82471BEC2287}] => (Allow) E:\Stiahnute\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{AB1644DD-929D-4254-9885-7454E83C65AE}] => (Allow) E:\Stiahnute\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{613185B2-2133-4553-A6D5-571EB33FF7C5}] => (Allow) E:\SteamLibrary\steamapps\common\One Finger Death Punch 2\One Finger Death Punch 2.exe () [File not signed]
FirewallRules: [{B5DE47A1-EBB4-460A-B09D-72BAC3CE9B7C}] => (Allow) E:\SteamLibrary\steamapps\common\One Finger Death Punch 2\One Finger Death Punch 2.exe () [File not signed]
FirewallRules: [{59EFFF0B-5BA6-4087-A690-85BB5E448D27}] => (Allow) E:\SteamLibrary\steamapps\common\thief_gold\THIEF.EXE (Looking Glass Studios) [File not signed]
FirewallRules: [{BF91D77B-1CB4-46C1-90F7-63AD119A28C5}] => (Allow) E:\SteamLibrary\steamapps\common\thief_gold\THIEF.EXE (Looking Glass Studios) [File not signed]
FirewallRules: [{D8E9F440-7F6E-43DA-A03D-EADEF50E3677}] => (Allow) E:\SteamLibrary\steamapps\common\Farm Together\FarmTogether.exe () [File not signed]
FirewallRules: [{35D81982-6FFD-4C6D-9660-DCB5DDFE8B3D}] => (Allow) E:\SteamLibrary\steamapps\common\Farm Together\FarmTogether.exe () [File not signed]
FirewallRules: [{2EB684A5-5855-4233-B991-FF1EF55A0920}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{8B238E75-2C4E-4957-ABB6-0C0054067F74}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{F312E614-510B-4F2F-9AA9-4E2F9748DDA0}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{A861D1A2-A682-4F4A-AF20-5FBCEC1F967F}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{705B4C87-EF9F-4E52-AB9D-2F3C9ED69646}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{AEA16D99-3835-44B7-BA7D-F859B94BF873}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [UDP Query User{C383AF49-F6D8-46D4-8F6A-011E3AE572D7}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{162309BD-2B8D-4E13-A872-338234BED744}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{FF5ECD7D-D9A8-42C1-9BFD-0921A045A2BC}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{AA041EAE-867A-4F8E-93BF-54C1558E9303}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{C3760F5A-4349-4153-B642-AC5F0425C4E2}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{769CE25F-0627-4041-993B-439C2388926E}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{6E96B9AB-EB0F-4F78-A64B-D287D79DABF6}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{E9E29801-7BC8-4BE9-8D55-283138652278}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{4572A8C8-B072-4596-BBFE-CBC7C775EB1F}] => (Allow) E:\SteamLibrary\steamapps\common\Millie\Millie.exe () [File not signed]
FirewallRules: [{07B52D1A-311F-4D54-8669-07DA7CADBE24}] => (Allow) E:\SteamLibrary\steamapps\common\Millie\Millie.exe () [File not signed]
FirewallRules: [UDP Query User{E78E5C05-2430-4098-BAE2-FC8D488BC7A1}E:\steamlibrary\steamapps\common\all-star fruit racing\allstarfruitracing\binaries\win64\allstarfruitracing-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\all-star fruit racing\allstarfruitracing\binaries\win64\allstarfruitracing-win64-shipping.exe (PQube Limited) [File not signed]
FirewallRules: [TCP Query User{FF90F85F-45BB-4FE6-A7BF-D4CDF730416C}E:\steamlibrary\steamapps\common\all-star fruit racing\allstarfruitracing\binaries\win64\allstarfruitracing-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\all-star fruit racing\allstarfruitracing\binaries\win64\allstarfruitracing-win64-shipping.exe (PQube Limited) [File not signed]
FirewallRules: [{A36D2C31-C154-4E2F-B376-227BDA72D099}] => (Allow) E:\SteamLibrary\steamapps\common\All-Star Fruit Racing\AllStarFruitRacing.exe () [File not signed]
FirewallRules: [{BE712BE3-A1C8-4A6B-9A2C-F547EE80C9A2}] => (Allow) E:\SteamLibrary\steamapps\common\All-Star Fruit Racing\AllStarFruitRacing.exe () [File not signed]
FirewallRules: [{B240E56A-B78F-4ED6-B8F7-4773B8CC25DC}] => (Allow) E:\SteamLibrary\steamapps\common\SleepingDogsDefinitiveEdition\sdhdship.exe (SQUARE ENIX LIMITED) [File not signed]
FirewallRules: [{16F22F3A-EAA6-4D10-8948-28C1E2492CF7}] => (Allow) E:\SteamLibrary\steamapps\common\SleepingDogsDefinitiveEdition\sdhdship.exe (SQUARE ENIX LIMITED) [File not signed]
FirewallRules: [UDP Query User{FA58FF60-A244-4657-80C0-18299B4DA0CC}C:\users\maba\desktop\programy\anydesk.exe] => (Allow) C:\users\maba\desktop\programy\anydesk.exe (philandro Software GmbH -> )
FirewallRules: [TCP Query User{222F0AA0-E6B6-4335-8D91-0AC7A97CF503}C:\users\maba\desktop\programy\anydesk.exe] => (Allow) C:\users\maba\desktop\programy\anydesk.exe (philandro Software GmbH -> )
FirewallRules: [{2A8C99EF-0663-4FDB-BAC5-99C71BE8ABE0}] => (Allow) E:\SteamLibrary\steamapps\common\Thief Deadly Shadows\System\runme.exe () [File not signed]
FirewallRules: [{AA1F17DF-B105-4DF5-BD2D-BFF59FB42BFF}] => (Allow) E:\SteamLibrary\steamapps\common\Thief Deadly Shadows\System\runme.exe () [File not signed]
FirewallRules: [{8891B4E5-2B01-43A3-BE83-DF2176920511}] => (Allow) E:\SteamLibrary\steamapps\common\Prince of Persia The Warrior Within\PrinceOfPersia.exe (UBISOFT) [File not signed]
FirewallRules: [{463C0DBF-9D1E-45C5-996E-F886DF0A1FF1}] => (Allow) E:\SteamLibrary\steamapps\common\Prince of Persia The Warrior Within\PrinceOfPersia.exe (UBISOFT) [File not signed]
FirewallRules: [UDP Query User{8FD38DF1-306A-4A04-8648-5D175F734073}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{0BA4143C-8ECA-48B9-8A4E-D62E93BB3842}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{D425C449-9AA4-43EF-B7AF-DE651D43F265}] => (Allow) E:\SteamLibrary\steamapps\common\Blast Zone! Tournament\BZ.exe () [File not signed]
FirewallRules: [{8E10CBB7-B54A-48AD-AA8E-6DB52D3E0DDE}] => (Allow) E:\SteamLibrary\steamapps\common\Blast Zone! Tournament\BZ.exe () [File not signed]
FirewallRules: [{2DA346F8-C9E1-405B-B9AF-D88C927FCEC5}] => (Allow) E:\SteamLibrary\steamapps\common\Tennis Elbow 2013\Config.exe (Emmanuel Rivoire -> Mana Games)
FirewallRules: [{BD2E9CAE-1995-474B-B432-5E2D687F7FBA}] => (Allow) E:\SteamLibrary\steamapps\common\Tennis Elbow 2013\Config.exe (Emmanuel Rivoire -> Mana Games)
FirewallRules: [{E5950BBF-A673-4A1E-9255-87623CC231E9}] => (Allow) E:\SteamLibrary\steamapps\common\Tennis Elbow 2013\TennisElbow.exe (Emmanuel Rivoire -> Mana Games)
FirewallRules: [{D85DCB75-C59E-4664-AAA7-B94372954F11}] => (Allow) E:\SteamLibrary\steamapps\common\Tennis Elbow 2013\TennisElbow.exe (Emmanuel Rivoire -> Mana Games)
FirewallRules: [{2117790C-FFE1-4DE5-A9A5-DC05A9972ECF}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{D39845F1-1550-40D5-8C69-9B6D8E91A4CB}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{45057440-1F9B-41DB-9F5F-C277070340DE}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{D5102775-5D83-4607-8D7F-9370F2EA34EF}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{201C0F5C-0F52-4A62-8601-29D062BAB76B}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{C3004FD9-1AF4-4C81-B46B-22A04C68398F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{045C649A-0E55-4C7E-A875-CCD77A0E919B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A0340CE3-4A1C-406D-A224-88ED15717E13}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8944F9A7-2EE2-4632-B0D2-78D9122F9DF2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BEB938D7-05FB-4574-ADA4-D2B40BF0B462}] => (Allow) E:\SteamLibrary\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [File not signed]
