VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Disk stale pracuje

https://forum.viry.cz:443/viewtopic.php?t=156999

Stránka 1 z 1

Disk stale pracuje

Napsal: 31 bře 2020 14:44
od Vasil
Prosím o kontrolu, disk stále pracuje na vysoké percentá.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-03-2020
Ran by Asus (administrator) on LAPTOP-FQRI8L1Q (ASUSTeK COMPUTER INC. VivoBook 15_ASUS Laptop X507MA_X507MA) (31-03-2020 15:30:17)
Running from C:\Users\Asus\Desktop
Loaded Profiles: Asus (Available Profiles: Asus)
Platform: Windows 10 Home Version 1909 18363.752 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUS) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy\ASUS Battery Health Charging\BhcMgr.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\setup\New_1401095d\instup.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal_wc.inf_amd64_9171bd9f02afbfa0\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_component.inf_amd64_3164bd4536ecf0a4\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_component.inf_amd64_3164bd4536ecf0a4\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_component.inf_amd64_3164bd4536ecf0a4\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_base.inf_amd64_cb2476e6d04fce22\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_base.inf_amd64_cb2476e6d04fce22\IntelCpHeciSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.12527.20278.0_x86__8wekyb3d8bbwe\Office16\SDXHelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.12527.20278.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20022.11011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [277664 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\...\MountPoints2: {4f175dc3-cdda-11e9-b4ab-505bc22201b8} - "D:\Lenovo_Suite.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-18] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14E010A9-6CA6-4405-BEFC-CBA169115799} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-28] (Avast Software s.r.o. -> Avast Software)
Task: {49AB4668-FC3A-4E74-B1BB-BAFB268F9328} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {50706BBE-0A18-48B8-BBA1-0AB93DD58FC5} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506384 2019-10-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {59C1D689-922C-41E0-AD05-59534D9499E8} - System32\Tasks\klcp_update => CodecTweakTool.exe
Task: {5BFE2863-C9DE-4BE1-B7D9-8610F20D1586} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506384 2019-10-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {5DC43494-2FD3-494E-86F0-2821FA010C7B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {700A4D90-F485-4452-B238-6B0F1AF5CF6E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {709E1345-DA6B-42F6-81C4-C40A5D7EC797} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3894664 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
Task: {789FA124-349D-4A28-90D5-D3E93BB5B76C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {881DE557-8191-4F90-8351-96BCD42E3A48} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {913B9412-E0CA-4347-8C94-6C2163442DEA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {932F5706-5B3F-432A-AC96-F4805779C697} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {B8C01807-0A6C-44F6-A98F-A1ADCF63D8F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B8CC2E51-D3B3-469A-9AD7-25184C7C95E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {CAB5C5C8-49B3-466C-86A1-55758E6CE7C9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E2E09694-29EA-40FD-B5D5-09E1B7BDA2C5} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609168 2017-12-22] (ASUSTeK Computer Inc. -> )
Task: {E3F2DC8B-1D3B-4543-89BA-71D0654C3E32} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Asus\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {E8112CA5-2C12-4980-A7A6-B46B43046FF7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F0AABB04-C05C-4101-902A-03B151BB10D8} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [75776 2017-10-24] (ASUS) [File not signed]
Task: {F50D2E14-C628-4B8D-B8E3-18E8E0E1E53F} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0956bbc9-77f5-46e7-aa4b-18c228e3926b}: [DhcpNameServer] 10.66.24.1
Tcpip\..\Interfaces\{87407c35-94ac-4a61-967b-b2e05c7de8fe}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File