FirewallRules: [{23C37E1B-A795-4C42-97C2-05DC446964DE}] => (Allow) E:\SteamLibrary\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [File not signed]
FirewallRules: [{7D661A71-1642-4A2F-95E4-39247F7B755D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{04FF01D3-F77A-4E9C-889D-1D55C5171480}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{BE7132AA-F6C9-4769-8AC8-D3D2884508AD}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{8DDBE159-F324-4938-80D5-CE1CFECEE1AD}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C6529D7D-74A0-4EB8-AB3F-0FB6811D5BD2}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{C48CBB3B-C42C-4930-BD6C-BC0DBC306A39}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{1B2F3D97-00A9-4C23-B0F2-A78FCCF8440E}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{C88FA400-A246-406D-8E03-9E4686B0A94B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{5F9EA3CB-2A70-4CCC-A6EC-D98431C2DFDF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4BE9F8D6-30AE-43AB-AFB9-CEC0AF63E905}] => (Allow) E:\SteamLibrary\steamapps\common\Elon Simulator 2019\Elon Simulator 2019.exe () [File not signed]
FirewallRules: [{7B955640-2C42-46B6-8909-79075151E4C5}] => (Allow) E:\SteamLibrary\steamapps\common\Elon Simulator 2019\Elon Simulator 2019.exe () [File not signed]
FirewallRules: [{C484BA4B-74D3-49E9-9E45-934457F9EA1B}] => (Allow) E:\SteamLibrary\steamapps\common\Goat of Duty\GoatOfDuty.exe () [File not signed]
FirewallRules: [{27E4C2CC-940B-489C-8E14-D80639C972FA}] => (Allow) E:\SteamLibrary\steamapps\common\Goat of Duty\GoatOfDuty.exe () [File not signed]
FirewallRules: [TCP Query User{6E8F06BB-CC08-4130-8868-B5A5B75FE57F}E:\steamlibrary\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{D1BE63E8-DF31-40B7-9AF6-6392D9185D77}E:\steamlibrary\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{B2266609-7FD8-4BFB-A710-3B214C5750CE}] => (Allow) E:\SteamLibrary\steamapps\common\Ylands\Ylands.exe (BOHEMIA INTERACTIVE a.s. -> )
FirewallRules: [{29DF1160-F2EB-4591-BB60-1F7A63C23E88}] => (Allow) E:\SteamLibrary\steamapps\common\Ylands\Ylands.exe (BOHEMIA INTERACTIVE a.s. -> )
FirewallRules: [{CA72A1F0-28C4-4955-9C8B-5E3DCEACC660}] => (Allow) E:\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{1072C050-603F-46BA-A9FB-7899007CC2A6}] => (Allow) E:\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{48C6EFF5-B63F-484E-A2B3-2FFEEB9CDC37}E:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) E:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{09C89594-2147-4F65-A3C1-B4E8930D3D5A}E:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) E:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{66B7A92C-FABB-4FBE-B24E-C606B21D90D9}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{261018DD-77DD-44E2-BF1B-B04EBEC09FBE}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{E15C85C7-4C6F-4AE9-AAEA-C4ED5181A828}] => (Allow) E:\SteamLibrary\steamapps\common\Prominence Poker\Prominence\Binaries\Win64\Prominence-Win64-Shipping.exe (505 Games) [File not signed]
FirewallRules: [{1E7B6788-EF66-4A7D-BB23-52D7495B846C}] => (Allow) E:\SteamLibrary\steamapps\common\Prominence Poker\Prominence\Binaries\Win64\Prominence-Win64-Shipping.exe (505 Games) [File not signed]
FirewallRules: [{2B5382AD-459D-4E9F-937B-E2E103C73393}] => (Allow) E:\SteamLibrary\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe () [File not signed]
FirewallRules: [{DF539D1E-BCD8-401A-99AD-E2C03ED24D16}] => (Allow) E:\SteamLibrary\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe () [File not signed]
FirewallRules: [{E0DAD4D6-B656-4FE8-8433-BA394F019915}] => (Allow) E:\SteamLibrary\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe () [File not signed]
FirewallRules: [{6ACC563A-B3A8-4CE2-ABB3-03E568871FFC}] => (Allow) E:\SteamLibrary\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe () [File not signed]
FirewallRules: [{C8CE3FCC-A11D-4257-B4B5-077BA852863C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D73F1623-89F5-411B-9365-C98F89B78DC8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0CF3F222-F5A8-486D-AA55-928BFB8315E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7C7FEB29-FA00-459A-908F-D59520262998}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{20F3574B-0D89-4B87-A433-C8DF9DFDD5C2}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{96F41049-886B-445D-B784-A0F635979C2B}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{14A65EFC-2E85-4743-A19C-7957F3D31524}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1DCA8976-98BE-4EBF-A467-1F11A55D237C}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{12AF1123-94E3-4039-927A-C68BDBD000F0}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{E3880558-19F0-46F9-9692-5AF151C18ED6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{9C1E7A1B-453B-4DAB-A530-748DF84378C5}E:\stiahnute\tell.me.why.chapter.1-chronos\tell me why\tme\binaries\win64\tme-win64-shipping.exe] => (Allow) E:\stiahnute\tell.me.why.chapter.1-chronos\tell me why\tme\binaries\win64\tme-win64-shipping.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{F2655282-56EB-489B-BFED-1EFFED91A289}E:\stiahnute\tell.me.why.chapter.1-chronos\tell me why\tme\binaries\win64\tme-win64-shipping.exe] => (Allow) E:\stiahnute\tell.me.why.chapter.1-chronos\tell me why\tme\binaries\win64\tme-win64-shipping.exe (Microsoft) [File not signed]
FirewallRules: [TCP Query User{7A2DBA3B-1292-497F-AD28-F182756D0929}C:\program files (x86)\lime pro\limepro.exe] => (Allow) C:\program files (x86)\lime pro\limepro.exe => No File
FirewallRules: [UDP Query User{BD26402B-13AC-4A46-B2B8-8E4DFBFEADB2}C:\program files (x86)\lime pro\limepro.exe] => (Allow) C:\program files (x86)\lime pro\limepro.exe => No File
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:110.93 GB) (Free:45.83 GB) (41%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/28/2020 10:21:31 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:29 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:15 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:10 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:07 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:06 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
System errors:
=============
Error: (08/18/2020 09:59:06 PM) (Source: DCOM) (EventID: 10010) (User: maba-PC)
Description: The server {94269C4E-071A-4116-90E6-52E557067E4E} did not register with DCOM within the required timeout.
Error: (08/18/2020 08:36:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 6000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
Error: (08/18/2020 08:36:12 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba NVIDIA LocalSystem Container bola ukončená s nasledujúcou chybou:
A generic command executable returned a result that indicates failure.
Error: (08/17/2020 11:54:50 PM) (Source: DCOM) (EventID: 10010) (User: maba-PC)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
Error: (08/15/2020 02:05:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Origin Web Helper Service zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.
Error: (08/15/2020 02:05:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Origin Web Helper Service bol dosiahnutý časový limit (45000 ms).
Error: (08/14/2020 04:04:12 PM) (Source: DCOM) (EventID: 10000) (User: maba-PC)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (08/14/2020 03:58:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Origin Web Helper Service zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.
Windows Defender:
===================================
Date: 2020-08-30 16:06:42.6100000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {F8009066-310F-4E43-BB6A-C4195B9B92F0}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-08-30 14:04:46.3710000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/Bandoo
ID: 226933
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Users\maba\Desktop\bearshare_9.exe; webfile:_C:\Users\maba\Desktop\bearshare_9.exe|https://data2.stiahnut.sk/downloadFile. ... 6837933300
Detection Origin: Internet
Detection Type: Concrete
Detection Source: Downloads and attachments
Process Name: C:\Windows\explorer.exe
Security intelligence Version: AV: 1.323.175.0, AS: 1.323.175.0, NIS: 1.323.175.0
Engine Version: AM: 1.1.17400.5, NIS: 1.1.17400.5
Date: 2020-08-30 14:04:44.6220000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/Bandoo
ID: 226933
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Users\maba\Desktop\bearshare_9.exe; webfile:_C:\Users\maba\Desktop\bearshare_9.exe|https://data2.stiahnut.sk/downloadFile. ... 6837933300
Detection Origin: Internet
Detection Type: Concrete
Detection Source: Downloads and attachments
Process Name: Unknown
Security intelligence Version: AV: 1.323.175.0, AS: 1.323.175.0, NIS: 1.323.175.0
Engine Version: AM: 1.1.17400.5, NIS: 1.1.17400.5
Date: 2020-08-29 13:45:59.8860000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {50A713A1-F91D-47D7-BC0D-3B7D5A7B2914}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-08-28 15:30:32.1390000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {FE7EE7A2-B584-403B-BC4F-D84B58914AD5}
Scan Type: Antimalware
Scan Parameters: Quick Scan
==================== Memory info ===========================
BIOS: American Megatrends Inc. F2 08/11/2015
Motherboard: Gigabyte Technology Co., Ltd. H81M-S2H
Processor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz
Percentage of memory in use: 87%
Total physical RAM: 8090.46 MB
Available physical RAM: 1042.7 MB
Total Virtual: 22289.58 MB
Available Virtual: 2380.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:110.93 GB) (Free:45.83 GB) NTFS
Drive e: (Data) (Fixed) (Total:931.51 GB) (Free:116.99 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive j: (SAMSUNG) (Fixed) (Total:701.32 GB) (Free:147.14 GB) NTFS
\\?\Volume{79fa1db1-0000-0000-0000-b0bb1b000000}\ () (Fixed) (Total:0.86 GB) (Free:0.4 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 79FA1DB1)
Partition 1: (Not Active) - (Size=110.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=876 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 767010F2)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (Size: 1397.3 GB) (Disk ID: 9F9BE82E)
Partition 1: (Active) - (Size=701.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=695.9 GB) - (Type=05)
==================== End of Addition.txt =======================
Ran by maba (31-08-2020 00:17:47)
Running from C:\Users\maba\Desktop
Windows 10 Pro Version 2004 19041.450 (X64) (2020-07-17 20:48:35)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1703468806-2507580088-2124554830-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1703468806-2507580088-2124554830-503 - Limited - Disabled)
Guest (S-1-5-21-1703468806-2507580088-2124554830-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1703468806-2507580088-2124554830-1002 - Limited - Enabled)
maba (S-1-5-21-1703468806-2507580088-2124554830-1000 - Administrator - Enabled) => C:\Users\maba
WDAGUtilityAccount (S-1-5-21-1703468806-2507580088-2124554830-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Emsisoft Anti-Malware (Disabled - Up to date) {5FD8BF8F-F242-6153-61B5-8FF333E8736B}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AIMP (HKLM-x32\...\AIMP) (Version: v4.70.2224, 22.07.2020 - AIMP DevTeam)
AIMP2: Audio Tools (HKLM-x32\...\AIMP2at) (Version: - AIMP DevTeam)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo WinOptimizer 2018 (HKLM-x32\...\{4209F371-DBD7-A4A8-3604-A669D1DB15F3}_is1) (Version: 15.00.05 - Ashampoo GmbH & Co. KG)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bee Simulator (HKLM-x32\...\Bee Simulator_is1) (Version: - )
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.45.10 - Bethesda Softworks)
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
Colin McRae Rally (HKLM-x32\...\Colin McRae Rally) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0677 - Disc Soft Ltd)
Dangerous Driving (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Dangerous Driving) (Version: - HOODLUM)
DiRT Rally 2 0 (HKLM-x32\...\DiRT Rally 2 0_is1) (Version: - )
Discord (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Discord) (Version: 0.0.307 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
GoldWave v6.51 (HKLM\...\GoldWave v6.51) (Version: 6.51 - GoldWave Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.135 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Grand Prix Circuit version 1.0 (HKLM-x32\...\{857137D5-4D20-404F-AC94-75B2435D5EBF}_is1) (Version: 1.0 - )
ICQ New (version 10.0.40117) (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\icq.desktop) (Version: 10.0.40117 - Mail.ru LLC)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Leisure Suit Larry Wet Dreams Dont Dry (HKLM-x32\...\Leisure Suit Larry Wet Dreams Dont Dry_is1) (Version: - )
LibreOffice 6.3.3.2 (HKLM\...\{4DACF7A7-C851-4943-A63D-3CAE495C48E0}) (Version: 6.3.3.2 - The Document Foundation)
Lumina (HKLM-x32\...\Lumina_is1) (Version: - )
Mafia II Definitive Edition version final (HKLM-x32\...\Mafia II Definitive Edition_is1) (Version: final - The)
Malwarebytes verzia 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.41 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft OneDrive (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\OneDriveSetup.exe) (Version: 20.064.0329.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
MiniTool Partition Wizard Free 11 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Software Limited)
Mortal Kombat 2 (HKLM-x32\...\1207667053_is1) (Version: 2.0.0.2 - GOG.com)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
Need for Speed Most Wanted (black edition) (HKLM-x32\...\Need for Speed Most Wanted (black edition)) (Version: 1.3 - Electronic Arts)
nGlide 2.10 (HKLM-x32\...\nGlide) (Version: 2.10 - Zeus Software)
NHL 2001 (HKLM-x32\...\{BBA471C0-5EF2-11D4-0091-A500A0245DC0}) (Version: - )
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Grafický ovládač 452.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 452.06 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.68.39605 - Electronic Arts, Inc.)