FireFox:
========
FF DefaultProfile: x3x3hcw1.default
FF ProfilePath: C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\x3x3hcw1.default [2020-03-31]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\x3x3hcw1.default\Extensions\sp@avast.com.xpi [2019-02-09]
FF Extension: (Avast Online Security) - C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\x3x3hcw1.default\Extensions\wrc@avast.com.xpi [2019-01-23]
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default [2020-03-31]
CHR Notifications: Default -> hxxps://www.podnakafe.sk
CHR NewTab: Default -> Not-active:"chrome-extension://chnacmlpiecdhgkdgeoipkmdbekengck/ntp1.html"
CHR Extension: (Prezentácie) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-28]
CHR Extension: (Dokumenty) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-28]
CHR Extension: (Disk Google) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-28]
CHR Extension: (PDF Viewer & Converter by FromDocToPDF) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\chnacmlpiecdhgkdgeoipkmdbekengck [2020-03-23]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-13]
CHR Extension: (Avast Online Security) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-02-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-28]
CHR Extension: (Chrome Media Router) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-20]
CHR Profile: C:\Users\Asus\AppData\Local\Google\Chrome\User Data\System Profile [2020-03-30]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6046624 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [413472 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57536 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 esifsvc; C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe [2141064 2019-06-19] (Intel Corporation -> Intel Corporation)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [273880 2017-10-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [812528 2019-10-09] (ICEpower a/s -> ICEpower A/S)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_7e148e9c120d86df\lib\SocketHeciServer.exe [872200 2019-05-13] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_7e148e9c120d86df\lib\TPMProvisioningService.exe [800016 2019-05-13] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\WINDOWS\System32\DriverStore\FileRepository\dal_wc.inf_amd64_9171bd9f02afbfa0\jhi_service.exe [578704 2018-10-25] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [710208 2019-07-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [112336 2019-10-02] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37864 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205576 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [271120 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206608 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [64272 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-03-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [279360 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42976 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175400 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110560 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84056 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848672 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [458584 2020-03-11] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [235184 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316256 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\dptf_acpi.inf_amd64_5989fd2721678bab\dptf_acpi.sys [77192 2019-06-19] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\dptf_cpu.sys [74120 2019-06-19] (Intel Corporation -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_lf.sys [408456 2019-06-19] (Intel Corporation -> Intel Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
R3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [112528 2019-05-03] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 RealWoW60; C:\WINDOWS\system32\DRIVERS\RealWoW60.sys [39432 2017-04-07] (Realtek Semiconductor Corp. -> Realtek semiconductor corp)
R3 RtkBtFilter; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [775208 2019-07-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [460408 2019-05-16] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 RTWlanE02; C:\WINDOWS\System32\drivers\rtwlane02.sys [9625384 2019-05-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-03-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [391392 2020-03-31] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-31] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-31 15:30 - 2020-03-31 15:33 - 000021820 _____ C:\Users\Asus\Desktop\FRST.txt
2020-03-31 15:27 - 2020-03-31 15:32 - 000000000 ____D C:\FRST
2020-03-31 14:32 - 2020-03-31 14:32 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-03-31 14:32 - 2020-03-31 14:32 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2020-03-31 14:32 - 2020-03-31 14:32 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 022636544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 019813376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 018027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 014818816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 006525424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 003753472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-03-31 14:31 - 2020-03-31 14:31 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001077264 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000673704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000628408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-03-31 14:31 - 2020-03-31 14:31 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-03-31 14:31 - 2020-03-31 14:31 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-03-31 14:31 - 2020-03-31 14:31 - 000277864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000123952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-03-31 14:31 - 2020-03-31 14:31 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000066624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000050544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 004563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 003799552 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 003728384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 002768440 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-03-31 14:30 - 2020-03-31 14:30 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 001427456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001378528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000684560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-03-31 14:30 - 2020-03-31 14:30 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000033080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 017790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 007849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 003586872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 002143232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 002126144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 002114560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001960448 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000874512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000437560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000297272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000151352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000047208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2020-03-31 14:19 - 2020-03-31 14:18 - 002280448 _____ (Farbar) C:\Users\Asus\Desktop\FRST64.exe
2020-03-31 14:18 - 2020-03-31 14:18 - 002280448 _____ (Farbar) C:\Users\Asus\Downloads\FRST64.exe
2020-03-31 12:50 - 2020-03-05 07:47 - 000368056 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-03-30 18:51 - 2020-03-31 12:07 - 000002298 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-03-30 18:51 - 2020-03-31 09:36 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-03-30 18:50 - 2020-03-30 18:51 - 000000000 ____D C:\Program Files\CCleaner
2020-03-30 18:50 - 2020-03-30 18:50 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-03-30 18:50 - 2020-03-30 18:50 - 000000865 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-03-30 18:50 - 2020-03-30 18:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-03-23 22:39 - 2020-03-23 22:39 - 000007643 _____ C:\Users\Asus\AppData\Local\Resmon.ResmonCfg
2020-03-23 13:48 - 2020-03-23 13:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-1509649906-4059530401-1489123845-1001
2020-03-22 12:45 - 2020-03-22 12:46 - 000000000 ____D C:\Users\Asus\AppData\Local\TeamViewer
2020-03-22 12:45 - 2020-03-22 12:45 - 000000000 ____D C:\Users\Asus\AppData\Roaming\TeamViewer
2020-03-19 12:27 - 2020-03-30 20:06 - 000000000 _____ C:\WINDOWS\system32\last.dump
2020-03-13 12:27 - 2020-03-13 12:27 - 011607552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-03-13 12:27 - 2020-03-13 12:27 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 006285312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 004348408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 003819520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 003488768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 003243296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 002956688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-03-13 12:26 - 2020-03-13 12:26 - 002315680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 002072664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001867816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001770552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001555904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001490640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001282944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001273856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001108040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000757632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacEncoder.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacEncoder.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-03-13 12:26 - 2020-03-13 12:26 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-03-13 12:26 - 2020-03-13 12:26 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-03-13 12:26 - 2020-03-13 12:26 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2020-03-13 12:26 - 2020-03-13 12:26 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 004855808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 004580352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-03-13 12:25 - 2020-03-13 12:25 - 002740736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 002259872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001985104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001684992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001665416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-03-13 12:25 - 2020-03-13 12:25 - 001264128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001218632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 001190912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001088000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001031680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001007672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000935040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000769552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000136328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000120560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmtask.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-03-13 12:25 - 2020-03-13 12:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-03-13 12:24 - 2020-03-13 12:24 - 006084344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 005112832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 003971808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 002875904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 002773568 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 002021888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001484600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000776488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000734720 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000627216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000478792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-03-13 12:24 - 2020-03-13 12:24 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2020-03-13 12:24 - 2020-03-13 12:24 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000213984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-03-13 12:24 - 2020-03-13 12:24 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000165504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2020-03-13 12:24 - 2020-03-13 12:24 - 000133944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-03-13 12:24 - 2020-03-13 12:24 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000102760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000042336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-03-13 12:24 - 2020-03-13 12:24 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 006436352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 003371720 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 002698040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 001999952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 001396152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000983896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000929144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000877232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000636848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000320312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000248064 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000221200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000120048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000098104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000089616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 007905784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 004622280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 004471296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 004048896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 003260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 003143168 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002715648 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 002522112 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002474496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001972536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001823232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001657120 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-03-13 12:22 - 2020-03-13 12:22 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001071184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000945384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000833616 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000642216 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000522384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000201744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000066336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlrmdr.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAProfileNotificationHandler.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000048256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000029712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpnotify.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-03-13 12:21 - 2020-03-13 12:22 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-03-13 12:21 - 2020-03-13 12:21 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-03-13 12:21 - 2020-03-13 12:21 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Acx01000.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000306696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000250896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000224056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000222520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000180232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000174392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe
2020-03-13 12:21 - 2020-03-13 12:21 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-03-13 12:21 - 2020-03-13 12:21 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-03-13 12:21 - 2020-03-13 12:21 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000056632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-03-13 12:21 - 2020-03-13 12:21 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000030008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000016912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUserRes.dll
2020-03-13 11:45 - 2020-03-13 11:45 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-03-13 11:45 - 2020-03-13 11:45 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-03-07 11:52 - 2020-03-07 12:17 - 000000000 ____D C:\Users\Asus\AppData\Local\BlueStacks
2020-03-07 11:52 - 2020-03-07 11:56 - 000000000 ____D C:\Users\Public\BlueStacks
2020-03-06 16:32 - 2020-03-06 16:32 - 000000000 ____D C:\Program Files (x86)\Deskshare
2020-03-06 12:47 - 2020-03-06 12:47 - 000000000 ____D C:\Users\Asus\AppData\Local\DeskShare Data
2020-03-06 12:04 - 2020-03-30 19:15 - 000000000 ____D C:\Users\Asus\AppData\Roaming\Seznam.cz
2020-03-06 12:04 - 2020-03-06 16:32 - 000001430 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IP Camera Viewer 4.lnk
2020-03-06 12:04 - 2020-03-06 16:32 - 000001418 _____ C:\Users\Public\Desktop\IP Camera Viewer 4.lnk
2020-03-06 12:04 - 2020-03-06 16:32 - 000001418 _____ C:\ProgramData\Desktop\IP Camera Viewer 4.lnk
2020-03-06 12:04 - 2020-03-06 12:04 - 000000000 ____D C:\Users\Asus\AppData\Local\Spoon
2020-03-06 12:04 - 2020-03-06 12:04 - 000000000 ____D C:\ProgramData\DeskShare
2020-03-06 12:03 - 2020-03-06 12:03 - 031768096 _____ C:\IPCameraViewer.exe
2020-03-05 16:56 - 2020-03-05 16:56 - 000001726 _____ C:\Users\Public\Desktop\HiP2P Client.lnk
2020-03-05 16:56 - 2020-03-05 16:56 - 000001726 _____ C:\ProgramData\Desktop\HiP2P Client.lnk
2020-03-05 16:56 - 2020-03-05 16:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiP2P Client
2020-03-05 16:56 - 2020-03-05 16:56 - 000000000 ____D C:\Program Files (x86)\HiP2P Client
2020-03-05 16:56 - 1998-08-18 17:25 - 000169984 _____ C:\WINDOWS\SysWOW64\glut32.dll
2020-03-05 16:55 - 2020-03-05 16:55 - 026646574 _____ C:\23183fa6-45ee-474b-a138-c569c79ab283.zip
2020-03-05 16:42 - 2020-03-30 19:21 - 000000000 ____D C:\ProgramData\Informer Technologies, Inc
2020-03-05 16:42 - 2020-03-30 19:20 - 000000000 ____D C:\Program Files\Software Informer
2020-03-05 07:48 - 2020-03-05 07:47 - 000235184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-03-05 07:48 - 2020-03-05 07:47 - 000175400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-31 15:36 - 2019-09-02 22:47 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-03-31 15:34 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-03-31 15:25 - 2019-09-02 22:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-03-31 15:24 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-31 15:02 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-03-31 14:58 - 2019-09-02 22:33 - 000964242 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-03-31 14:58 - 2019-09-02 22:13 - 000118900 _____ C:\WINDOWS\system32\perfh01B.dat
2020-03-31 14:58 - 2019-09-02 22:13 - 000024282 _____ C:\WINDOWS\system32\perfc01B.dat
2020-03-31 14:57 - 2018-04-19 15:04 - 000000357 _____ C:\Users\Asus\AppData\Roaming\sp_data.sys
2020-03-31 14:54 - 2018-04-19 15:03 - 000000000 __SHD C:\Users\Asus\IntelGraphicsProfiles
2020-03-31 14:52 - 2019-09-02 22:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-03-31 14:52 - 2019-09-02 22:06 - 000473152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-03-31 14:50 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-03-31 14:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-03-31 14:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-03-31 14:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-03-31 14:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-03-31 14:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-03-31 14:44 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-03-31 14:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-03-31 14:05 - 2019-03-13 21:23 - 000000000 ____D C:\Users\Asus\AppData\Local\D3DSCache
2020-03-31 14:05 - 2019-01-23 15:01 - 000002090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-03-31 14:05 - 2019-01-23 15:01 - 000002078 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-03-31 14:05 - 2019-01-23 15:01 - 000002078 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-03-31 12:16 - 2018-08-19 10:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-03-31 12:15 - 2019-01-23 15:01 - 000000000 ____D C:\Users\Asus\AppData\Local\AVAST Software
2020-03-31 12:07 - 2019-09-02 22:47 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-03-31 12:07 - 2019-09-02 22:47 - 000003446 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-03-31 12:07 - 2019-09-02 22:47 - 000003222 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-31 12:07 - 2019-09-02 22:47 - 000002830 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2020-03-31 09:32 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-03-30 21:30 - 2018-08-27 13:17 - 000000000 ____D C:\Users\Asus\AppData\Local\PlaceholderTileLogoFolder
2020-03-30 21:29 - 2018-04-19 15:03 - 000000000 ____D C:\Users\Asus\AppData\Local\Packages
2020-03-30 20:38 - 2019-02-05 13:11 - 000000000 ____D C:\Program Files (x86)\Microsoft Games
2020-03-30 20:37 - 2018-04-19 14:03 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-03-30 19:24 - 2018-04-19 14:31 - 000000000 ____D C:\WINDOWS\prerequisites
2020-03-30 19:16 - 2018-08-19 10:31 - 000000000 ___RD C:\Users\Asus\OneDrive
2020-03-30 19:04 - 2019-12-01 20:53 - 000000000 ____D C:\Users\Asus\AppData\Roaming\MPC-HC
2020-03-30 19:04 - 2019-08-14 17:57 - 000000000 ___DC C:\WINDOWS\Panther
2020-03-30 19:04 - 2018-08-19 10:37 - 000000000 ____D C:\Program Files\PDFCreator
2020-03-30 19:03 - 2020-02-28 16:49 - 000000000 ____D C:\WINDOWS\Minidump
2020-03-30 19:03 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-03-30 19:03 - 2019-01-30 19:12 - 000000000 ____D C:\Users\Asus\AppData\Local\CrashDumps
2020-03-29 18:43 - 2019-02-06 16:55 - 000000000 ____D C:\Users\Asus\AppData\Local\ElevatedDiagnostics
2020-03-25 20:54 - 2019-09-02 22:47 - 000003034 _____ C:\WINDOWS\system32\Tasks\klcp_update
2020-03-25 20:54 - 2019-09-02 22:47 - 000002974 _____ C:\WINDOWS\system32\Tasks\Update Checker
2020-03-25 20:54 - 2019-09-02 22:47 - 000002924 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2020-03-25 20:54 - 2019-09-02 22:47 - 000002346 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2020-03-25 20:54 - 2019-09-02 22:47 - 000002338 _____ C:\WINDOWS\system32\Tasks\ASUS Hello
2020-03-25 20:54 - 2019-09-02 22:47 - 000002302 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2020-03-25 20:54 - 2019-09-02 22:47 - 000002302 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ACMON
2020-03-25 20:54 - 2019-09-02 22:47 - 000002214 _____ C:\WINDOWS\system32\Tasks\ATK Package A22126881260
2020-03-25 20:54 - 2019-09-02 22:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-03-18 20:33 - 2018-08-19 10:26 - 000002315 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-16 00:43 - 2019-09-02 22:18 - 000000000 ____D C:\Users\Asus
2020-03-15 09:30 - 2018-08-19 10:26 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-03-15 09:25 - 2018-04-19 15:03 - 000000000 ___RD C:\Users\Asus\3D Objects
2020-03-15 09:25 - 2018-04-19 13:49 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-03-15 01:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-03-15 01:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-03-15 01:55 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2020-03-13 12:45 - 2018-08-24 01:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-03-13 12:40 - 2018-08-24 01:36 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-03-11 15:11 - 2019-01-23 14:56 - 000458584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-03-11 09:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2020-03-10 09:00 - 2019-01-23 14:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-03-10 08:46 - 2018-08-19 10:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-03-08 15:48 - 2018-08-26 13:55 - 000000445 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2020-03-05 07:47 - 2019-02-13 12:23 - 000279360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000848672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000316256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000205576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000110560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000084056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000042976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000037864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000016304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2020-03-05 07:46 - 2019-01-23 14:56 - 000271120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-03-05 07:46 - 2019-01-23 14:56 - 000206608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-03-05 07:46 - 2019-01-23 14:56 - 000064272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys

==================== Files in the root of some directories ========

2018-04-19 15:04 - 2020-03-31 14:57 - 000000357 _____ () C:\Users\Asus\AppData\Roaming\sp_data.sys
2020-03-23 22:39 - 2020-03-23 22:39 - 000007643 _____ () C:\Users\Asus\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-03-2020
Ran by Asus (31-03-2020 15:37:09)
Running from C:\Users\Asus\Desktop
Windows 10 Home Version 1909 18363.752 (X64) (2019-09-02 20:48:38)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1509649906-4059530401-1489123845-500 - Administrator - Disabled)
Asus (S-1-5-21-1509649906-4059530401-1489123845-1001 - Administrator - Enabled) => C:\Users\Asus
DefaultAccount (S-1-5-21-1509649906-4059530401-1489123845-503 - Limited - Disabled)
Guest (S-1-5-21-1509649906-4059530401-1489123845-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1509649906-4059530401-1489123845-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.)
Aktualizácia Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}_STANDARD_{9A8C39B0-D27F-4F81-BE74-2FECF164707E}) (Version: - Microsoft)
Aktualizácia Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}_STANDARD_{CE23B3DC-18CC-46FC-A309-81D6670F8D3D}) (Version: - Microsoft)
Aktualizácia Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}_STANDARD_{D6DBF512-87C0-4F6A-8FB9-AC3A389D9DE5}) (Version: - Microsoft)
ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.)
ASUS GiftBox Service (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 3.0.8 - ASUSTeK COMPUTER INC.)
ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.0.7 - ASUSTeK COMPUTER INC.)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.)
ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.25 - ASUSTek COMPUTER INC.)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.23.0001 - ASUS)
ATK Package (ASUS Keyboard Hotkeys) (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0060 - ASUSTeK COMPUTER INC.)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.5.88 - ICEpower a/s)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.1.2397 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - )
Google Chrome (HKLM\...\{21BED74A-2399-33DA-A4C2-DA59444ADEC4}) (Version: 80.0.3987.149 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HiP2P Client (HKLM-x32\...\{2F3762A1-58CA-43A8-9854-88BCC34C6D2F}) (Version: 6.4.8.2 - Hi)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10207.5567 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{9154f79b-8fb8-46ef-b7a6-95f136391303}) (Version: 10.1.17479.8054 - Intel(R) Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4936 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1726.2 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1743.4.0.1217 - Intel Corporation)
IP Camera Viewer 4 (HKLM-x32\...\IP Camera Viewer_is1) (Version: - DeskShare Inc.)
IrfanView 4.52 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.52 - Irfan Skiljan)
K-Lite Codec Pack 14.3.6 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.3.6 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Age of Empires II Trial Version (HKLM-x32\...\Age of Empires II Trial) (Version: - )
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARD) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Mozilla Firefox 61.0.2 (x64 sk) (HKLM\...\Mozilla Firefox 61.0.2 (x64 sk)) (Version: 61.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0.2 - Mozilla)
OpenOffice 4.1.5 (HKLM-x32\...\{E177AC33-EC9C-4537-8996-37ED331D9227}) (Version: 4.15.9789 - Apache Software Foundation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.2 - pdfforge GmbH)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8809.1 - Realtek Semiconductor Corp.)
Skype verzia 8.28 (HKLM-x32\...\Skype_is1) (Version: 8.28 - Skype Technologies S.A.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0-3) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Windows Driver Package - ASUSTek COMPUTER INC. (AsusPTPDrv) HIDClass (10/25/2017 11.0.0.21) (HKLM\...\38D64A6EF13E2FAA5DE3820CB44E2994223DD766) (Version: 10/25/2017 11.0.0.21 - ASUSTek COMPUTER INC.)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.5 - ASUSTeK COMPUTER INC.)
WinRAR 5.50 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)