OverDisk (remove only) (HKLM-x32\...\OverDisk) (Version: - )
Parkitect (HKLM-x32\...\Parkitect_is1) (Version: - )
Prince of Persia Sands of Time (HKLM-x32\...\Uplay Install 111) (Version: - Ubisoft)
Project64 version 2.3.2.202 (HKLM-x32\...\{BEB5FB69-4080-466F-96C4-F15DF271718B}_is1) (Version: 2.3.2.202 - )
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Raft v1.03 (HKLM-x32\...\vsetop.org Raft v1.03_is1) (Version: 1.03 - vsetop.org)
Rayman Origins (HKLM-x32\...\Uplay Install 80) (Version: - Ubisoft)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.34 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Roblox Player for maba (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for maba (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games)
Rygar (MAME 0.141 emulation for 64-bit Windows) (HKLM-x32\...\Rygar (MAME 0.141 emulation for 64-bit Windows)) (Version: - )
Someday Youll Return (HKLM-x32\...\Someday Youll Return_is1) (Version: 0.0.0 - DODI-Repacks)
South Park - The Stick of Truth (HKLM-x32\...\Uplay Install 3584) (Version: - Ubisoft)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.4.8332 - TeamViewer)
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft)
The Suicide of Rachel Foster (HKLM-x32\...\The Suicide of Rachel Foster_is1) (Version: - )
Tom Clancy's Splinter Cell (HKLM-x32\...\Uplay Install 109) (Version: - Ubisoft)
Tropico 6 (HKLM-x32\...\Tropico 6_is1) (Version: - )
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
TrucksBook Client verze 1.3.3 (HKLM-x32\...\TrucksBook Client_is1) (Version: 1.3.3 - TrucksBook)
TunnelBear (HKLM-x32\...\{1713CFE6-1661-47A9-91D3-B35C367FE421}) (Version: 3.7.8.0 - TunnelBear) Hidden
TunnelBear (HKLM-x32\...\{a30a854f-0c68-44b5-8173-e370fcf4dc7f}) (Version: 3.7.8.0 - TunnelBear)
Turrican II version 1.0 (HKLM-x32\...\{4F3BC276-BE24-4D54-83D3-3B898905255D}_is1) (Version: 1.0 - )
Twitch (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Twitch Sings (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372C0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Twitch Studio (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 102.0 - Ubisoft)
VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.24-Update4 - IDRIX)
Viber (HKLM-x32\...\{E5AA947D-110B-492B-A71B-DA111290BA87}) (Version: 9.9.6.53 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\{c00b42e6-072e-4993-bd15-e6fd61f4ce4f}) (Version: 9.9.6.53 - Viber Media Inc.)
VideoProc (HKLM-x32\...\VideoProc) (Version: 3.2 - Digiarty, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.23072 - Microsoft Corporation)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Within Whispers The Fall (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\Within Whispers The Fall) (Version: - HOODLUM)
Zoom (HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\ZoomUMX) (Version: 5.2.1 (44052.0816) - Zoom Video Communications, Inc.)
Packages:
=========
Adblock Plus -> C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.19.0_neutral__d55gg7py3s0m0 [2020-02-14] (eyeo GmbH)
Adobe Photoshop Express: Image Editor, Adjustments, Filters, Effects, Borders -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobePhotoshopExpress_3.2.14.0_x64__ynb6jyjzte8ga [2020-08-08] (Adobe Inc.)
Asphalt 9: Legends -> C:\Program Files\WindowsApps\A278AB0D.Asphalt9_2.3.400.2_x86__h6adky7gbf63m [2020-07-05] (Gameloft SE)
Australian Landscapes by Ian Johnson -> C:\Program Files\WindowsApps\Microsoft.AustralianLandscapesbyIanJohnson_1.0.0.0_neutral__8wekyb3d8bbwe [2019-05-24] (Microsoft Corporation)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1820.3.0_x86__kgqvnymyfvs32 [2020-08-08] (king.com)
Command your Cortana -> C:\Program Files\WindowsApps\3038Spaceclick.CommandyourCortana_1.2.5.0_x64__rc5bk8kfz70cr [2020-07-17] (Spaceclick) [MS Ad]
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-18] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-07-20] (Microsoft Corporation)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-06] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8042.0_x64__8wekyb3d8bbwe [2020-08-08] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.1002.0_x64__8wekyb3d8bbwe [2020-08-08] (Microsoft Studios)
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-06-23] (NVIDIA Corp.)
Pinterest -> C:\Program Files\WindowsApps\1424566A.147190DF3DE79_1.0.20.0_neutral__5byw4zywtsh80 [2020-02-11] (Pinterest Inc.)
ROBLOX -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.442.16156.0_x86__55nm5eh3cm0pr [2020-08-08] (ROBLOX Corporation)
The Solar Eclipse -> C:\Program Files\WindowsApps\Microsoft.TheSolarEclipse_1.0.0.0_neutral__8wekyb3d8bbwe [2019-11-07] (Microsoft Corporation)
Trio Office -> C:\Program Files\WindowsApps\64343GTDocStudio.OfficeDocOpener_3.2.19.0_x86__3h5nez1g3qt2c [2020-08-08] (GT Office PDF Studio)
Ultra Blu-ray Player Supports DVD -> C:\Program Files\WindowsApps\D5BE6627.UltraBlu-rayPlayerSupportsDVD_2.0.8.0_x86__9pm2v9747qaaa [2020-05-15] (CompuClever Systems Inc.)
Ultra Office -> C:\Program Files\WindowsApps\D5BE6627.UltraOffice_1.0.9.0_x86__9pm2v9747qaaa [2020-02-14] (CompuClever Systems Inc.)
UNO Free! -> C:\Program Files\WindowsApps\50483MicroGames.UNOFree_2.1.16.0_x64__gkngqq7ztxek8 [2020-07-12] (MicroGames)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\nvshext.dll [2020-08-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\maba\Desktop\Programy\Twitter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
ShortcutWithArgument: C:\Users\maba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Hudba Google Play.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
ShortcutWithArgument: C:\Users\maba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Twitter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
==================== Loaded Modules (Whitelisted) =============
2019-04-11 13:49 - 2019-04-11 13:49 - 000030720 _____ () [File not signed] [File is in use] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2019-04-11 13:50 - 2019-04-11 13:50 - 000167424 _____ () [File not signed] [File is in use] C:\Program Files (x86)\TunnelBear\TunnelBear.VigilantBear.Wrapper.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\maba\Downloads\OperaSetup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\maba\Downloads\TeamSpeak3-Client-win64-3.5.3.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [446]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 09:31 - 2020-08-15 02:05 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\maba\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\mafia-ukazala-svoj-novy-art-244590-2288324.jpg
DNS Servers: 178.18.68.16
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "AvastUI.exe"
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1703468806-2507580088-2124554830-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E7F47E01-1551-4BFF-8A38-49F472859259}] => (Allow) E:\SteamLibrary\steamapps\common\GenitalJousting\GenitalJousting.exe () [File not signed]
FirewallRules: [{FCDF3450-E40A-41AB-816F-342B1AA27586}] => (Allow) E:\SteamLibrary\steamapps\common\GenitalJousting\GenitalJousting.exe () [File not signed]
FirewallRules: [{34F552FD-7D30-4006-9F70-44EFDCA2CEE1}] => (Allow) E:\SteamLibrary\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe () [File not signed]
FirewallRules: [{10FF5583-C57E-4780-BD1F-DC6852BDD736}] => (Allow) E:\SteamLibrary\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe () [File not signed]
FirewallRules: [{7A9455B4-9510-4369-ABC2-65710BEBDCD5}] => (Allow) E:\Stiahnute\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{2410AD50-ACCB-4CD5-990F-9BD0B2042AE1}] => (Allow) E:\Stiahnute\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{A6600874-9C16-45DE-8A07-0A59311AB0F7}] => (Allow) E:\SteamLibrary\steamapps\common\Whos Your Daddy\WhosYourDaddy.exe () [File not signed]