Packages:
=========
ASUS Battery Health Charging -> C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy [2018-04-19] (ASUSTeK COMPUTER INC.) [Startup Task]
ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.1.8.0_x64__qmba6cd70vzyy [2019-11-15] (ASUSTeK COMPUTER INC.)
ASUS Product Registration Program -> C:\Program Files\WindowsApps\B9ECED6F.ASUSProductRegistrationProgram_3.0.3.0_x86__qmba6cd70vzyy [2018-08-19] (ASUSTeK COMPUTER INC.) [Startup Task]
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-08] (Canon Inc.)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-30] (Microsoft Corporation)
eManual -> C:\Program Files\WindowsApps\B9ECED6F.eManual_2.0.3.0_x86__qmba6cd70vzyy [2018-08-19] (ASUSTeK COMPUTER INC.)
GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.12.0_x64__0r04f53sqacg6 [2020-01-01] (GoTrustID Inc.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2018-08-19] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.27.0_x64__wafk5atnkzcwy [2020-02-27] (McAfee LLC.)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft Midi gm.dls -> C:\Program Files\WindowsApps\Microsoft.Midi.GmDls_1.0.1.0_neutral__8wekyb3d8bbwe [2018-11-12] (Microsoft Platform Extensions)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Studios) [MS Ad]
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2018-08-19] (ASUSTeK COMPUTER INC.) [Startup Task]
PhotoDirector8 for ASUS -> C:\Program Files\WindowsApps\F5080380.PhotoDirector8forASUS_8.0.4020.0_x64__tfv7c950n6xcr [2018-08-19] (CyberLink Corp.)
PowerDirector14 for ASUS -> C:\Program Files\WindowsApps\F5080380.PowerDirector14forASUS_14.0.5226.0_x64__tfv7c950n6xcr [2018-08-19] (CyberLink Corp.)
WPS Office for ASUS -> C:\Program Files\WindowsApps\ZhuhaiKingsoftOfficeSoftw.WPSOffice_11.2.8342.0_x86__924xes6e8q1tw [2019-11-15] (Kingsoft Office Software Corporation Limited)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-03-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-03-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-10-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-03-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-03-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2017-10-03 14:45 - 2017-10-03 14:45 - 000147968 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2017-10-24 13:24 - 2017-10-24 13:24 - 000036864 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2017-06-21 12:51 - 2017-06-21 12:51 - 000029184 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll
2017-10-24 13:24 - 2017-10-24 13:24 - 000073216 _____ (ASUS TeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ApplyLUT.dll
2017-10-24 13:24 - 2017-10-24 13:24 - 000242688 _____ (ASUS TeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\GenLUT.dll
2017-10-24 13:24 - 2017-10-24 13:24 - 000407040 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ColorU.dll
2018-08-19 10:37 - 2018-08-19 10:37 - 000117248 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
2017-10-24 13:24 - 2017-10-24 13:24 - 000403968 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ColorUGameDLL.dll
2017-10-24 13:24 - 2017-10-24 13:24 - 000029184 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2018-08-26 13:55 - 2020-03-08 15:48 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\TXE Components\iCLS\;C:\Program Files\Intel\TXE Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files (x86)\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\;C:\Program Files (x86)\Intel\TXE Components\IPT\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\Control Panel\Desktop\\Wallpaper -> C:\FOTKY\Grecko_2018\20180719_190739.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Realtek RealWoW Protocol Driver -> rtk_realwow60 (enabled)
Sieťové pripojenie Bluetooth: Realtek RealWoW Protocol Driver -> rtk_realwow60 (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{AFEA460E-0E1E-47F8-814D-7A04610DD71C}C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe] => (Block) C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe No File
FirewallRules: [TCP Query User{4893EDA3-9F7F-4D1A-AB1B-F7ACCB0A5FD9}C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe] => (Block) C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe No File
FirewallRules: [UDP Query User{868C29CA-06E9-47CB-8868-008E4A66D594}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [TCP Query User{93DAE32C-C2BD-4FEE-8ECE-F9821A3CA5CD}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [{7AEE973F-A679-4CA3-A4BE-EDBF8A652B89}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{208F1872-DE23-4AFA-A39C-D65A0E05E3AA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{82AF93D5-DF74-4ACE-AB18-747E189ED7E6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8FEF6D62-7C53-4B0A-8420-60AAFE7D70B4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{991837BF-C96A-43FF-A2B1-E7C28FF25DE2}C:\program files (x86)\hip2p client\p2pclient.exe] => (Allow) C:\program files (x86)\hip2p client\p2pclient.exe () [File not signed]
FirewallRules: [UDP Query User{F984B260-9A00-4C6A-89F7-6C36BF2C4CE3}C:\program files (x86)\hip2p client\p2pclient.exe] => (Allow) C:\program files (x86)\hip2p client\p2pclient.exe () [File not signed]
FirewallRules: [{0F20BF22-0D9B-4FBD-8AF0-EC4B8F02922E}] => (Block) C:\program files (x86)\hip2p client\p2pclient.exe () [File not signed]
FirewallRules: [{88CCBC60-2AF0-4FE8-A295-488A553FC206}] => (Block) C:\program files (x86)\hip2p client\p2pclient.exe () [File not signed]
FirewallRules: [{84CDF89D-BDEA-4AA0-9E1F-C5AF6F41F444}] => (Allow) C:\Program Files (x86)\Deskshare\IP Camera Viewer 4\IP Camera Viewer.exe (DeskShare, Inc. -> Deskshare.com)
FirewallRules: [{4BD24535-DA4C-44D2-B682-7F2AC9C232C4}] => (Allow) C:\Program Files (x86)\Deskshare\IP Camera Viewer 4\IP Camera Viewer.exe (DeskShare, Inc. -> Deskshare.com)
FirewallRules: [{C3856236-AAA5-4CD6-821C-BE20A541B387}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{646EF214-8C59-4E6C-A241-B15995F49AFD}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{C8F1184B-1229-4423-8D9B-482588E3D78E}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{07FC7156-E3C7-4993-9EC5-EAFBE8E0A9D0}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{6E10FECE-F3EC-44ED-84DD-25846C875CAE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.12527.20278.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{117430B4-F9E1-4655-9E25-4F23FF526B6A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

31-03-2020 13:55:03 Inštalátor modulov systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/31/2020 03:14:29 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8776,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 03:04:25 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4264,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 02:23:27 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13184,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 02:12:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5780,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 02:00:47 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider $Core attempted to register query "select * from __TimerEvent" whose target class "__TimerEvent" in //./root/subscription namespace does not exist. The query will be ignored.

Error: (03/31/2020 02:00:47 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider $Core attempted to register query "select * from __SystemEvent" whose target class "__SystemEvent" in //./root/subscription namespace does not exist. The query will be ignored.

Error: (03/31/2020 02:00:47 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider $Core attempted to register query "select * from __NamespaceOperationEvent" whose target class "__NamespaceOperationEvent" in //./root/subscription namespace does not exist. The query will be ignored.

Error: (03/31/2020 02:00:47 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider $Core attempted to register query "select * from __ClassOperationEvent" whose target class "__ClassOperationEvent" in //./root/subscription namespace does not exist. The query will be ignored.


System errors:
=============
Error: (03/31/2020 02:53:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby avast! Antivirus zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (03/31/2020 02:53:00 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby avast! Antivirus bol dosiahnutý časový limit (45000 ms).

Error: (03/31/2020 02:49:57 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby RtkBtManServ bol dosiahnutý časový limit (30000 ms).

Error: (03/31/2020 02:44:49 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-FQRI8L1Q)
Description: The server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} did not register with DCOM within the required timeout.

Error: (03/31/2020 02:44:49 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-FQRI8L1Q)
Description: The server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} did not register with DCOM within the required timeout.

Error: (03/31/2020 02:44:48 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-FQRI8L1Q)
Description: The server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} did not register with DCOM within the required timeout.

Error: (03/31/2020 02:44:47 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-FQRI8L1Q)
Description: The server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} did not register with DCOM within the required timeout.

Error: (03/31/2020 02:00:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby avast! Antivirus zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.


CodeIntegrity:
===================================

Date: 2020-03-31 15:37:51.984
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-31 15:37:49.938
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-31 15:37:47.760
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-31 15:37:45.478
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-31 15:37:42.756
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2020-03-31 15:37:42.646
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2020-03-31 15:37:30.748
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-31 15:32:59.764
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. X507MA.304 05/28/2019
Motherboard: ASUSTeK COMPUTER INC. X507MA
Processor: Intel(R) Pentium(R) Silver N5000 CPU @ 1.10GHz
Percentage of memory in use: 71%
Total physical RAM: 3918.89 MB
Available physical RAM: 1104.89 MB
Total Virtual: 8270.89 MB
Available Virtual: 5241.85 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:930.46 GB) (Free:883.81 GB) NTFS

\\?\Volume{adf40f39-3d9c-4a5d-9a83-c259bd5dabc0}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.34 GB) NTFS
\\?\Volume{3c914028-11ad-4f1b-b7ab-4cfcfb09880f}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 827D7430)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Disk stale pracuje

Napsal: 31 bře 2020 14:57
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Disk stale pracuje

Napsal: 31 bře 2020 15:21
od Vasil
# -------------------------------
# Malwarebytes AdwCleaner 8.0.3.0
# -------------------------------
# Build: 03-03-2020
# Database: 2020-03-23.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-31-2020
# Duration: 00:00:15
# OS: Windows 10 Home
# Cleaned: 29
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\Asus\AppData\Roaming\Seznam.cz

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce

***** [ Chromium (and derivatives) ] *****

Deleted PDF Viewer & Converter by FromDocToPDF - chnacmlpiecdhgkdgeoipkmdbekengck
Deleted Seznam doplněk - Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig
Deleted Seznam doplněk - Esko - olfeabkoenfaoljndfecamgilllcpiak

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.ASUSDeviceActivation Folder C:\Program Files (x86)\ASUS\ASUS DEVICE ACTIVATION
Deleted Preinstalled.ASUSDeviceActivation Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}
Deleted Preinstalled.ASUSGiftBox Folder C:\Program Files (x86)\ASUS\ASUS GIFTBOX SERVICE
Deleted Preinstalled.ASUSGiftBox Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}
Deleted Preinstalled.ASUSHello Folder C:\Program Files (x86)\ASUS\ASUS HELLO
Deleted Preinstalled.ASUSHello Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E2E09694-29EA-40FD-B5D5-09E1B7BDA2C5}
Deleted Preinstalled.ASUSHello Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS Hello
Deleted Preinstalled.ASUSHello Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}
Deleted Preinstalled.ASUSHello Task C:\Windows\System32\Tasks\ASUS HELLO
Deleted Preinstalled.ASUSLiveUpdate Folder C:\Program Files (x86)\ASUS\ASUS LIVE UPDATE
Deleted Preinstalled.ASUSLiveUpdate Folder C:\ProgramData\ASUS\ASUS LIVE UPDATE
Deleted Preinstalled.ASUSLiveUpdate Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F50D2E14-C628-4B8D-B8E3-18E8E0E1E53F}
Deleted Preinstalled.ASUSLiveUpdate Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Update Checker
Deleted Preinstalled.ASUSLiveUpdate Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}
Deleted Preinstalled.ASUSLiveUpdate Task C:\Windows\System32\Tasks\UPDATE CHECKER
Deleted Preinstalled.ASUSProductRegistration Folder C:\ProgramData\ASUS\APRP
Deleted Preinstalled.ASUSSplendid Folder C:\Program Files (x86)\ASUS\SPLENDID
Deleted Preinstalled.ASUSSplendid Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F0AABB04-C05C-4101-902A-03B151BB10D8}
Deleted Preinstalled.ASUSSplendid Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS Splendid ACMON
Deleted Preinstalled.ASUSSplendid Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{0969AF05-4FF6-4C00-9406-43599238DE0D}
Deleted Preinstalled.ASUSSplendid Task C:\Windows\System32\Tasks\ASUS SPLENDID ACMON


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4525 octets] - [31/03/2020 16:04:58]
AdwCleaner[S01].txt - [4586 octets] - [31/03/2020 16:09:32]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Re: Disk stale pracuje

Napsal: 31 bře 2020 15:58
od Rudy
Dejte nové logy FRST+Addition.