FirewallRules: [{CA225FC5-8DAB-4C1E-9095-7AFD9ECD9DF4}] => (Allow) E:\SteamLibrary\steamapps\common\Whos Your Daddy\WhosYourDaddy.exe () [File not signed]
FirewallRules: [{7E2073B4-7D65-40CF-8FFE-815BE592A97D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34E0CA26-FBF5-4211-8101-DDC4898C781F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A3F3F767-9538-4DBA-B426-39A235F54932}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5822EEF6-879B-4AC9-9F1B-2E1B1ACE8BE9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BC3D3304-64A2-42A0-8758-E17E0D7EBEC1}] => (Allow) E:\SteamLibrary\steamapps\common\Shadow of the Tomb Raider\SOTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{D101CFDD-EDC2-46D8-A0CD-B7ABAF08D6C7}] => (Allow) E:\SteamLibrary\steamapps\common\Shadow of the Tomb Raider\SOTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{8E4033D5-3F83-461C-82FB-6BA820B7FEFA}] => (Allow) E:\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F38B5D25-2368-42F3-A4E8-3FF80C2DF444}] => (Allow) E:\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F14244AF-BFA4-4F45-8473-A09FEFAE6CEB}] => (Allow) E:\SteamLibrary\steamapps\common\VELVETIST prototype\MLS.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{7F6E5E35-33F1-4AA6-9CF4-4DF2D5BA31DB}] => (Allow) E:\SteamLibrary\steamapps\common\VELVETIST prototype\MLS.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{2F2BAFF4-C017-432B-9DEB-41FFBC3E4AD9}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{C6AF812E-6BCC-478E-8646-148A4B3DD2FF}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{EA9748E4-4CE7-4F16-86BE-B1E461EA4A60}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{7BE5B7C2-F3EF-455E-B7C6-4723E3C906B8}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{76938471-BAE1-49F6-A4E6-81DCAF535A82}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{4FEFEFDF-56FD-4682-A5AF-289BD983FBA4}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1C43D5BD-959C-4091-B135-F66C633FB325}] => (Allow) E:\SteamLibrary\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe () [File not signed]
FirewallRules: [{16226C39-4DB6-45FF-8165-003767FD8419}] => (Allow) E:\SteamLibrary\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe () [File not signed]
FirewallRules: [{2458512B-A929-4AB8-871B-CEBAAF840116}] => (Allow) E:\SteamLibrary\steamapps\common\Engine Evolution\Engine Evolution.exe () [File not signed]
FirewallRules: [{18BE3648-2562-4EE9-ADB8-662448DE910C}] => (Allow) E:\SteamLibrary\steamapps\common\Engine Evolution\Engine Evolution.exe () [File not signed]
FirewallRules: [{E065B3B5-707A-467C-A458-11213B3CE619}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{B79A98AC-9A78-4F6A-813A-633415AC9911}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{377AE01D-1868-4EC4-BCA6-8832A3C11C48}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C5F883F1-4D7D-481F-B2C0-D633F0E829DC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AEC50333-009E-42F8-8E58-C43253887490}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{549CFE22-9C86-4E2F-8847-6C9462B338C7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{378B4A86-13CB-4A4F-B2ED-BE0758A6B32F}] => (Allow) E:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{D467978B-9C3D-4470-AE1F-516E93ED73E6}] => (Allow) E:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{C303E923-16BA-487C-9842-7F411D6CB23F}] => (Allow) E:\SteamLibrary\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{01253CD6-2DCB-4CFF-874A-BAFA8C34A1AA}] => (Allow) E:\SteamLibrary\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{D6F04EA6-A13E-412C-8BA6-6C15FE2C5FD5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F2193E7A-07EF-4558-B6F9-A3B63FF0F9ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CB8320DA-C6DA-4B5B-B8BF-37AF02B56C05}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{69657C91-BDD7-42A1-8488-0F5A22A5DA3D}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{553E69D4-BB41-4BEC-A348-9CDDAC975FEB}] => (Allow) E:\Stiahnute\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7CF7B974-62DE-41FE-87DA-4C8096044C67}] => (Allow) E:\Stiahnute\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{5D050769-B78D-4DB3-B8CB-82471BEC2287}] => (Allow) E:\Stiahnute\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{AB1644DD-929D-4254-9885-7454E83C65AE}] => (Allow) E:\Stiahnute\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{613185B2-2133-4553-A6D5-571EB33FF7C5}] => (Allow) E:\SteamLibrary\steamapps\common\One Finger Death Punch 2\One Finger Death Punch 2.exe () [File not signed]
FirewallRules: [{B5DE47A1-EBB4-460A-B09D-72BAC3CE9B7C}] => (Allow) E:\SteamLibrary\steamapps\common\One Finger Death Punch 2\One Finger Death Punch 2.exe () [File not signed]
FirewallRules: [{59EFFF0B-5BA6-4087-A690-85BB5E448D27}] => (Allow) E:\SteamLibrary\steamapps\common\thief_gold\THIEF.EXE (Looking Glass Studios) [File not signed]
FirewallRules: [{BF91D77B-1CB4-46C1-90F7-63AD119A28C5}] => (Allow) E:\SteamLibrary\steamapps\common\thief_gold\THIEF.EXE (Looking Glass Studios) [File not signed]
FirewallRules: [{D8E9F440-7F6E-43DA-A03D-EADEF50E3677}] => (Allow) E:\SteamLibrary\steamapps\common\Farm Together\FarmTogether.exe () [File not signed]
FirewallRules: [{35D81982-6FFD-4C6D-9660-DCB5DDFE8B3D}] => (Allow) E:\SteamLibrary\steamapps\common\Farm Together\FarmTogether.exe () [File not signed]
FirewallRules: [{2EB684A5-5855-4233-B991-FF1EF55A0920}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{8B238E75-2C4E-4957-ABB6-0C0054067F74}] => (Allow) E:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{F312E614-510B-4F2F-9AA9-4E2F9748DDA0}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{A861D1A2-A682-4F4A-AF20-5FBCEC1F967F}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{705B4C87-EF9F-4E52-AB9D-2F3C9ED69646}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{AEA16D99-3835-44B7-BA7D-F859B94BF873}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [UDP Query User{C383AF49-F6D8-46D4-8F6A-011E3AE572D7}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{162309BD-2B8D-4E13-A872-338234BED744}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{FF5ECD7D-D9A8-42C1-9BFD-0921A045A2BC}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{AA041EAE-867A-4F8E-93BF-54C1558E9303}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{C3760F5A-4349-4153-B642-AC5F0425C4E2}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{769CE25F-0627-4041-993B-439C2388926E}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{6E96B9AB-EB0F-4F78-A64B-D287D79DABF6}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{E9E29801-7BC8-4BE9-8D55-283138652278}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{4572A8C8-B072-4596-BBFE-CBC7C775EB1F}] => (Allow) E:\SteamLibrary\steamapps\common\Millie\Millie.exe () [File not signed]
FirewallRules: [{07B52D1A-311F-4D54-8669-07DA7CADBE24}] => (Allow) E:\SteamLibrary\steamapps\common\Millie\Millie.exe () [File not signed]
FirewallRules: [UDP Query User{E78E5C05-2430-4098-BAE2-FC8D488BC7A1}E:\steamlibrary\steamapps\common\all-star fruit racing\allstarfruitracing\binaries\win64\allstarfruitracing-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\all-star fruit racing\allstarfruitracing\binaries\win64\allstarfruitracing-win64-shipping.exe (PQube Limited) [File not signed]
FirewallRules: [TCP Query User{FF90F85F-45BB-4FE6-A7BF-D4CDF730416C}E:\steamlibrary\steamapps\common\all-star fruit racing\allstarfruitracing\binaries\win64\allstarfruitracing-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\all-star fruit racing\allstarfruitracing\binaries\win64\allstarfruitracing-win64-shipping.exe (PQube Limited) [File not signed]
FirewallRules: [{A36D2C31-C154-4E2F-B376-227BDA72D099}] => (Allow) E:\SteamLibrary\steamapps\common\All-Star Fruit Racing\AllStarFruitRacing.exe () [File not signed]
FirewallRules: [{BE712BE3-A1C8-4A6B-9A2C-F547EE80C9A2}] => (Allow) E:\SteamLibrary\steamapps\common\All-Star Fruit Racing\AllStarFruitRacing.exe () [File not signed]
FirewallRules: [{B240E56A-B78F-4ED6-B8F7-4773B8CC25DC}] => (Allow) E:\SteamLibrary\steamapps\common\SleepingDogsDefinitiveEdition\sdhdship.exe (SQUARE ENIX LIMITED) [File not signed]
FirewallRules: [{16F22F3A-EAA6-4D10-8948-28C1E2492CF7}] => (Allow) E:\SteamLibrary\steamapps\common\SleepingDogsDefinitiveEdition\sdhdship.exe (SQUARE ENIX LIMITED) [File not signed]
FirewallRules: [UDP Query User{FA58FF60-A244-4657-80C0-18299B4DA0CC}C:\users\maba\desktop\programy\anydesk.exe] => (Allow) C:\users\maba\desktop\programy\anydesk.exe (philandro Software GmbH -> )
FirewallRules: [TCP Query User{222F0AA0-E6B6-4335-8D91-0AC7A97CF503}C:\users\maba\desktop\programy\anydesk.exe] => (Allow) C:\users\maba\desktop\programy\anydesk.exe (philandro Software GmbH -> )
FirewallRules: [{2A8C99EF-0663-4FDB-BAC5-99C71BE8ABE0}] => (Allow) E:\SteamLibrary\steamapps\common\Thief Deadly Shadows\System\runme.exe () [File not signed]
FirewallRules: [{AA1F17DF-B105-4DF5-BD2D-BFF59FB42BFF}] => (Allow) E:\SteamLibrary\steamapps\common\Thief Deadly Shadows\System\runme.exe () [File not signed]
FirewallRules: [{8891B4E5-2B01-43A3-BE83-DF2176920511}] => (Allow) E:\SteamLibrary\steamapps\common\Prince of Persia The Warrior Within\PrinceOfPersia.exe (UBISOFT) [File not signed]
FirewallRules: [{463C0DBF-9D1E-45C5-996E-F886DF0A1FF1}] => (Allow) E:\SteamLibrary\steamapps\common\Prince of Persia The Warrior Within\PrinceOfPersia.exe (UBISOFT) [File not signed]
FirewallRules: [UDP Query User{8FD38DF1-306A-4A04-8648-5D175F734073}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{0BA4143C-8ECA-48B9-8A4E-D62E93BB3842}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{D425C449-9AA4-43EF-B7AF-DE651D43F265}] => (Allow) E:\SteamLibrary\steamapps\common\Blast Zone! Tournament\BZ.exe () [File not signed]
FirewallRules: [{8E10CBB7-B54A-48AD-AA8E-6DB52D3E0DDE}] => (Allow) E:\SteamLibrary\steamapps\common\Blast Zone! Tournament\BZ.exe () [File not signed]
FirewallRules: [{2DA346F8-C9E1-405B-B9AF-D88C927FCEC5}] => (Allow) E:\SteamLibrary\steamapps\common\Tennis Elbow 2013\Config.exe (Emmanuel Rivoire -> Mana Games)
FirewallRules: [{BD2E9CAE-1995-474B-B432-5E2D687F7FBA}] => (Allow) E:\SteamLibrary\steamapps\common\Tennis Elbow 2013\Config.exe (Emmanuel Rivoire -> Mana Games)
FirewallRules: [{E5950BBF-A673-4A1E-9255-87623CC231E9}] => (Allow) E:\SteamLibrary\steamapps\common\Tennis Elbow 2013\TennisElbow.exe (Emmanuel Rivoire -> Mana Games)
FirewallRules: [{D85DCB75-C59E-4664-AAA7-B94372954F11}] => (Allow) E:\SteamLibrary\steamapps\common\Tennis Elbow 2013\TennisElbow.exe (Emmanuel Rivoire -> Mana Games)
FirewallRules: [{2117790C-FFE1-4DE5-A9A5-DC05A9972ECF}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{D39845F1-1550-40D5-8C69-9B6D8E91A4CB}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{45057440-1F9B-41DB-9F5F-C277070340DE}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{D5102775-5D83-4607-8D7F-9370F2EA34EF}] => (Allow) E:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{201C0F5C-0F52-4A62-8601-29D062BAB76B}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{C3004FD9-1AF4-4C81-B46B-22A04C68398F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{045C649A-0E55-4C7E-A875-CCD77A0E919B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A0340CE3-4A1C-406D-A224-88ED15717E13}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8944F9A7-2EE2-4632-B0D2-78D9122F9DF2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BEB938D7-05FB-4574-ADA4-D2B40BF0B462}] => (Allow) E:\SteamLibrary\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [File not signed]
FirewallRules: [{23C37E1B-A795-4C42-97C2-05DC446964DE}] => (Allow) E:\SteamLibrary\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [File not signed]
FirewallRules: [{7D661A71-1642-4A2F-95E4-39247F7B755D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{04FF01D3-F77A-4E9C-889D-1D55C5171480}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{BE7132AA-F6C9-4769-8AC8-D3D2884508AD}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{8DDBE159-F324-4938-80D5-CE1CFECEE1AD}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C6529D7D-74A0-4EB8-AB3F-0FB6811D5BD2}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{C48CBB3B-C42C-4930-BD6C-BC0DBC306A39}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{1B2F3D97-00A9-4C23-B0F2-A78FCCF8440E}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{C88FA400-A246-406D-8E03-9E4686B0A94B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{5F9EA3CB-2A70-4CCC-A6EC-D98431C2DFDF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4BE9F8D6-30AE-43AB-AFB9-CEC0AF63E905}] => (Allow) E:\SteamLibrary\steamapps\common\Elon Simulator 2019\Elon Simulator 2019.exe () [File not signed]
FirewallRules: [{7B955640-2C42-46B6-8909-79075151E4C5}] => (Allow) E:\SteamLibrary\steamapps\common\Elon Simulator 2019\Elon Simulator 2019.exe () [File not signed]
FirewallRules: [{C484BA4B-74D3-49E9-9E45-934457F9EA1B}] => (Allow) E:\SteamLibrary\steamapps\common\Goat of Duty\GoatOfDuty.exe () [File not signed]
FirewallRules: [{27E4C2CC-940B-489C-8E14-D80639C972FA}] => (Allow) E:\SteamLibrary\steamapps\common\Goat of Duty\GoatOfDuty.exe () [File not signed]
FirewallRules: [TCP Query User{6E8F06BB-CC08-4130-8868-B5A5B75FE57F}E:\steamlibrary\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{D1BE63E8-DF31-40B7-9AF6-6392D9185D77}E:\steamlibrary\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{B2266609-7FD8-4BFB-A710-3B214C5750CE}] => (Allow) E:\SteamLibrary\steamapps\common\Ylands\Ylands.exe (BOHEMIA INTERACTIVE a.s. -> )
FirewallRules: [{29DF1160-F2EB-4591-BB60-1F7A63C23E88}] => (Allow) E:\SteamLibrary\steamapps\common\Ylands\Ylands.exe (BOHEMIA INTERACTIVE a.s. -> )
FirewallRules: [{CA72A1F0-28C4-4955-9C8B-5E3DCEACC660}] => (Allow) E:\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{1072C050-603F-46BA-A9FB-7899007CC2A6}] => (Allow) E:\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{48C6EFF5-B63F-484E-A2B3-2FFEEB9CDC37}E:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) E:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{09C89594-2147-4F65-A3C1-B4E8930D3D5A}E:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) E:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{66B7A92C-FABB-4FBE-B24E-C606B21D90D9}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{261018DD-77DD-44E2-BF1B-B04EBEC09FBE}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{E15C85C7-4C6F-4AE9-AAEA-C4ED5181A828}] => (Allow) E:\SteamLibrary\steamapps\common\Prominence Poker\Prominence\Binaries\Win64\Prominence-Win64-Shipping.exe (505 Games) [File not signed]
FirewallRules: [{1E7B6788-EF66-4A7D-BB23-52D7495B846C}] => (Allow) E:\SteamLibrary\steamapps\common\Prominence Poker\Prominence\Binaries\Win64\Prominence-Win64-Shipping.exe (505 Games) [File not signed]
FirewallRules: [{2B5382AD-459D-4E9F-937B-E2E103C73393}] => (Allow) E:\SteamLibrary\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe () [File not signed]
FirewallRules: [{DF539D1E-BCD8-401A-99AD-E2C03ED24D16}] => (Allow) E:\SteamLibrary\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe () [File not signed]
FirewallRules: [{E0DAD4D6-B656-4FE8-8433-BA394F019915}] => (Allow) E:\SteamLibrary\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe () [File not signed]
FirewallRules: [{6ACC563A-B3A8-4CE2-ABB3-03E568871FFC}] => (Allow) E:\SteamLibrary\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe () [File not signed]
FirewallRules: [{C8CE3FCC-A11D-4257-B4B5-077BA852863C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D73F1623-89F5-411B-9365-C98F89B78DC8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0CF3F222-F5A8-486D-AA55-928BFB8315E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7C7FEB29-FA00-459A-908F-D59520262998}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{20F3574B-0D89-4B87-A433-C8DF9DFDD5C2}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{96F41049-886B-445D-B784-A0F635979C2B}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{14A65EFC-2E85-4743-A19C-7957F3D31524}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1DCA8976-98BE-4EBF-A467-1F11A55D237C}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{12AF1123-94E3-4039-927A-C68BDBD000F0}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{E3880558-19F0-46F9-9692-5AF151C18ED6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{9C1E7A1B-453B-4DAB-A530-748DF84378C5}E:\stiahnute\tell.me.why.chapter.1-chronos\tell me why\tme\binaries\win64\tme-win64-shipping.exe] => (Allow) E:\stiahnute\tell.me.why.chapter.1-chronos\tell me why\tme\binaries\win64\tme-win64-shipping.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{F2655282-56EB-489B-BFED-1EFFED91A289}E:\stiahnute\tell.me.why.chapter.1-chronos\tell me why\tme\binaries\win64\tme-win64-shipping.exe] => (Allow) E:\stiahnute\tell.me.why.chapter.1-chronos\tell me why\tme\binaries\win64\tme-win64-shipping.exe (Microsoft) [File not signed]
FirewallRules: [TCP Query User{7A2DBA3B-1292-497F-AD28-F182756D0929}C:\program files (x86)\lime pro\limepro.exe] => (Allow) C:\program files (x86)\lime pro\limepro.exe => No File
FirewallRules: [UDP Query User{BD26402B-13AC-4A46-B2B8-8E4DFBFEADB2}C:\program files (x86)\lime pro\limepro.exe] => (Allow) C:\program files (x86)\lime pro\limepro.exe => No File
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:110.93 GB) (Free:45.83 GB) (41%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/28/2020 10:21:31 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:29 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:15 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:10 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:07 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (08/28/2020 10:21:06 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v SAMSUNG (J:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
System errors:
=============
Error: (08/18/2020 09:59:06 PM) (Source: DCOM) (EventID: 10010) (User: maba-PC)
Description: The server {94269C4E-071A-4116-90E6-52E557067E4E} did not register with DCOM within the required timeout.
Error: (08/18/2020 08:36:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 6000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
Error: (08/18/2020 08:36:12 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba NVIDIA LocalSystem Container bola ukončená s nasledujúcou chybou:
A generic command executable returned a result that indicates failure.
Error: (08/17/2020 11:54:50 PM) (Source: DCOM) (EventID: 10010) (User: maba-PC)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.
Error: (08/15/2020 02:05:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Origin Web Helper Service zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.
Error: (08/15/2020 02:05:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Origin Web Helper Service bol dosiahnutý časový limit (45000 ms).
Error: (08/14/2020 04:04:12 PM) (Source: DCOM) (EventID: 10000) (User: maba-PC)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (08/14/2020 03:58:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Origin Web Helper Service zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.
Windows Defender:
===================================
Date: 2020-08-30 16:06:42.6100000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {F8009066-310F-4E43-BB6A-C4195B9B92F0}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-08-30 14:04:46.3710000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/Bandoo
ID: 226933
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Users\maba\Desktop\bearshare_9.exe; webfile:_C:\Users\maba\Desktop\bearshare_9.exe|https://data2.stiahnut.sk/downloadFile. ... 6837933300
Detection Origin: Internet
Detection Type: Concrete
Detection Source: Downloads and attachments
Process Name: C:\Windows\explorer.exe
Security intelligence Version: AV: 1.323.175.0, AS: 1.323.175.0, NIS: 1.323.175.0
Engine Version: AM: 1.1.17400.5, NIS: 1.1.17400.5
Date: 2020-08-30 14:04:44.6220000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/Bandoo
ID: 226933
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Users\maba\Desktop\bearshare_9.exe; webfile:_C:\Users\maba\Desktop\bearshare_9.exe|https://data2.stiahnut.sk/downloadFile. ... 6837933300
Detection Origin: Internet
Detection Type: Concrete
Detection Source: Downloads and attachments
Process Name: Unknown
Security intelligence Version: AV: 1.323.175.0, AS: 1.323.175.0, NIS: 1.323.175.0
Engine Version: AM: 1.1.17400.5, NIS: 1.1.17400.5
Date: 2020-08-29 13:45:59.8860000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {50A713A1-F91D-47D7-BC0D-3B7D5A7B2914}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-08-28 15:30:32.1390000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {FE7EE7A2-B584-403B-BC4F-D84B58914AD5}
Scan Type: Antimalware
Scan Parameters: Quick Scan
==================== Memory info ===========================
BIOS: American Megatrends Inc. F2 08/11/2015
Motherboard: Gigabyte Technology Co., Ltd. H81M-S2H
Processor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz
Percentage of memory in use: 87%
Total physical RAM: 8090.46 MB
Available physical RAM: 1042.7 MB
Total Virtual: 22289.58 MB
Available Virtual: 2380.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:110.93 GB) (Free:45.83 GB) NTFS
Drive e: (Data) (Fixed) (Total:931.51 GB) (Free:116.99 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive j: (SAMSUNG) (Fixed) (Total:701.32 GB) (Free:147.14 GB) NTFS
\\?\Volume{79fa1db1-0000-0000-0000-b0bb1b000000}\ () (Fixed) (Total:0.86 GB) (Free:0.4 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 79FA1DB1)
Partition 1: (Not Active) - (Size=110.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=876 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 767010F2)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (Size: 1397.3 GB) (Disk ID: 9F9BE82E)
Partition 1: (Active) - (Size=701.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=695.9 GB) - (Type=05)
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventívka
Nyní spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventívka
# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-31-2020
# Duration: 00:00:00
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1345 octets] - [01/03/2019 11:42:20]
AdwCleaner[C00].txt - [1491 octets] - [01/03/2019 11:42:38]
AdwCleaner[S01].txt - [1371 octets] - [01/03/2019 11:43:53]
AdwCleaner[S02].txt - [1588 octets] - [30/05/2020 16:48:00]
AdwCleaner[C02].txt - [1778 octets] - [30/05/2020 16:49:02]
AdwCleaner[S03].txt - [1710 octets] - [30/05/2020 17:01:42]
AdwCleaner[C03].txt - [1900 octets] - [30/05/2020 17:02:37]
AdwCleaner[S04].txt - [1832 octets] - [21/07/2020 17:44:37]
AdwCleaner[C04].txt - [2022 octets] - [21/07/2020 17:44:56]
AdwCleaner[S05].txt - [1954 octets] - [14/08/2020 15:57:31]
AdwCleaner[C05].txt - [2144 octets] - [14/08/2020 15:57:50]
AdwCleaner[S06].txt - [2076 octets] - [31/08/2020 12:52:23]
AdwCleaner[S07].txt - [2137 octets] - [31/08/2020 12:53:43]
AdwCleaner[C07].txt - [2327 octets] - [31/08/2020 12:54:53]
AdwCleaner[S08].txt - [2259 octets] - [31/08/2020 12:55:34]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C08].txt ##########
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-31-2020
# Duration: 00:00:00
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1345 octets] - [01/03/2019 11:42:20]
AdwCleaner[C00].txt - [1491 octets] - [01/03/2019 11:42:38]
AdwCleaner[S01].txt - [1371 octets] - [01/03/2019 11:43:53]
AdwCleaner[S02].txt - [1588 octets] - [30/05/2020 16:48:00]
AdwCleaner[C02].txt - [1778 octets] - [30/05/2020 16:49:02]
AdwCleaner[S03].txt - [1710 octets] - [30/05/2020 17:01:42]
AdwCleaner[C03].txt - [1900 octets] - [30/05/2020 17:02:37]
AdwCleaner[S04].txt - [1832 octets] - [21/07/2020 17:44:37]
AdwCleaner[C04].txt - [2022 octets] - [21/07/2020 17:44:56]
AdwCleaner[S05].txt - [1954 octets] - [14/08/2020 15:57:31]
AdwCleaner[C05].txt - [2144 octets] - [14/08/2020 15:57:50]
AdwCleaner[S06].txt - [2076 octets] - [31/08/2020 12:52:23]
AdwCleaner[S07].txt - [2137 octets] - [31/08/2020 12:53:43]
AdwCleaner[C07].txt - [2327 octets] - [31/08/2020 12:54:53]
AdwCleaner[S08].txt - [2259 octets] - [31/08/2020 12:55:34]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C08].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventívka
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\Users\maba\Downloads\OperaSetup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\maba\Downloads\TeamSpeak3-Client-win64-3.5.3.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [446]
FirewallRules: [{1DCA8976-98BE-4EBF-A467-1F11A55D237C}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{12AF1123-94E3-4039-927A-C68BDBD000F0}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{7A2DBA3B-1292-497F-AD28-F182756D0929}C:\program files (x86)\lime pro\limepro.exe] => (Allow) C:\program files (x86)\lime pro\limepro.exe => No File
FirewallRules: [UDP Query User{BD26402B-13AC-4A46-B2B8-8E4DFBFEADB2}C:\program files (x86)\lime pro\limepro.exe] => (Allow) C:\program files (x86)\lime pro\limepro.exe => No File
C:\Users\maba\Desktop\bearshare_9.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {25D3C21F-8F64-44F9-9121-46F59DD646F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-05-29] (Google Inc -> Google LLC)
Task: {621B04FF-180E-4CE1-82AB-ED02D86E8B27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-05-29] (Google Inc -> Google LLC)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\DumpStack.log.tmp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventívka
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-08-2020
Ran by maba (31-08-2020 18:07:20) Run:1
Running from C:\Users\maba\Desktop
Loaded Profiles: maba
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\Users\maba\Downloads\OperaSetup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\maba\Downloads\TeamSpeak3-Client-win64-3.5.3.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [446]
FirewallRules: [{1DCA8976-98BE-4EBF-A467-1F11A55D237C}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{12AF1123-94E3-4039-927A-C68BDBD000F0}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{7A2DBA3B-1292-497F-AD28-F182756D0929}C:\program files (x86)\lime pro\limepro.exe] => (Allow) C:\program files (x86)\lime pro\limepro.exe => No File
FirewallRules: [UDP Query User{BD26402B-13AC-4A46-B2B8-8E4DFBFEADB2}C:\program files (x86)\lime pro\limepro.exe] => (Allow) C:\program files (x86)\lime pro\limepro.exe => No File
C:\Users\maba\Desktop\bearshare_9.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {25D3C21F-8F64-44F9-9121-46F59DD646F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-05-29] (Google Inc -> Google LLC)
Task: {621B04FF-180E-4CE1-82AB-ED02D86E8B27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-05-29] (Google Inc -> Google LLC)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\DumpStack.log.tmp
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
C:\Users\maba\Downloads\OperaSetup.exe => ":SmartScreen" ADS removed successfully
C:\Users\maba\Downloads\TeamSpeak3-Client-win64-3.5.3.exe => ":SmartScreen" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1DCA8976-98BE-4EBF-A467-1F11A55D237C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{12AF1123-94E3-4039-927A-C68BDBD000F0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7A2DBA3B-1292-497F-AD28-F182756D0929}C:\program files (x86)\lime pro\limepro.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BD26402B-13AC-4A46-B2B8-8E4DFBFEADB2}C:\program files (x86)\lime pro\limepro.exe" => removed successfully
"C:\Users\maba\Desktop\bearshare_9.exe" => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{25D3C21F-8F64-44F9-9121-46F59DD646F6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{25D3C21F-8F64-44F9-9121-46F59DD646F6}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{621B04FF-180E-4CE1-82AB-ED02D86E8B27}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{621B04FF-180E-4CE1-82AB-ED02D86E8B27}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\DumpStack.log.tmp => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 92893114 B
Java, Flash, Steam htmlcache => 521462837 B
Windows/system/drivers => 406140 B
Edge => 0 B
Chrome => 426739138 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 38012 B
maba => 26760304 B
RecycleBin => 0 B
EmptyTemp: => 1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 18:07:43 ====
Ran by maba (31-08-2020 18:07:20) Run:1
Running from C:\Users\maba\Desktop
Loaded Profiles: maba
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\Users\maba\Downloads\OperaSetup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\maba\Downloads\TeamSpeak3-Client-win64-3.5.3.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [446]
FirewallRules: [{1DCA8976-98BE-4EBF-A467-1F11A55D237C}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{12AF1123-94E3-4039-927A-C68BDBD000F0}] => (Allow) C:\Users\maba\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{7A2DBA3B-1292-497F-AD28-F182756D0929}C:\program files (x86)\lime pro\limepro.exe] => (Allow) C:\program files (x86)\lime pro\limepro.exe => No File
FirewallRules: [UDP Query User{BD26402B-13AC-4A46-B2B8-8E4DFBFEADB2}C:\program files (x86)\lime pro\limepro.exe] => (Allow) C:\program files (x86)\lime pro\limepro.exe => No File
C:\Users\maba\Desktop\bearshare_9.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {25D3C21F-8F64-44F9-9121-46F59DD646F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-05-29] (Google Inc -> Google LLC)
Task: {621B04FF-180E-4CE1-82AB-ED02D86E8B27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-05-29] (Google Inc -> Google LLC)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\DumpStack.log.tmp
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
C:\Users\maba\Downloads\OperaSetup.exe => ":SmartScreen" ADS removed successfully
C:\Users\maba\Downloads\TeamSpeak3-Client-win64-3.5.3.exe => ":SmartScreen" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1DCA8976-98BE-4EBF-A467-1F11A55D237C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{12AF1123-94E3-4039-927A-C68BDBD000F0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7A2DBA3B-1292-497F-AD28-F182756D0929}C:\program files (x86)\lime pro\limepro.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BD26402B-13AC-4A46-B2B8-8E4DFBFEADB2}C:\program files (x86)\lime pro\limepro.exe" => removed successfully
"C:\Users\maba\Desktop\bearshare_9.exe" => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{25D3C21F-8F64-44F9-9121-46F59DD646F6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{25D3C21F-8F64-44F9-9121-46F59DD646F6}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{621B04FF-180E-4CE1-82AB-ED02D86E8B27}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{621B04FF-180E-4CE1-82AB-ED02D86E8B27}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\DumpStack.log.tmp => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 92893114 B
Java, Flash, Steam htmlcache => 521462837 B
Windows/system/drivers => 406140 B
Edge => 0 B
Chrome => 426739138 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 38012 B
maba => 26760304 B
RecycleBin => 0 B
EmptyTemp: => 1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 18:07:43 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventívka
Smazáno. Log je již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventívka
Ďakujem za pomoc a prajem pekný deň
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventívka
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?