Re: Disk stale pracuje

Napsal: 31 bře 2020 16:32
od Vasil
==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [277664 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\...\MountPoints2: {4f175dc3-cdda-11e9-b4ab-505bc22201b8} - "D:\Lenovo_Suite.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-18] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14E010A9-6CA6-4405-BEFC-CBA169115799} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-28] (Avast Software s.r.o. -> Avast Software)
Task: {50706BBE-0A18-48B8-BBA1-0AB93DD58FC5} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506384 2019-10-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {565C3C1A-EEEA-4D3E-9114-612845DBD58F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3894664 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
Task: {59C1D689-922C-41E0-AD05-59534D9499E8} - System32\Tasks\klcp_update => CodecTweakTool.exe
Task: {5BFE2863-C9DE-4BE1-B7D9-8610F20D1586} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506384 2019-10-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {5DC43494-2FD3-494E-86F0-2821FA010C7B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {700A4D90-F485-4452-B238-6B0F1AF5CF6E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {789FA124-349D-4A28-90D5-D3E93BB5B76C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {881DE557-8191-4F90-8351-96BCD42E3A48} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {932F5706-5B3F-432A-AC96-F4805779C697} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {B8CC2E51-D3B3-469A-9AD7-25184C7C95E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {CAB5C5C8-49B3-466C-86A1-55758E6CE7C9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E3F2DC8B-1D3B-4543-89BA-71D0654C3E32} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Asus\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0956bbc9-77f5-46e7-aa4b-18c228e3926b}: [DhcpNameServer] 10.66.24.1
Tcpip\..\Interfaces\{87407c35-94ac-4a61-967b-b2e05c7de8fe}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File

FireFox:
========
FF DefaultProfile: x3x3hcw1.default
FF ProfilePath: C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\x3x3hcw1.default [2020-03-31]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\x3x3hcw1.default\Extensions\sp@avast.com.xpi [2019-02-09]
FF Extension: (Avast Online Security) - C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\x3x3hcw1.default\Extensions\wrc@avast.com.xpi [2019-01-23]
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default [2020-03-31]
CHR Notifications: Default -> hxxps://www.podnakafe.sk
CHR Extension: (Prezentácie) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-28]
CHR Extension: (Dokumenty) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-28]
CHR Extension: (Disk Google) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-28]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-13]
CHR Extension: (Avast Online Security) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-02-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-28]
CHR Extension: (Chrome Media Router) - C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-20]
CHR Profile: C:\Users\Asus\AppData\Local\Google\Chrome\User Data\System Profile [2020-03-30]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6046624 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [413472 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57536 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R2 esifsvc; C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe [2141064 2019-06-19] (Intel Corporation -> Intel Corporation)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [812528 2019-10-09] (ICEpower a/s -> ICEpower A/S)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_7e148e9c120d86df\lib\SocketHeciServer.exe [872200 2019-05-13] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_7e148e9c120d86df\lib\TPMProvisioningService.exe [800016 2019-05-13] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\WINDOWS\System32\DriverStore\FileRepository\dal_wc.inf_amd64_9171bd9f02afbfa0\jhi_service.exe [578704 2018-10-25] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [710208 2019-07-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [X]
S2 GiftBox.Service; "C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [112336 2019-10-02] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37864 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205576 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [271120 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206608 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [64272 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-03-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [279360 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42976 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175400 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110560 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84056 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848672 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [458584 2020-03-11] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [235184 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316256 2020-03-05] (Avast Software s.r.o. -> AVAST Software)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\dptf_acpi.inf_amd64_5989fd2721678bab\dptf_acpi.sys [77192 2019-06-19] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\dptf_cpu.sys [74120 2019-06-19] (Intel Corporation -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_lf.sys [408456 2019-06-19] (Intel Corporation -> Intel Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
R3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [112528 2019-05-03] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 RealWoW60; C:\WINDOWS\system32\DRIVERS\RealWoW60.sys [39432 2017-04-07] (Realtek Semiconductor Corp. -> Realtek semiconductor corp)
R3 RtkBtFilter; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [775208 2019-07-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [460408 2019-05-16] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 RTWlanE02; C:\WINDOWS\System32\drivers\rtwlane02.sys [9625384 2019-05-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-03-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [391392 2020-03-31] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-31] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-31 16:07 - 2020-03-31 16:07 - 008199856 _____ (Malwarebytes) C:\Users\Asus\Desktop\AdwCleaner.exe
2020-03-31 16:03 - 2020-03-31 16:11 - 000000000 ____D C:\AdwCleaner
2020-03-31 16:01 - 2020-03-31 16:01 - 001957784 _____ (Malwarebytes) C:\Users\Asus\Downloads\MBSetup.exe
2020-03-31 15:34 - 2020-03-05 07:47 - 000368056 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-03-31 15:30 - 2020-03-31 17:28 - 000014009 _____ C:\Users\Asus\Desktop\FRST.txt
2020-03-31 15:27 - 2020-03-31 17:27 - 000000000 ____D C:\FRST
2020-03-31 14:32 - 2020-03-31 14:32 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-03-31 14:32 - 2020-03-31 14:32 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2020-03-31 14:32 - 2020-03-31 14:32 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 022636544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 019813376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 018027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 014818816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 006525424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 003753472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-03-31 14:31 - 2020-03-31 14:31 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 001077264 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000673704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000628408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-03-31 14:31 - 2020-03-31 14:31 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-03-31 14:31 - 2020-03-31 14:31 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-03-31 14:31 - 2020-03-31 14:31 - 000277864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000123952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-03-31 14:31 - 2020-03-31 14:31 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000066624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000050544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-03-31 14:31 - 2020-03-31 14:31 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2020-03-31 14:31 - 2020-03-31 14:31 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 004563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 003799552 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 003728384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 002768440 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-03-31 14:30 - 2020-03-31 14:30 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 001427456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001378528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000684560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-03-31 14:30 - 2020-03-31 14:30 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-03-31 14:30 - 2020-03-31 14:30 - 000033080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys
2020-03-31 14:30 - 2020-03-31 14:30 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2020-03-31 14:30 - 2020-03-31 14:30 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 017790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 007849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 003586872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 002143232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 002126144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 002114560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001960448 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000874512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000437560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000297272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000151352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000047208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-03-31 14:29 - 2020-03-31 14:29 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2020-03-31 14:29 - 2020-03-31 14:29 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll
2020-03-31 14:29 - 2020-03-31 14:29 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2020-03-31 14:19 - 2020-03-31 14:18 - 002280448 _____ (Farbar) C:\Users\Asus\Desktop\FRST64.exe
2020-03-31 14:18 - 2020-03-31 14:18 - 002280448 _____ (Farbar) C:\Users\Asus\Downloads\FRST64.exe
2020-03-30 18:51 - 2020-03-31 12:07 - 000002298 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-03-30 18:51 - 2020-03-31 09:36 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-03-30 18:50 - 2020-03-30 18:51 - 000000000 ____D C:\Program Files\CCleaner
2020-03-30 18:50 - 2020-03-30 18:50 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-03-30 18:50 - 2020-03-30 18:50 - 000000865 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-03-30 18:50 - 2020-03-30 18:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-03-23 22:39 - 2020-03-23 22:39 - 000007643 _____ C:\Users\Asus\AppData\Local\Resmon.ResmonCfg
2020-03-23 13:48 - 2020-03-23 13:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-1509649906-4059530401-1489123845-1001
2020-03-22 12:45 - 2020-03-22 12:46 - 000000000 ____D C:\Users\Asus\AppData\Local\TeamViewer
2020-03-22 12:45 - 2020-03-22 12:45 - 000000000 ____D C:\Users\Asus\AppData\Roaming\TeamViewer
2020-03-19 12:27 - 2020-03-30 20:06 - 000000000 _____ C:\WINDOWS\system32\last.dump
2020-03-13 12:27 - 2020-03-13 12:27 - 011607552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-03-13 12:27 - 2020-03-13 12:27 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 006285312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 004348408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 003819520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 003488768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 003243296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 002956688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-03-13 12:26 - 2020-03-13 12:26 - 002315680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 002072664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001867816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001770552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001555904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001490640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001282944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001273856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001108040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000757632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacEncoder.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacEncoder.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-03-13 12:26 - 2020-03-13 12:26 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-03-13 12:26 - 2020-03-13 12:26 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-03-13 12:26 - 2020-03-13 12:26 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-03-13 12:26 - 2020-03-13 12:26 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2020-03-13 12:26 - 2020-03-13 12:26 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 004855808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 004580352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-03-13 12:25 - 2020-03-13 12:25 - 002740736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 002259872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001985104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001684992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001665416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-03-13 12:25 - 2020-03-13 12:25 - 001264128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001218632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 001190912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001088000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001031680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 001007672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000935040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000769552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000136328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000120560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmtask.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-03-13 12:25 - 2020-03-13 12:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2020-03-13 12:25 - 2020-03-13 12:25 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-03-13 12:25 - 2020-03-13 12:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-03-13 12:24 - 2020-03-13 12:24 - 006084344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 005112832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 003971808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 002875904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 002773568 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 002021888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001484600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000776488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000734720 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000627216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000478792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-03-13 12:24 - 2020-03-13 12:24 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2020-03-13 12:24 - 2020-03-13 12:24 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000213984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-03-13 12:24 - 2020-03-13 12:24 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000165504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2020-03-13 12:24 - 2020-03-13 12:24 - 000133944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-03-13 12:24 - 2020-03-13 12:24 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000102760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000042336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-03-13 12:24 - 2020-03-13 12:24 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2020-03-13 12:24 - 2020-03-13 12:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2020-03-13 12:24 - 2020-03-13 12:24 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 006436352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 003371720 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 002698040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 001999952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 001396152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000983896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000929144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000877232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000636848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000320312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000248064 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000221200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000120048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000098104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2020-03-13 12:23 - 2020-03-13 12:23 - 000089616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-03-13 12:23 - 2020-03-13 12:23 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-03-13 12:23 - 2020-03-13 12:23 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 007905784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 004622280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 004471296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 004048896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 003260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 003143168 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002715648 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 002522112 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002474496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001972536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001823232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001657120 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-03-13 12:22 - 2020-03-13 12:22 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001071184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000945384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000833616 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000642216 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000522384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000201744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000066336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlrmdr.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAProfileNotificationHandler.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000048256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000029712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys
2020-03-13 12:22 - 2020-03-13 12:22 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpnotify.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe
2020-03-13 12:22 - 2020-03-13 12:22 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2020-03-13 12:22 - 2020-03-13 12:22 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-03-13 12:21 - 2020-03-13 12:22 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-03-13 12:21 - 2020-03-13 12:21 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-03-13 12:21 - 2020-03-13 12:21 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Acx01000.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000306696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000250896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000224056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000222520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000180232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000174392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe
2020-03-13 12:21 - 2020-03-13 12:21 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-03-13 12:21 - 2020-03-13 12:21 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-03-13 12:21 - 2020-03-13 12:21 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000056632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-03-13 12:21 - 2020-03-13 12:21 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000030008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2020-03-13 12:21 - 2020-03-13 12:21 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000016912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-03-13 12:21 - 2020-03-13 12:21 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUserRes.dll
2020-03-13 11:45 - 2020-03-13 11:45 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-03-13 11:45 - 2020-03-13 11:45 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-03-07 11:52 - 2020-03-07 12:17 - 000000000 ____D C:\Users\Asus\AppData\Local\BlueStacks
2020-03-07 11:52 - 2020-03-07 11:56 - 000000000 ____D C:\Users\Public\BlueStacks
2020-03-06 16:32 - 2020-03-06 16:32 - 000000000 ____D C:\Program Files (x86)\Deskshare
2020-03-06 12:47 - 2020-03-06 12:47 - 000000000 ____D C:\Users\Asus\AppData\Local\DeskShare Data
2020-03-06 12:04 - 2020-03-06 16:32 - 000001430 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IP Camera Viewer 4.lnk
2020-03-06 12:04 - 2020-03-06 16:32 - 000001418 _____ C:\Users\Public\Desktop\IP Camera Viewer 4.lnk
2020-03-06 12:04 - 2020-03-06 16:32 - 000001418 _____ C:\ProgramData\Desktop\IP Camera Viewer 4.lnk
2020-03-06 12:04 - 2020-03-06 12:04 - 000000000 ____D C:\Users\Asus\AppData\Local\Spoon
2020-03-06 12:04 - 2020-03-06 12:04 - 000000000 ____D C:\ProgramData\DeskShare
2020-03-06 12:03 - 2020-03-06 12:03 - 031768096 _____ C:\IPCameraViewer.exe
2020-03-05 16:56 - 2020-03-05 16:56 - 000001726 _____ C:\Users\Public\Desktop\HiP2P Client.lnk
2020-03-05 16:56 - 2020-03-05 16:56 - 000001726 _____ C:\ProgramData\Desktop\HiP2P Client.lnk
2020-03-05 16:56 - 2020-03-05 16:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiP2P Client
2020-03-05 16:56 - 2020-03-05 16:56 - 000000000 ____D C:\Program Files (x86)\HiP2P Client
2020-03-05 16:56 - 1998-08-18 17:25 - 000169984 _____ C:\WINDOWS\SysWOW64\glut32.dll
2020-03-05 16:55 - 2020-03-05 16:55 - 026646574 _____ C:\23183fa6-45ee-474b-a138-c569c79ab283.zip
2020-03-05 16:42 - 2020-03-30 19:21 - 000000000 ____D C:\ProgramData\Informer Technologies, Inc
2020-03-05 16:42 - 2020-03-30 19:20 - 000000000 ____D C:\Program Files\Software Informer
2020-03-05 07:48 - 2020-03-05 07:47 - 000235184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-03-05 07:48 - 2020-03-05 07:47 - 000175400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-31 17:24 - 2019-09-02 22:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-03-31 17:24 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-31 16:17 - 2019-01-23 15:01 - 000002090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-03-31 16:17 - 2019-01-23 15:01 - 000002078 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-03-31 16:17 - 2019-01-23 15:01 - 000002078 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-03-31 16:16 - 2018-04-19 14:10 - 000000000 ____D C:\ProgramData\ASUS
2020-03-31 16:15 - 2018-04-19 15:03 - 000000000 __SHD C:\Users\Asus\IntelGraphicsProfiles
2020-03-31 16:14 - 2019-09-02 22:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-03-31 16:13 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-03-31 16:12 - 2017-12-01 20:36 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-03-31 16:02 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-03-31 15:36 - 2019-09-02 22:47 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-03-31 15:34 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-03-31 14:58 - 2019-09-02 22:33 - 000964242 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-03-31 14:58 - 2019-09-02 22:13 - 000118900 _____ C:\WINDOWS\system32\perfh01B.dat
2020-03-31 14:58 - 2019-09-02 22:13 - 000024282 _____ C:\WINDOWS\system32\perfc01B.dat
2020-03-31 14:57 - 2018-04-19 15:04 - 000000357 _____ C:\Users\Asus\AppData\Roaming\sp_data.sys
2020-03-31 14:52 - 2019-09-02 22:06 - 000473152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-03-31 14:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-03-31 14:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-03-31 14:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-03-31 14:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-03-31 14:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-03-31 14:44 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-03-31 14:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-03-31 14:05 - 2019-03-13 21:23 - 000000000 ____D C:\Users\Asus\AppData\Local\D3DSCache
2020-03-31 12:16 - 2018-08-19 10:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-03-31 12:15 - 2019-01-23 15:01 - 000000000 ____D C:\Users\Asus\AppData\Local\AVAST Software
2020-03-31 12:07 - 2019-09-02 22:47 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-03-31 12:07 - 2019-09-02 22:47 - 000003446 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-03-31 12:07 - 2019-09-02 22:47 - 000003222 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-31 12:07 - 2019-09-02 22:47 - 000002830 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2020-03-31 09:32 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-03-30 21:30 - 2018-08-27 13:17 - 000000000 ____D C:\Users\Asus\AppData\Local\PlaceholderTileLogoFolder
2020-03-30 21:29 - 2018-04-19 15:03 - 000000000 ____D C:\Users\Asus\AppData\Local\Packages
2020-03-30 20:38 - 2019-02-05 13:11 - 000000000 ____D C:\Program Files (x86)\Microsoft Games
2020-03-30 20:37 - 2018-04-19 14:03 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-03-30 19:24 - 2018-04-19 14:31 - 000000000 ____D C:\WINDOWS\prerequisites
2020-03-30 19:16 - 2018-08-19 10:31 - 000000000 ___RD C:\Users\Asus\OneDrive
2020-03-30 19:04 - 2019-12-01 20:53 - 000000000 ____D C:\Users\Asus\AppData\Roaming\MPC-HC
2020-03-30 19:04 - 2019-08-14 17:57 - 000000000 ___DC C:\WINDOWS\Panther
2020-03-30 19:04 - 2018-08-19 10:37 - 000000000 ____D C:\Program Files\PDFCreator
2020-03-30 19:03 - 2020-02-28 16:49 - 000000000 ____D C:\WINDOWS\Minidump
2020-03-30 19:03 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-03-30 19:03 - 2019-01-30 19:12 - 000000000 ____D C:\Users\Asus\AppData\Local\CrashDumps
2020-03-29 18:43 - 2019-02-06 16:55 - 000000000 ____D C:\Users\Asus\AppData\Local\ElevatedDiagnostics
2020-03-25 20:54 - 2019-09-02 22:47 - 000003034 _____ C:\WINDOWS\system32\Tasks\klcp_update
2020-03-25 20:54 - 2019-09-02 22:47 - 000002924 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2020-03-25 20:54 - 2019-09-02 22:47 - 000002346 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2020-03-25 20:54 - 2019-09-02 22:47 - 000002302 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2020-03-25 20:54 - 2019-09-02 22:47 - 000002214 _____ C:\WINDOWS\system32\Tasks\ATK Package A22126881260
2020-03-25 20:54 - 2019-09-02 22:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-03-18 20:33 - 2018-08-19 10:26 - 000002315 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-16 00:43 - 2019-09-02 22:18 - 000000000 ____D C:\Users\Asus
2020-03-15 09:30 - 2018-08-19 10:26 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-03-15 09:25 - 2018-04-19 15:03 - 000000000 ___RD C:\Users\Asus\3D Objects
2020-03-15 09:25 - 2018-04-19 13:49 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-03-15 01:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-03-15 01:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-03-15 01:55 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-03-15 01:55 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2020-03-13 12:45 - 2018-08-24 01:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-03-13 12:40 - 2018-08-24 01:36 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-03-11 15:11 - 2019-01-23 14:56 - 000458584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-03-11 09:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2020-03-10 09:00 - 2019-01-23 14:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-03-10 08:46 - 2018-08-19 10:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-03-08 15:48 - 2018-08-26 13:55 - 000000445 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2020-03-05 07:47 - 2019-02-13 12:23 - 000279360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000848672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000316256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000205576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000110560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000084056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000042976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000037864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-03-05 07:47 - 2019-01-23 14:56 - 000016304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2020-03-05 07:46 - 2019-01-23 14:56 - 000271120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-03-05 07:46 - 2019-01-23 14:56 - 000206608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-03-05 07:46 - 2019-01-23 14:56 - 000064272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys

==================== Files in the root of some directories ========

2018-04-19 15:04 - 2020-03-31 14:57 - 000000357 _____ () C:\Users\Asus\AppData\Roaming\sp_data.sys
2020-03-23 22:39 - 2020-03-23 22:39 - 000007643 _____ () C:\Users\Asus\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-03-2020
Ran by Asus (31-03-2020 17:29:03)
Running from C:\Users\Asus\Desktop
Windows 10 Home Version 1909 18363.752 (X64) (2019-09-02 20:48:38)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1509649906-4059530401-1489123845-500 - Administrator - Disabled)
Asus (S-1-5-21-1509649906-4059530401-1489123845-1001 - Administrator - Enabled) => C:\Users\Asus
DefaultAccount (S-1-5-21-1509649906-4059530401-1489123845-503 - Limited - Disabled)
Guest (S-1-5-21-1509649906-4059530401-1489123845-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1509649906-4059530401-1489123845-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.)
Aktualizácia Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}_STANDARD_{9A8C39B0-D27F-4F81-BE74-2FECF164707E}) (Version: - Microsoft)
Aktualizácia Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}_STANDARD_{CE23B3DC-18CC-46FC-A309-81D6670F8D3D}) (Version: - Microsoft)
Aktualizácia Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}_STANDARD_{D6DBF512-87C0-4F6A-8FB9-AC3A389D9DE5}) (Version: - Microsoft)
ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.25 - ASUSTek COMPUTER INC.)
ATK Package (ASUS Keyboard Hotkeys) (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0060 - ASUSTeK COMPUTER INC.)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.5.88 - ICEpower a/s)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.1.2397 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - )
Google Chrome (HKLM\...\{21BED74A-2399-33DA-A4C2-DA59444ADEC4}) (Version: 80.0.3987.149 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HiP2P Client (HKLM-x32\...\{2F3762A1-58CA-43A8-9854-88BCC34C6D2F}) (Version: 6.4.8.2 - Hi)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10207.5567 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{9154f79b-8fb8-46ef-b7a6-95f136391303}) (Version: 10.1.17479.8054 - Intel(R) Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4936 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1726.2 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1743.4.0.1217 - Intel Corporation)
IP Camera Viewer 4 (HKLM-x32\...\IP Camera Viewer_is1) (Version: - DeskShare Inc.)
IrfanView 4.52 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.52 - Irfan Skiljan)
K-Lite Codec Pack 14.3.6 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.3.6 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Age of Empires II Trial Version (HKLM-x32\...\Age of Empires II Trial) (Version: - )
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARD) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Mozilla Firefox 61.0.2 (x64 sk) (HKLM\...\Mozilla Firefox 61.0.2 (x64 sk)) (Version: 61.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0.2 - Mozilla)
OpenOffice 4.1.5 (HKLM-x32\...\{E177AC33-EC9C-4537-8996-37ED331D9227}) (Version: 4.15.9789 - Apache Software Foundation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.2 - pdfforge GmbH)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8809.1 - Realtek Semiconductor Corp.)
Skype verzia 8.28 (HKLM-x32\...\Skype_is1) (Version: 8.28 - Skype Technologies S.A.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0-3) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Windows Driver Package - ASUSTek COMPUTER INC. (AsusPTPDrv) HIDClass (10/25/2017 11.0.0.21) (HKLM\...\38D64A6EF13E2FAA5DE3820CB44E2994223DD766) (Version: 10/25/2017 11.0.0.21 - ASUSTek COMPUTER INC.)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.5 - ASUSTeK COMPUTER INC.)
WinRAR 5.50 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)

Packages:
=========
ASUS Battery Health Charging -> C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy [2018-04-19] (ASUSTeK COMPUTER INC.) [Startup Task]
ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.1.8.0_x64__qmba6cd70vzyy [2019-11-15] (ASUSTeK COMPUTER INC.)
ASUS Product Registration Program -> C:\Program Files\WindowsApps\B9ECED6F.ASUSProductRegistrationProgram_3.0.3.0_x86__qmba6cd70vzyy [2018-08-19] (ASUSTeK COMPUTER INC.) [Startup Task]
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-08] (Canon Inc.)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-30] (Microsoft Corporation)
eManual -> C:\Program Files\WindowsApps\B9ECED6F.eManual_2.0.3.0_x86__qmba6cd70vzyy [2018-08-19] (ASUSTeK COMPUTER INC.)
GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.12.0_x64__0r04f53sqacg6 [2020-01-01] (GoTrustID Inc.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2018-08-19] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.27.0_x64__wafk5atnkzcwy [2020-02-27] (McAfee LLC.)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft Midi gm.dls -> C:\Program Files\WindowsApps\Microsoft.Midi.GmDls_1.0.1.0_neutral__8wekyb3d8bbwe [2018-11-12] (Microsoft Platform Extensions)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Studios) [MS Ad]
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.12527.20278.0_x86__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2018-08-19] (ASUSTeK COMPUTER INC.) [Startup Task]
PhotoDirector8 for ASUS -> C:\Program Files\WindowsApps\F5080380.PhotoDirector8forASUS_8.0.4020.0_x64__tfv7c950n6xcr [2018-08-19] (CyberLink Corp.)
PowerDirector14 for ASUS -> C:\Program Files\WindowsApps\F5080380.PowerDirector14forASUS_14.0.5226.0_x64__tfv7c950n6xcr [2018-08-19] (CyberLink Corp.)
WPS Office for ASUS -> C:\Program Files\WindowsApps\ZhuhaiKingsoftOfficeSoftw.WPSOffice_11.2.8342.0_x86__924xes6e8q1tw [2019-11-15] (Kingsoft Office Software Corporation Limited)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-03-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-03-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-10-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-03-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-03-05] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-08-19 10:37 - 2018-08-19 10:37 - 000117248 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2018-08-26 13:55 - 2020-03-08 15:48 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\TXE Components\iCLS\;C:\Program Files\Intel\TXE Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files (x86)\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\;C:\Program Files (x86)\Intel\TXE Components\IPT\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\Control Panel\Desktop\\Wallpaper -> C:\FOTKY\Grecko_2018\20180719_190739.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Realtek RealWoW Protocol Driver -> rtk_realwow60 (enabled)
Sieťové pripojenie Bluetooth: Realtek RealWoW Protocol Driver -> rtk_realwow60 (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{AFEA460E-0E1E-47F8-814D-7A04610DD71C}C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe] => (Block) C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe No File
FirewallRules: [TCP Query User{4893EDA3-9F7F-4D1A-AB1B-F7ACCB0A5FD9}C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe] => (Block) C:\program files (x86)\microsoft games\age of empires ii trial\empires2.exe No File
FirewallRules: [UDP Query User{868C29CA-06E9-47CB-8868-008E4A66D594}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [TCP Query User{93DAE32C-C2BD-4FEE-8ECE-F9821A3CA5CD}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [{7AEE973F-A679-4CA3-A4BE-EDBF8A652B89}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{208F1872-DE23-4AFA-A39C-D65A0E05E3AA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{82AF93D5-DF74-4ACE-AB18-747E189ED7E6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8FEF6D62-7C53-4B0A-8420-60AAFE7D70B4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{991837BF-C96A-43FF-A2B1-E7C28FF25DE2}C:\program files (x86)\hip2p client\p2pclient.exe] => (Allow) C:\program files (x86)\hip2p client\p2pclient.exe () [File not signed]
FirewallRules: [UDP Query User{F984B260-9A00-4C6A-89F7-6C36BF2C4CE3}C:\program files (x86)\hip2p client\p2pclient.exe] => (Allow) C:\program files (x86)\hip2p client\p2pclient.exe () [File not signed]
FirewallRules: [{0F20BF22-0D9B-4FBD-8AF0-EC4B8F02922E}] => (Block) C:\program files (x86)\hip2p client\p2pclient.exe () [File not signed]
FirewallRules: [{88CCBC60-2AF0-4FE8-A295-488A553FC206}] => (Block) C:\program files (x86)\hip2p client\p2pclient.exe () [File not signed]
FirewallRules: [{84CDF89D-BDEA-4AA0-9E1F-C5AF6F41F444}] => (Allow) C:\Program Files (x86)\Deskshare\IP Camera Viewer 4\IP Camera Viewer.exe (DeskShare, Inc. -> Deskshare.com)
FirewallRules: [{4BD24535-DA4C-44D2-B682-7F2AC9C232C4}] => (Allow) C:\Program Files (x86)\Deskshare\IP Camera Viewer 4\IP Camera Viewer.exe (DeskShare, Inc. -> Deskshare.com)
FirewallRules: [{C3856236-AAA5-4CD6-821C-BE20A541B387}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{646EF214-8C59-4E6C-A241-B15995F49AFD}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{C8F1184B-1229-4423-8D9B-482588E3D78E}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{07FC7156-E3C7-4993-9EC5-EAFBE8E0A9D0}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{6E10FECE-F3EC-44ED-84DD-25846C875CAE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.12527.20278.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{117430B4-F9E1-4655-9E25-4F23FF526B6A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

31-03-2020 13:55:03 Inštalátor modulov systému Windows
31-03-2020 16:10:22 AdwCleaner_BeforeCleaning_31/03/2020_16:10:21

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/31/2020 04:34:12 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3832,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 04:24:03 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3804,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 03:48:44 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8288,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 03:43:12 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1916,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 03:14:29 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8776,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 03:04:25 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4264,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 02:23:27 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13184,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (03/31/2020 02:12:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5780,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


System errors:
=============
Error: (03/31/2020 04:19:39 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Update Orchestrator Service sa pri spustení zablokovala.

Error: (03/31/2020 04:14:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby GiftBox.Service zlyhalo kvôli nasledujúcej chybe:
The system cannot find the file specified.

Error: (03/31/2020 04:13:01 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa neočakávane zastavil.

Cesta k modulu: C:\WINDOWS\system32\Rtlihvs.dll

Error: (03/31/2020 04:13:01 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa neočakávane zastavil.

Cesta k modulu: C:\WINDOWS\system32\Rtlihvs.dll

Error: (03/31/2020 04:12:44 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa neočakávane zastavil.

Cesta k modulu: C:\WINDOWS\system32\Rtlihvs.dll

Error: (03/31/2020 04:12:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMI Performance Adapter sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 120000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.

Error: (03/31/2020 04:11:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 0 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.

Error: (03/31/2020 04:11:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.


CodeIntegrity:
===================================

Date: 2020-03-31 17:24:55.434
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-03-31 17:24:55.430
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-03-31 17:24:51.506
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-03-31 17:24:51.503
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-03-31 16:53:58.899
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-03-31 16:53:58.888
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-03-31 16:53:14.756
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-03-31 16:53:14.746
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. X507MA.304 05/28/2019
Motherboard: ASUSTeK COMPUTER INC. X507MA
Processor: Intel(R) Pentium(R) Silver N5000 CPU @ 1.10GHz
Percentage of memory in use: 70%
Total physical RAM: 3918.89 MB
Available physical RAM: 1146.45 MB
Total Virtual: 8270.89 MB
Available Virtual: 5072.75 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:930.46 GB) (Free:882.87 GB) NTFS

\\?\Volume{adf40f39-3d9c-4a5d-9a83-c259bd5dabc0}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.34 GB) NTFS
\\?\Volume{3c914028-11ad-4f1b-b7ab-4cfcfb09880f}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 827D7430)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Disk stale pracuje

Napsal: 31 bře 2020 17:06
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\...\MountPoints2: {4f175dc3-cdda-11e9-b4ab-505bc22201b8} - "D:\Lenovo_Suite.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {700A4D90-F485-4452-B238-6B0F1AF5CF6E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {B8CC2E51-D3B3-469A-9AD7-25184C7C95E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
FirewallRules: [UDP Query User{868C29CA-06E9-47CB-8868-008E4A66D594}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [TCP Query User{93DAE32C-C2BD-4FEE-8ECE-F9821A3CA5CD}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [{C3856236-AAA5-4CD6-821C-BE20A541B387}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{646EF214-8C59-4E6C-A241-B15995F49AFD}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{C8F1184B-1229-4423-8D9B-482588E3D78E}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{07FC7156-E3C7-4993-9EC5-EAFBE8E0A9D0}] => (Allow) %systemroot%\system32\alg.exe No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Disk stale pracuje

Napsal: 31 bře 2020 17:19
od Vasil
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-03-2020
Ran by Asus (31-03-2020 18:11:10) Run:1
Running from C:\Users\Asus\Desktop
Loaded Profiles: Asus (Available Profiles: Asus)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\...\MountPoints2: {4f175dc3-cdda-11e9-b4ab-505bc22201b8} - "D:\Lenovo_Suite.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {700A4D90-F485-4452-B238-6B0F1AF5CF6E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {B8CC2E51-D3B3-469A-9AD7-25184C7C95E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Asus\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => No File
FirewallRules: [UDP Query User{868C29CA-06E9-47CB-8868-008E4A66D594}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [TCP Query User{93DAE32C-C2BD-4FEE-8ECE-F9821A3CA5CD}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [{C3856236-AAA5-4CD6-821C-BE20A541B387}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{646EF214-8C59-4E6C-A241-B15995F49AFD}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{C8F1184B-1229-4423-8D9B-482588E3D78E}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{07FC7156-E3C7-4993-9EC5-EAFBE8E0A9D0}] => (Allow) %systemroot%\system32\alg.exe No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4f175dc3-cdda-11e9-b4ab-505bc22201b8} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{700A4D90-F485-4452-B238-6B0F1AF5CF6E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{700A4D90-F485-4452-B238-6B0F1AF5CF6E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B8CC2E51-D3B3-469A-9AD7-25184C7C95E7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B8CC2E51-D3B3-469A-9AD7-25184C7C95E7}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\Software\Classes\PROTOCOLS\Handler\sacore => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => removed successfully
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => removed successfully
HKU\S-1-5-21-1509649906-4059530401-1489123845-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{868C29CA-06E9-47CB-8868-008E4A66D594}C:\program files (x86)\counter-strike 1.6\hl.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{93DAE32C-C2BD-4FEE-8ECE-F9821A3CA5CD}C:\program files (x86)\counter-strike 1.6\hl.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C3856236-AAA5-4CD6-821C-BE20A541B387}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{646EF214-8C59-4E6C-A241-B15995F49AFD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C8F1184B-1229-4423-8D9B-482588E3D78E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{07FC7156-E3C7-4993-9EC5-EAFBE8E0A9D0}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 27369915 B
Java, Flash, Steam htmlcache => 1079 B
Windows/system/drivers => 189093 B
Edge => 570497 B
Chrome => 353919552 B
Firefox => 22048162 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 25182 B
NetworkService => 44780 B
Asus => 4792859 B

RecycleBin => 8230301 B
EmptyTemp: => 408.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:11:37 ====

Re: Disk stale pracuje

Napsal: 31 bře 2020 17:58
od Rudy
Smazáno. Nastala nějaká změna?

Re: Disk stale pracuje

Napsal: 31 bře 2020 19:23
od Vasil
myslim že ano, disk aj procesor pracuju v normalnych hodnotach.

Re: Disk stale pracuje

Napsal: 31 bře 2020 19:52
od Rudy
Tak to jsem rád. :)

Re: Disk stale pracuje

Napsal: 31 bře 2020 19:55
od Vasil
Dakujem.

Re: Disk stale pracuje

Napsal: 31 bře 2020 19:56
od Rudy
Nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz