VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o jednu preventivku, Děkuji

https://forum.viry.cz:443/viewtopic.php?t=157168

Stránka 1 z 1

Prosím o jednu preventivku, Děkuji

Napsal: 30 kvě 2020 21:31
od kodl74
Logfile of random's system information tool 1.10 (written by random/random)
Run by kaPL74 at 2020-05-30 22:26:07
Microsoft Windows 10 Pro
System drive C: has 726 GB (76%) free of 953 GB
Total RAM: 32728 MB (86% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:26:30, on 30.05.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
C:\Windows\SysWOW64\muachost.exe
C:\Program Files (x86)\MSI\Gaming APP\MSI_LED.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Winstep\Nexus.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files\trend micro\kaPL74.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKCU\..\Run: [Nexus] C:\Program Files (x86)\Winstep\Nexus.exe autostart
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKCU\..\Run: [CCXProcess] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe"
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000000" /M "L3150 Series"
O4 - HKCU\..\Run: [EPLTarget\P0000000000000001] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000001" /M "L3150 Series"
O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Windows\SysWOW64\muachost.exe /RestartByRestartManager:012F26C8-DE85-4ea3-B8F4-4B83B7846881 /RestartByRestartManager:6D393DF7-B985-4f60-8F03-2A67B37DED76 /RestartByRestartManager:A7056F7D-6C51-4c55-947F-4D460A39F919 /RestartByRestartManager:613E69D8-146C-49da-B0D2-4DAD868882E6
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Poslat do aplikace OneNote.lnk = C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\Windows\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_3e386 - Unknown owner - C:\Windows\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
O23 - Service: MSI Gaming Hotkey Service (GamingHotkey_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_ActiveX_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Unknown owner - C:\Windows\System32\RtkAudUService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\Windows\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: SetupARService - Unknown owner - C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\Windows\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\Windows\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: Winstep Xtreme Service - Unknown owner - C:\Program.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12233 bytes

======Listing Processes======









C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\Windows\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
winlogon.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-6f456bc7-13ce-4550-a8a8-1b34fa40d8e8 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-04418be6-56b1-4f3b-b0b1-5b35f45a23bf -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-47d374dc-d03c-46a1-b96d-a69818bc7be2 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-22f701e8-de7c-4585-89ce-2f1090899455 -LifetimeId:bb39e43b-398b-4e8e-b312-b987162a37c7 -DeviceGroupId: -HostArg:0
"fontdrvhost.exe"
C:\Windows\system32\svchost.exe -k RPCSS -p
C:\Windows\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\Windows\system32\svchost.exe -k netsvcs -p -s Schedule
C:\Windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\Windows\system32\svchost.exe -k netsvcs -p -s UserManager
C:\Windows\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\Windows\system32\svchost.exe -k LocalService -p -s nsi
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\Windows\system32\svchost.exe -k LocalService -p -s PhoneSvc

C:\Windows\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\Windows\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
C:\Windows\System32\svchost.exe -k LocalService -p -s netprofm
C:\Windows\system32\svchost.exe -k LocalService -p
C:\Windows\System32\svchost.exe -k netsvcs -p -s Themes
C:\Windows\system32\svchost.exe -k LocalService -p -s EventSystem
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\Windows\system32\svchost.exe -k netsvcs -p -s SENS

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\Windows\system32\svchost.exe -k LocalService -p -s FontCache
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
"C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\DisplaySessionContainer%d.log -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
C:\Windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\system32\svchost.exe -k appmodel -p -s StateRepository
sihost.exe
C:\Windows\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\Windows\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc

C:\Windows\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\Windows\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\Windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe" --normal
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\SysWOW64\muachost.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\Windows\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\Windows\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\Windows\System32\svchost.exe -k utcsvc -p
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\Windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\Windows\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\Windows\system32\svchost.exe -k netsvcs -p -s WpnService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\Windows\system32\EscSvc64.exe
"C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe"
"C:\Program Files (x86)\Winstep\WsxService"
"C:\Windows\System32\RtkAudUService64.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe"
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k LocalService -p -s WdiServiceHost
dashost.exe {4b1541a2-ebcc-4535-b07929d6ec7679cc}
"ctfmon.exe"
C:\Windows\System32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\Windows\system32\svchost.exe -k LocalService -p -s fdPHost
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
rundll32.exe "c:\program files\nvidia corporation\nvstreamsrv\rxdiag.dll" RxDiagSetRuntimeMessagePump
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\Windows\system32\svchost.exe -k LocalService -p -s CDPSvc
"C:\Program Files (x86)\MSI\Gaming APP\MSI_LED.exe" --start
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\Windows\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe"
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe"
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\Windows\system32\SettingSyncHost.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\RtkAudUService64.exe" -background
"C:\Program Files\ESET\ESET Security\eguiproxy.exe" /hide
C:\Windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\Logitech\LogiOptions\LogiOptions.exe" /noui
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe"
"C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe"
"C:\Program Files (x86)\Winstep\Nexus.exe" autostart
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe"
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --no-rate-limit --no-upload-gzip --type=crash-handler "--crashes-directory=C:\Users\kaPL74\AppData\Local\Temp\skype-preview Crashes" "--database=C:\Users\kaPL74\AppData\Local\Temp\skype-preview Crashes" "--metrics-dir=C:\Users\kaPL74\AppData\Local\Temp\skype-preview Crashes" --url=appcenter://generic?aid=a7417433-29d9-4bc0-8826-af367733939d&iid=d403ecb0-386e-4205-b827-f904f9d1bb0b&uid=1e2fe564-fc96-4334-6e68-acb71c6264ba --initial-client-data=0x5bc,0x5c0,0x5c4,0x5b8,0x5c8,0x6314150,0x6314160,0x631416c
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=gpu-process --field-trial-handle=2248,13570923778070293381,17022966584053134948,131072 --disable-features=PictureInPicture,SpareRendererForSitePerProcess --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=2732608692034401296 --mojo-platform-channel-handle=2228 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=utility --field-trial-handle=2248,13570923778070293381,17022966584053134948,131072 --disable-features=PictureInPicture,SpareRendererForSitePerProcess --lang=cs --service-sandbox-type=network --service-request-channel-token=7667135088018578707 --mojo-platform-channel-handle=2540 /prefetch:8
"C:\Windows\System32\spool\drivers\x64\3\E_YATIUNE.EXE" /EPT "EPLTarget\P0000000000000000" /M "L3150 Series"
"C:\Windows\System32\spool\drivers\x64\3\E_YATIUNE.EXE" /EPT "EPLTarget\P0000000000000001" /M "L3150 Series"
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=utility --field-trial-handle=2248,13570923778070293381,17022966584053134948,131072 --disable-features=PictureInPicture,SpareRendererForSitePerProcess --lang=cs --service-sandbox-type=audio --service-request-channel-token=3653016482635427237 --mojo-platform-channel-handle=3472 /prefetch:8
C:\Windows\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\svchost.exe -k netsvcs -p

C:\Windows\system32\svchost.exe -k netsvcs -p -s UsoSvc


"C:\Program Files (x86)\Steam\steam.exe" -- "steam://rungameid/227300"
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=cs_CZ" "-cachedir=C:\Users\kaPL74\AppData\Local\Steam\htmlcache" "-steampid=5596" "-buildid=1589513816" "-steamid=0" "-steamuniverse=Public" "-clientui=C:\Program Files (x86)\Steam\clientui" --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --enable-media-stream --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\kaPL74\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1589513816 --initial-client-data=0x2dc,0x2e0,0x2ec,0x2e8,0x2f4,0x7ff8cad9bed0,0x7ff8cad9bee0,0x7ff8cad9bef0
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --field-trial-handle=1516,10837697617106000034,3484580622437956468,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --lang=cs-CZ --buildid=1589513816 --steamid=0 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --service-request-channel-token=8473558932734410446 --mojo-platform-channel-handle=1524 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --field-trial-handle=1516,10837697617106000034,3484580622437956468,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --lang=cs --service-sandbox-type=network --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --lang=cs-CZ --buildid=1589513816 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --service-request-channel-token=4641882448927432157 --mojo-platform-channel-handle=2136 /prefetch:8
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1516,10837697617106000034,3484580622437956468,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1589513816 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2356115473523185336 --renderer-client-id=5 --mojo-platform-channel-handle=2652 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1516,10837697617106000034,3484580622437956468,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1589513816 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=11599082316669238979 --renderer-client-id=6 --mojo-platform-channel-handle=2732 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --field-trial-handle=1516,10837697617106000034,3484580622437956468,131072 --disable-features=CalculateNativeWinOcclusion,MimeHandlerViewInCrossProcessFrame --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --buildid=1589513816 --steamid=0 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14203610248787659800 --renderer-client-id=7 --mojo-platform-channel-handle=2976 /prefetch:1
C:\Windows\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20022.11011.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19111.24110.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
C:\Windows\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\Windows\system32\svchost.exe -k appmodel -p -s camsvc
C:\Windows\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\Windows\System32\DataExchangeHost.exe -Embedding
C:\Windows\system32\svchost.exe -k DevicesFlow -s DevicesFlowUserSvc
C:\Windows\system32\svchost.exe -k DevicesFlow -s DevicePickerUserSvc
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=renderer --autoplay-policy=no-user-gesture-required --disable-background-timer-throttling --ms-disable-indexeddb-transaction-timeout --field-trial-handle=2248,13570923778070293381,17022966584053134948,131072 --disable-features=PictureInPicture,SpareRendererForSitePerProcess --lang=cs --app-user-model-id=Microsoft.Skype.SkypeDesktop --app-path="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar" --webview-tag --no-sandbox --no-zygote --native-window-open --preload="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar\Preload.js" --background-color=#fff --node-integration-in-subframes --enable-spellcheck --electron-shared-settings=eyJjci5jb21wYW55IjoiRWxlY3Ryb24iLCJjci5kdW1wcyI6IiIsImNyLmVuYWJsZWQiOmZhbHNlLCJjci5wcm9kdWN0IjoiRWxlY3Ryb24iLCJjci5zZXNzaW9uIjoiIiwiY3IudXJsIjoiIiwiY3IudmVyc2lvbiI6IiJ9 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2077843340614119263 --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3888 /prefetch:1 --skype-process-type=Main --skype-window-id=__MAIN_ROOT_VIEW_ID__
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\Windows\System32\smartscreen.exe -Embedding

"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
C:\Windows\system32\AUDIODG.EXE 0x6ac
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe33_ Global\UsGthrCtrlFltPipeMssGthrPipe33 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 780 784 792 8192 788
"C:\Users\kaPL74\Desktop\RSITx64.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\EPSON L3150 Series Update {8EB7930A-DB32-4F75-BBF2-B09321E48960}.job - C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{8EB7930A-DB32-4F75-BBF2-B09321E48960}" /F:"Update"
C:\Windows\tasks\EPSON L3150 Series Update {BD2837DA-20B0-40AF-A8FE-8F821B310009}.job - C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{BD2837DA-20B0-40AF-A8FE-8F821B310009}" /F:"Update"
C:\Windows\tasks\TrackerAutoUpdate.job - C:\Program Files\Tracker Software\Update\TrackerUpdate.exe -CheckUpdate

=========Mozilla firefox=========

ProfilePath - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\bdftw427.default-release

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-02-29 210632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31 471536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201CF130-E29C-4E5C-A73F-CD197DEFA6AE}]
E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-02-29 157904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31 471536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Windows\system32\SecurityHealthSystray.exe [2020-02-29 84992]
"RtkAudUService"=C:\Windows\System32\RtkAudUService64.exe [2019-10-30 856288]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2020-04-03 185648]
"Wondershare Helper Compact.exe"=C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe []
"LogiOptions"=C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2020-04-27 2109064]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Nexus"=C:\Program Files (x86)\Winstep\Nexus.exe [2019-03-01 17959552]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2020-05-15 3372832]
"Skype for Desktop"=C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [2020-05-12 91667312]
"CCXProcess"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [2019-11-26 144008]
"EPLTarget\P0000000000000000"=C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [2017-09-22 416896]
"EPLTarget\P0000000000000001"=C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [2017-09-22 416896]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #1"=C:\Windows\SysWOW64\muachost.exe [2015-08-18 1692840]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe []
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2019-05-31 1319208]

C:\Users\kaPL74\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Poslat do aplikace OneNote.lnk - C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2020-05-30 22:26:17 ----D---- C:\Program Files\trend micro
2020-05-30 22:26:07 ----D---- C:\rsit
2020-05-30 10:16:00 ----D---- C:\Windows\LastGood.Tmp
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\nvofapi.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2020-05-30 10:12:39 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-05-30 10:12:39 ----A---- C:\Windows\system32\vulkaninfo.exe
2020-05-30 10:12:39 ----A---- C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\vulkan-1.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\OpenCL.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\nvofapi64.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\nvml.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\nvmcumd.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\NvIFR64.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\nvidia-smi.exe
2020-05-30 10:12:39 ----A---- C:\Windows\system32\NvFBC64.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\nvdebugdump.exe
2020-05-30 10:12:39 ----A---- C:\Windows\system32\nvcuvid.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\nvcuda.dll
2020-05-30 10:12:39 ----A---- C:\Windows\system32\MCU.exe
2020-05-30 09:38:47 ----D---- C:\Program Files\UNP
2020-05-27 18:09:44 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2020-05-27 18:09:44 ----A---- C:\Windows\system32\drivers\MbamChameleon.sys
2020-05-26 20:23:59 ----D---- C:\Users\kaPL74\AppData\Roaming\uTorrent
2020-05-20 07:50:57 ----D---- C:\Program Files\Logitech
2020-05-20 07:40:57 ----D---- C:\Users\kaPL74\AppData\Roaming\Skype
2020-05-15 15:06:37 ----D---- C:\PerfLogs
2020-05-15 14:31:58 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2020-05-15 14:31:58 ----A---- C:\Windows\SYSWOW64\Windows.Media.Editing.dll
2020-05-15 14:31:58 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Picker.dll
2020-05-15 14:31:58 ----A---- C:\Windows\SYSWOW64\MixedRealityRuntime.dll
2020-05-15 14:31:58 ----A---- C:\Windows\SYSWOW64\HoloShellRuntime.dll
2020-05-15 14:31:58 ----A---- C:\Windows\SYSWOW64\ConsoleLogon.dll
2020-05-15 14:31:58 ----A---- C:\Windows\SYSWOW64\AccountsRt.dll
2020-05-15 14:31:58 ----A---- C:\Windows\system32\Windows.UI.BioFeedback.dll
2020-05-15 14:31:58 ----A---- C:\Windows\system32\Windows.Devices.Picker.dll
2020-05-15 14:31:58 ----A---- C:\Windows\system32\WinBioDataModel.dll
2020-05-15 14:31:58 ----A---- C:\Windows\system32\wbengine.exe
2020-05-15 14:31:58 ----A---- C:\Windows\system32\wbadmin.exe
2020-05-15 14:31:58 ----A---- C:\Windows\system32\TSSessionUX.dll
2020-05-15 14:31:58 ----A---- C:\Windows\system32\RDXService.dll
2020-05-15 14:31:58 ----A---- C:\Windows\system32\ConsoleLogon.dll
2020-05-15 14:31:58 ----A---- C:\Windows\system32\AccountsRt.dll
2020-05-15 14:31:57 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2020-05-15 14:31:57 ----A---- C:\Windows\SYSWOW64\Windows.Media.Audio.dll
2020-05-15 14:31:57 ----A---- C:\Windows\SYSWOW64\MSPhotography.dll
2020-05-15 14:31:57 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2020-05-15 14:31:57 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2020-05-15 14:31:57 ----A---- C:\Windows\SYSWOW64\mfds.dll
2020-05-15 14:31:57 ----A---- C:\Windows\system32\MixedRealityRuntime.dll
2020-05-15 14:31:57 ----A---- C:\Windows\system32\MixedReality.Broker.dll
2020-05-15 14:31:57 ----A---- C:\Windows\system32\HoloSI.PCShell.dll
2020-05-15 14:31:57 ----A---- C:\Windows\system32\HologramCompositor.dll
2020-05-15 14:31:56 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2020-05-15 14:31:56 ----A---- C:\Windows\system32\Windows.Media.Editing.dll
2020-05-15 14:31:56 ----A---- C:\Windows\system32\Windows.Media.dll
2020-05-15 14:31:56 ----A---- C:\Windows\system32\mfsrcsnk.dll
2020-05-15 14:31:56 ----A---- C:\Windows\system32\mfplat.dll
2020-05-15 14:31:56 ----A---- C:\Windows\system32\Hydrogen.dll
2020-05-15 14:31:56 ----A---- C:\Windows\system32\HoloShellRuntime.dll
2020-05-15 14:31:56 ----A---- C:\Windows\system32\HologramWorld.dll
2020-05-15 14:31:56 ----A---- C:\Windows\system32\DMRServer.dll
2020-05-15 14:31:55 ----A---- C:\Windows\SYSWOW64\AppVEntSubsystems32.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\Windows.Media.Audio.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\tspubwmi.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\RDVGHelper.exe
2020-05-15 14:31:55 ----A---- C:\Windows\system32\rdpsign.exe
2020-05-15 14:31:55 ----A---- C:\Windows\system32\rdpshell.exe
2020-05-15 14:31:55 ----A---- C:\Windows\system32\rdpinit.exe
2020-05-15 14:31:55 ----A---- C:\Windows\system32\MSPhotography.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\mfds.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\mfcore.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\assignedaccessmanagersvc.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\AssignedAccessManager.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\AssignedAccessCsp.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\AppVReporting.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\appvetwstreamingux.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\appvetwclientres.dll
2020-05-15 14:31:55 ----A---- C:\Windows\system32\AppVEntSubsystems64.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\wkspbrokerAx.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\Windows.Mirage.Internal.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\tapi32.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\RdpSaProxy.exe
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\RdpSa.exe
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\rdpendp.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\pla.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\msi.dll
2020-05-15 14:31:54 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\TransportDSA.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\SyncAppvPublishingServer.exe
2020-05-15 14:31:54 ----A---- C:\Windows\system32\ScriptRunner.exe
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVStreamMap.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVStreamingUX.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVShNotify.exe
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVScripting.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVPublishing.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVPolicy.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVOrchestration.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVNice.exe
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVManifest.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVIntegration.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVFileSystemMetadata.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVEntVirtualization.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVEntSubsystemController.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVEntStreamingManager.dll
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVDllSurrogate.exe
2020-05-15 14:31:54 ----A---- C:\Windows\system32\AppVCatalog.dll
2020-05-15 14:31:53 ----A---- C:\Windows\SYSWOW64\msjet40.dll
2020-05-15 14:31:53 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2020-05-15 14:31:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2020-05-15 14:31:53 ----A---- C:\Windows\SYSWOW64\IndexedDbLegacy.dll
2020-05-15 14:31:53 ----A---- C:\Windows\SYSWOW64\ieproxy.dll
2020-05-15 14:31:53 ----A---- C:\Windows\SYSWOW64\iemigplugin.dll
2020-05-15 14:31:53 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2020-05-15 14:31:53 ----A---- C:\Windows\SYSWOW64\Chakrathunk.dll
2020-05-15 14:31:53 ----A---- C:\Windows\SYSWOW64\Chakradiag.dll
2020-05-15 14:31:53 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Scanners.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\werui.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\webplatstorageserver.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\jscript.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\fdWSD.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\EdgeManager.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\easwrt.dll
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\DWWIN.EXE
2020-05-15 14:31:52 ----A---- C:\Windows\SYSWOW64\dialclient.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\wkspbrokerAx.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\wkspbroker.exe
2020-05-15 14:31:51 ----A---- C:\Windows\system32\Windows.Internal.PredictionUnit.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\umrdp.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\TSWbPrxy.exe
2020-05-15 14:31:51 ----A---- C:\Windows\system32\tsmf.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\tsgqec.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\termsrv.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\tapi32.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\SIHClient.exe
2020-05-15 14:31:51 ----A---- C:\Windows\system32\SettingsHandlers_Clipboard.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\rdsdwmdr.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\RdpSaProxy.exe
2020-05-15 14:31:51 ----A---- C:\Windows\system32\RdpSa.exe
2020-05-15 14:31:51 ----A---- C:\Windows\system32\RdpRelayTransport.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\rdpinput.exe
2020-05-15 14:31:51 ----A---- C:\Windows\system32\rdpendp.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\rdpcorets.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\rdpcore.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\rdpclip.exe
2020-05-15 14:31:51 ----A---- C:\Windows\system32\plasrv.exe
2020-05-15 14:31:51 ----A---- C:\Windows\system32\pla.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\mstscax.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\msimsg.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\msi.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\iemigplugin.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\fhsettingsprovider.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\DiagSvc.dll
2020-05-15 14:31:51 ----A---- C:\Windows\system32\CXHProvisioningServer.dll
2020-05-15 14:31:50 ----A---- C:\Windows\system32\jscript9diag.dll
2020-05-15 14:31:50 ----A---- C:\Windows\system32\jscript9.dll
2020-05-15 14:31:50 ----A---- C:\Windows\system32\IndexedDbLegacy.dll
2020-05-15 14:31:50 ----A---- C:\Windows\system32\ieproxy.dll
2020-05-15 14:31:50 ----A---- C:\Windows\system32\ieframe.dll
2020-05-15 14:31:50 ----A---- C:\Windows\system32\Chakrathunk.dll
2020-05-15 14:31:50 ----A---- C:\Windows\system32\Chakradiag.dll
2020-05-15 14:31:50 ----A---- C:\Windows\system32\Chakra.dll
2020-05-15 14:31:49 ----A---- C:\Windows\system32\webplatstorageserver.dll
2020-05-15 14:31:49 ----A---- C:\Windows\system32\mshtml.dll
2020-05-15 14:31:49 ----A---- C:\Windows\system32\EdgeManager.dll
2020-05-15 14:31:48 ----A---- C:\Windows\system32\MshtmlDac.dll
2020-05-15 14:31:48 ----A---- C:\Windows\system32\jscript.dll
2020-05-15 14:31:48 ----A---- C:\Windows\system32\edgehtml.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\Windows.Devices.Scanners.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\werui.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\wercplsupport.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\werconcpl.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\tcbloader.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\sdengin2.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\PlayToManager.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\fdWSD.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\easwrt.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\DWWIN.EXE
2020-05-15 14:31:47 ----A---- C:\Windows\system32\dialclient.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\DataExchangeHost.exe
2020-05-15 14:31:47 ----A---- C:\Windows\system32\ConsentUxClient.dll
2020-05-15 14:31:47 ----A---- C:\Windows\system32\CBDHSvc.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\Windows.UI.CredDialogController.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\wermgr.exe
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\weretw.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\werdiagcontroller.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\wer.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\shell32.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\rasdlg.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\puiapi.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\printui.exe
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\policymanager.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\npmproxy.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\nlmsprep.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\nlmproxy.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\netprofm.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\msIso.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\msimg32.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\MrmIndexer.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\lpk.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\gdi32full.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\fontdrvhost.exe
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\findnetprinters.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\efswrt.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\edgeIso.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\dtdump.exe
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\ddrawex.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\ddraw.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\DafPrintProvider.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\credssp.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\CredProvDataModel.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\ConfigureExpandedStorage.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\compstui.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2020-05-15 14:31:46 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2020-05-15 14:31:46 ----A---- C:\Windows\system32\tcblaunch.exe
2020-05-15 14:31:46 ----A---- C:\Windows\system32\hvix64.exe
2020-05-15 14:31:46 ----A---- C:\Windows\system32\hvax64.exe
2020-05-15 14:31:46 ----A---- C:\Windows\system32\bcastdvruserservice.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\wincorlib.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\tzres.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\msvcp_win.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2020-05-15 14:31:45 ----A---- C:\Windows\SYSWOW64\combase.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\wups.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.System.SystemManagement.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.System.Profile.RetailInfo.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.System.Diagnostics.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Compression.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Services.TargetedContent.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Media.Speech.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Media.MediaControl.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Management.Workplace.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Devices.Sensors.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Energy.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Devices.WiFi.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SerialCommunication.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Perception.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Devices.LowLevel.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Lights.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\Windows.AI.MachineLearning.Preview.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\win32u.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\win32kfull.sys
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\win32k.sys
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\vaultcli.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\usoapi.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\user32.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\RTMediaFrame.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\rdpbase.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\PickerPlatform.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\ErrorDetails.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\DiagnosticInvoker.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\deviceaccess.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\dcomp.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\daxexec.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2020-05-15 14:31:44 ----A---- C:\Windows\SYSWOW64\CapabilityAccessManagerClient.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryPS.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryCore.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryClient.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.Payments.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Vpn.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.Devices.PointOfService.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\UserDataAccountApis.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\TileDataRepository.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\TaskApis.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\StateRepository.Core.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\socialapis.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\rdpsharercom.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\propsys.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\PhoneOm.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\PhoneCallHistoryApis.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\PeopleAPIs.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\mscms.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\mbussdapi.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\MapGeocoder.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\KerbClientShared.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\InstallServiceTasks.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\InstallService.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\InputHost.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\icm32.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\ChatApis.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\Geolocation.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\EmailApis.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\ContactApis.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\coloradapterclient.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2020-05-15 14:31:43 ----A---- C:\Windows\SYSWOW64\AppointmentApis.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.System.Launcher.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.Perception.Stub.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.Media.Ocr.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.Media.FaceAnalysis.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.Gaming.Preview.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SmartCards.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.Devices.AllJoyn.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\windows.applicationmodel.datatransfer.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\Windows.AccountsControl.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\UserDeviceRegistration.Ngc.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\UserDeviceRegistration.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\useractivitybroker.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\dsregtask.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\dsreg.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\CloudExperienceHostUser.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\CloudExperienceHostCommon.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\CameraCaptureUI.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\AuthBroker.dll
2020-05-15 14:31:42 ----A---- C:\Windows\SYSWOW64\ActivationManager.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\WwaApi.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\wlidprov.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Web.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Maps.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.3D.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Gaming.Input.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Usb.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Radios.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Printers.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Haptics.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Core.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\ShareHost.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\MiracastReceiver.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\MicrosoftAccountWAMExtension.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\LaunchWinApp.exe
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\gamingtcui.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\ffbroker.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\ExecModelClient.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\DataExchange.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\cdprt.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\BcastDVRClient.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\BcastDVRBroker.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\AssignedAccessRuntime.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\AppExtension.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\AppContracts.dll
2020-05-15 14:31:41 ----A---- C:\Windows\SYSWOW64\aadWamExtension.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\winsta.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\Windows.Media.Devices.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\Windows.Devices.WiFiDirect.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Midi.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\VoipRT.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\twinui.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\TokenBrokerCookies.exe
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\TokenBroker.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\tbauth.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\SystemSettings.DataModel.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\SyncSettings.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\sppcext.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\sppc.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\SpatialAudioLicenseSrv.exe
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\slcext.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\slc.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\remoteaudioendpoint.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\RADCUI.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\PCPKsp.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\msutb.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\LicensingWinRT.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\FlightSettings.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\explorer.exe
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\DeviceReactivation.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\ContentDeliveryManager.Utilities.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\CloudNotifications.exe
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\BTAGService.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2020-05-15 14:31:40 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\Windows.Cortana.OneCore.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\Windows.Cortana.Desktop.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\vbscript.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\TSpkg.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\SettingSyncCore.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\scrrun.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\scesrv.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\rasdlg.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\puiobj.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\puiapi.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\printui.exe
2020-05-15 14:31:40 ----A---- C:\Windows\system32\LsaIso.exe
2020-05-15 14:31:40 ----A---- C:\Windows\system32\iumcrypt.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\findnetprinters.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\efswrt.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\DafPrintProvider.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\credssp.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\ConfigureExpandedStorage.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\comdlg32.dll
2020-05-15 14:31:40 ----A---- C:\Windows\system32\comctl32.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\usbmon.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\tcpmon.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\SystemSettings.Handlers.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\pnidui.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\npmproxy.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\nlmsprep.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\nlmproxy.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\netprofmsvc.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\netprofm.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\localui.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\Family.Client.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\Family.Authentication.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\compstui.dll
2020-05-15 14:31:39 ----A---- C:\Windows\system32\APMon.dll
2020-05-15 14:31:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2020-05-15 14:31:38 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\WUDFx02000.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\winsrvext.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\Windows.UI.CredDialogController.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\WebRuntimeManager.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\usermgr.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\urlmon.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\t2embed.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\policymanager.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\omadmclient.exe
2020-05-15 14:31:38 ----A---- C:\Windows\system32\msIso.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\msimg32.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\MrmIndexer.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\mf3216.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\lpk.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\LogonController.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\iertutil.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\GdiPlus.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\gdi32full.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\fontsub.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\fontdrvhost.exe
2020-05-15 14:31:38 ----A---- C:\Windows\system32\enterprisecsps.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\edgeIso.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\drivers\clfs.sys
2020-05-15 14:31:38 ----A---- C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\ddrawex.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\ddraw.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\dciman32.dll
2020-05-15 14:31:38 ----A---- C:\Windows\system32\CredProvDataModel.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\WinTypes.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\wincorlib.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\wersvc.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\wermgr.exe
2020-05-15 14:31:37 ----A---- C:\Windows\system32\WerFault.exe
2020-05-15 14:31:37 ----A---- C:\Windows\system32\weretw.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\werdiagcontroller.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\wer.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\utcutil.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\tzres.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\runexehelper.exe
2020-05-15 14:31:37 ----A---- C:\Windows\system32\oleaut32.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\ntoskrnl.exe
2020-05-15 14:31:37 ----A---- C:\Windows\system32\ntdll.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\KernelBase.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\Faultrep.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2020-05-15 14:31:37 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2020-05-15 14:31:37 ----A---- C:\Windows\system32\drivers\tcpip.sys
2020-05-15 14:31:37 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2020-05-15 14:31:37 ----A---- C:\Windows\system32\drivers\cng.sys
2020-05-15 14:31:37 ----A---- C:\Windows\system32\drivers\afd.sys
2020-05-15 14:31:37 ----A---- C:\Windows\system32\diagtrack.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\combase.dll
2020-05-15 14:31:37 ----A---- C:\Windows\system32\bcryptprimitives.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\wksprt.exe
2020-05-15 14:31:36 ----A---- C:\Windows\system32\winsta.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\UpgradeResultsUI.exe
2020-05-15 14:31:36 ----A---- C:\Windows\system32\ucrtbase.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\twinui.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\twinapi.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\TSWorkspace.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\TabSvc.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\sppcommdlg.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\sppc.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\slui.exe
2020-05-15 14:31:36 ----A---- C:\Windows\system32\schedsvc.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\RADCUI.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\phoneactivate.exe
2020-05-15 14:31:36 ----A---- C:\Windows\system32\mswsock.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\msvcp_win.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\msutb.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\LicensingWinRT.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\LicensingUI.exe
2020-05-15 14:31:36 ----A---- C:\Windows\system32\LaunchWinApp.exe
2020-05-15 14:31:36 ----A---- C:\Windows\system32\changepk.exe
2020-05-15 14:31:36 ----A---- C:\Windows\system32\dnsrslvr.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\dnsapi.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\dhcpcsvc.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\dhcpcore6.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\dhcpcore.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\DeviceReactivation.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\CoreShell.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\ComposerFramework.dll
2020-05-15 14:31:36 ----A---- C:\Windows\system32\ci.dll
2020-05-15 14:31:35 ----A---- C:\Windows\system32\sppsvc.exe
2020-05-15 14:31:35 ----A---- C:\Windows\system32\sppcext.dll
2020-05-15 14:31:35 ----A---- C:\Windows\system32\slcext.dll
2020-05-15 14:31:35 ----A---- C:\Windows\system32\slc.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\Windows.Media.MediaControl.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\Windows.Internal.CapturePicker.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\Windows.Data.Activities.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\SwitcherDataModel.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\shell32.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\SettingsHandlers_Cortana.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\PasswordEnrollmentManager.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\NotificationController.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\MtcModel.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\drivers\cldflt.sys
2020-05-15 14:31:34 ----A---- C:\Windows\system32\DevicesFlowBroker.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\DevicePairingExperienceMEM.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\dcomp.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\CredDialogBroker.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\CoreMessaging.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\CloudExperienceHostBroker.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\CloudExperienceHost.dll
2020-05-15 14:31:34 ----A---- C:\Windows\system32\CaptureService.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\Windows.System.Profile.RetailInfo.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\Windows.Media.Speech.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\Windows.Devices.Perception.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\win32u.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\win32kfull.sys
2020-05-15 14:31:33 ----A---- C:\Windows\system32\win32k.sys
2020-05-15 14:31:33 ----A---- C:\Windows\system32\wcimage.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\usosvc.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\usocoreworker.exe
2020-05-15 14:31:33 ----A---- C:\Windows\system32\usoapi.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\user32.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\twinui.pcshell.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\SHCore.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\PickerPlatform.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\MusNotifyIcon.exe
2020-05-15 14:31:33 ----A---- C:\Windows\system32\MusNotificationUx.exe
2020-05-15 14:31:33 ----A---- C:\Windows\system32\MusNotification.exe
2020-05-15 14:31:33 ----A---- C:\Windows\system32\musdialoghandlers.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\DesktopSwitcherDataModel.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\daxexec.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2020-05-15 14:31:33 ----A---- C:\Windows\system32\bthserv.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\wpnprv.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\wpnapps.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\windows.storage.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.StateRepositoryUpgrade.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.StateRepositoryPS.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.StateRepositoryCore.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.StateRepositoryClient.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.StateRepositoryBroker.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.Services.TargetedContent.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.Devices.Lights.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\WindowManagement.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\WaaSAssessment.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\UserDataService.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\UserDataAccountApis.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\TaskApis.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\StateRepository.Core.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\socialapis.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\rdpbase.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\psmsrv.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\propsys.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\PhoneCallHistoryApis.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\PeopleAPIs.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\MrmCoreR.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\kerberos.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\KerbClientShared.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\InstallServiceTasks.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\ChatApis.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\Geolocation.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\EmailApis.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\ContactApis.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2020-05-15 14:31:32 ----A---- C:\Windows\system32\AppointmentApis.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\Windows.Payments.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\Windows.Devices.PointOfService.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\TileDataRepository.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\rdpsharercom.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\PhoneOm.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\mscms.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\mbussdapi.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\mbsmsapi.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\MapGeocoder.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\JpMapControl.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\ISM.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\InstallService.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\InputHost.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\icm32.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\FntCache.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\dxgi.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\coloradapterclient.dll
2020-05-15 14:31:31 ----A---- C:\Windows\system32\BingMaps.dll
2020-05-15 14:31:30 ----A---- C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-15 14:31:30 ----A---- C:\Windows\system32\Windows.Gaming.Preview.dll
2020-05-15 14:31:30 ----A---- C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll
2020-05-15 14:31:30 ----A---- C:\Windows\system32\SEMgrSvc.dll
2020-05-15 14:31:30 ----A---- C:\Windows\system32\EdgeContent.dll
2020-05-15 14:31:30 ----A---- C:\Windows\system32\DWrite.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\wups2.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\wups.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\wuaueng.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\wuauclt.exe
2020-05-15 14:31:25 ----A---- C:\Windows\system32\wuapi.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\Windows.System.Diagnostics.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\Windows.Internal.Devices.Sensors.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\Windows.Graphics.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\win32kbase.sys
2020-05-15 14:31:25 ----A---- C:\Windows\system32\vaultsvc.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\vaultcli.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\UpdateDeploymentProvider.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\msxml6.dll
2020-05-15 14:31:25 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2020-05-15 14:31:25 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2020-05-15 14:31:25 ----A---- C:\Windows\system32\cdd.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\wlidprov.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.System.SystemManagement.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.System.Launcher.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Storage.Compression.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Storage.ApplicationData.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Perception.Stub.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Media.Ocr.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Management.Workplace.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Globalization.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Gaming.Input.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Energy.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Devices.WiFi.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Devices.Usb.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Devices.SmartCards.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Devices.LowLevel.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.Devices.AllJoyn.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.ApplicationModel.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\windows.applicationmodel.datatransfer.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.AI.MachineLearning.Preview.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\Windows.AccountsControl.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\useractivitybroker.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\twinui.appcore.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\twinapi.appcore.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\TokenBrokerCookies.exe
2020-05-15 14:31:24 ----A---- C:\Windows\system32\TokenBroker.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\tbauth.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\smartscreen.exe
2020-05-15 14:31:24 ----A---- C:\Windows\system32\RTMediaFrame.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\MicrosoftAccountWAMExtension.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\MicrosoftAccountExtension.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\gamingtcui.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\ffbroker.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\ErrorDetails.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2020-05-15 14:31:24 ----A---- C:\Windows\system32\DiagnosticInvoker.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\deviceaccess.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\CloudExperienceHostUser.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\CloudExperienceHostCommon.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\CapabilityAccessManagerClient.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\CapabilityAccessManager.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\CameraCaptureUI.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\AuthBroker.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\AppExtension.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\AppContracts.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\ActivationManager.dll
2020-05-15 14:31:24 ----A---- C:\Windows\system32\aadcloudap.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\Windows.Devices.Radios.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\Windows.Devices.Printers.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\Windows.Devices.Haptics.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\ShareHost.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\MiracastReceiver.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\ExecModelClient.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\DataExchange.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\CustomInstallExec.exe
2020-05-15 14:31:23 ----A---- C:\Windows\system32\cdpsvc.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\cdprt.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\BcastDVRClient.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\BcastDVRBroker.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\AssignedAccessRuntime.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\AppXApplicabilityBlob.dll
2020-05-15 14:31:23 ----A---- C:\Windows\system32\ApplyTrustOffline.exe
2020-05-15 14:31:23 ----A---- C:\Windows\system32\aadWamExtension.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\WwaApi.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\Windows.Web.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\Windows.UI.Xaml.Resources.Common.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\Windows.Networking.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\Windows.ApplicationModel.Core.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2020-05-15 14:31:22 ----A---- C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\Wpc.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\Windows.UI.Storage.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\Windows.UI.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\Windows.Media.Devices.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\Windows.Internal.Signals.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\vdsbas.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\UtcDecoderHost.exe
2020-05-15 14:31:21 ----A---- C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\UserDeviceRegistration.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\SystemSettings.DataModel.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\SyncSettings.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\StartTileData.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2020-05-15 14:31:21 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\PCPKsp.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\MDMAgent.exe
2020-05-15 14:31:21 ----A---- C:\Windows\system32\localspl.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\FlightSettings.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\FaxPrinterInstaller.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\dsregtask.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\dsreg.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\drivers\winnat.sys
2020-05-15 14:31:21 ----A---- C:\Windows\system32\drivers\storport.sys
2020-05-15 14:31:21 ----A---- C:\Windows\system32\CredentialEnrollmentManager.exe
2020-05-15 14:31:21 ----A---- C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2020-05-15 14:31:21 ----A---- C:\Windows\system32\CloudNotifications.exe
2020-05-15 14:31:21 ----A---- C:\Windows\explorer.exe
2020-05-15 14:31:20 ----A---- C:\Windows\system32\XblGameSaveTask.exe
2020-05-15 14:31:20 ----A---- C:\Windows\system32\XblGameSave.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\wwansvc.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\wwanprotdim.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\Windows.Management.Service.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\Windows.Devices.Midi.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\VoipRT.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\tellib.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\TelephonyInteractiveUser.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\TaskFlowDataEngine.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\SpatialAudioLicenseSrv.exe
2020-05-15 14:31:20 ----A---- C:\Windows\system32\remoteaudioendpoint.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\PhoneService.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\Microsoft.Bluetooth.UserService.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\drivers\KNetPwrDepBroker.sys
2020-05-15 14:31:20 ----A---- C:\Windows\system32\BTAGService.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\autopilot.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\audiosrv.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\AudioSes.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\audioresourceregistrar.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\AUDIOKSE.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\AudioEng.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2020-05-15 14:31:20 ----A---- C:\Windows\system32\audiodg.exe
2020-05-15 14:31:17 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2020-05-15 14:31:17 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2020-05-15 14:31:17 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2020-05-15 14:31:17 ----A---- C:\Windows\system32\drivers\tpm.sys
2020-05-15 14:31:17 ----A---- C:\Windows\system32\drivers\storufs.sys
2020-05-15 14:31:17 ----A---- C:\Windows\system32\drivers\hidbth.sys
2020-05-04 21:22:44 ----D---- C:\Users\kaPL74\AppData\Roaming\SpinTires MudRunner
2020-05-03 09:28:45 ----SHD---- C:\$RECYCLE.BIN
2020-05-03 09:27:53 ----D---- C:\Windows\Temp
2020-05-03 09:27:53 ----A---- C:\Windows\zoek-delete.exe
2020-05-02 08:36:38 ----A---- C:\Windows\system32\drivers\MbamElam.sys
2020-05-02 08:36:37 ----D---- C:\ProgramData\Malwarebytes
2020-05-02 08:36:37 ----A---- C:\Windows\system32\drivers\mbae64.sys
2020-05-02 08:36:28 ----D---- C:\Program Files\Malwarebytes
2020-05-01 21:10:35 ----D---- C:\Users\kaPL74\AppData\Roaming\Ashampoo
2020-05-01 21:08:14 ----D---- C:\ProgramData\Ashampoo
2020-05-01 21:07:34 ----D---- C:\Program Files (x86)\Ashampoo

======List of files/folders modified in the last 1 month======

2020-05-30 22:26:17 ----D---- C:\Program Files
2020-05-30 22:22:11 ----D---- C:\Windows\Prefetch
2020-05-30 22:19:22 ----D---- C:\Windows\system32\drivers
2020-05-30 22:13:30 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-05-30 21:28:00 ----D---- C:\Windows\system32\sru
2020-05-30 19:22:23 ----D---- C:\Users\kaPL74\AppData\Roaming\vlc
2020-05-30 18:41:02 ----D---- C:\Windows\system32\SleepStudy
2020-05-30 12:25:25 ----D---- C:\ProgramData\NVIDIA
2020-05-30 12:23:57 ----SHD---- C:\System Volume Information
2020-05-30 11:14:02 ----D---- C:\Windows\system32\config
2020-05-30 11:11:51 ----D---- C:\Windows\Logs
2020-05-30 11:11:49 ----D---- C:\Windows\system32\DriverStore
2020-05-30 11:11:49 ----D---- C:\Windows\system32\catroot2
2020-05-30 11:11:48 ----D---- C:\Windows\INF
2020-05-30 11:11:40 ----RD---- C:\Windows\Microsoft.NET
2020-05-30 10:33:14 ----D---- C:\Program Files (x86)\Steam
2020-05-30 10:23:28 ----D---- C:\Windows\System32
2020-05-30 10:23:28 ----A---- C:\Windows\system32\PerfStringBackup.INI
2020-05-30 10:17:28 ----HD---- C:\ProgramData
2020-05-30 10:17:26 ----D---- C:\Windows\SysWOW64
2020-05-30 10:17:24 ----D---- C:\Windows
2020-05-30 09:38:41 ----HD---- C:\Program Files\WindowsApps
2020-05-26 20:30:09 ----SHD---- C:\Windows\Installer
2020-05-26 20:30:09 ----SD---- C:\Users\kaPL74\AppData\Roaming\Microsoft
2020-05-26 20:21:22 ----RD---- C:\Program Files (x86)
2020-05-26 20:05:15 ----D---- C:\Windows\AppReadiness
2020-05-25 19:24:30 ----D---- C:\Windows\system32\LogFiles
2020-05-24 19:24:41 ----D---- C:\Users\kaPL74\AppData\Roaming\dvdcss
2020-05-21 16:36:04 ----RSD---- C:\Windows\assembly
2020-05-20 20:59:55 ----D---- C:\Program Files\Common Files\Adobe
2020-05-20 20:59:53 ----D---- C:\Users\kaPL74\AppData\Roaming\Adobe
2020-05-20 20:59:08 ----D---- C:\ProgramData\Adobe
2020-05-20 20:58:58 ----D---- C:\Program Files\Adobe
2020-05-20 09:20:03 ----D---- C:\Windows\WinSxS
2020-05-18 22:36:10 ----A---- C:\Windows\system32\nvapi64.dll
2020-05-18 22:36:08 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2020-05-16 17:08:39 ----D---- C:\Program Files (x86)\Microsoft Office
2020-05-15 15:07:12 ----D---- C:\Program Files\Mozilla Firefox
2020-05-15 15:06:39 ----D---- C:\Windows\TextInput
2020-05-15 15:06:39 ----D---- C:\Windows\SYSWOW64\migration
2020-05-15 15:06:39 ----D---- C:\Windows\SYSWOW64\Dism
2020-05-15 15:06:39 ----D---- C:\Windows\SYSWOW64\cs-CZ
2020-05-15 15:06:39 ----D---- C:\Windows\SystemResources
2020-05-15 15:06:38 ----SD---- C:\Windows\system32\AppV
2020-05-15 15:06:38 ----D---- C:\Windows\system32\wbem
2020-05-15 15:06:38 ----D---- C:\Windows\system32\oobe
2020-05-15 15:06:38 ----D---- C:\Windows\system32\migration
2020-05-15 15:06:38 ----D---- C:\Windows\system32\en-US
2020-05-15 15:06:38 ----D---- C:\Windows\system32\drivers\UMDF
2020-05-15 15:06:38 ----D---- C:\Windows\system32\drivers\cs-CZ
2020-05-15 15:06:38 ----D---- C:\Windows\system32\Dism
2020-05-15 15:06:38 ----D---- C:\Windows\system32\cs-CZ
2020-05-15 15:06:37 ----RD---- C:\Windows\ImmersiveControlPanel
2020-05-15 15:06:37 ----D---- C:\Windows\ShellExperiences
2020-05-15 15:06:37 ----D---- C:\Windows\Provisioning
2020-05-15 15:06:37 ----D---- C:\Windows\PolicyDefinitions
2020-05-15 15:06:37 ----D---- C:\Windows\bcastdvr
2020-05-15 15:06:37 ----D---- C:\Windows\apppatch
2020-05-15 14:37:35 ----D---- C:\Windows\CbsTemp
2020-05-15 14:37:02 ----D---- C:\Windows\system32\MRT
2020-05-15 14:35:28 ----AC---- C:\Windows\system32\MRT.exe
2020-05-15 14:31:17 ----A---- C:\Windows\SYSWOW64\PrintConfig.dll
2020-05-13 17:31:38 ----HD---- C:\Windows\system32\GroupPolicy
2020-05-13 17:31:38 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2020-05-07 23:59:40 ----D---- C:\Games
2020-05-04 19:02:29 ----D---- C:\Windows\minidump
2020-05-03 19:04:25 ----D---- C:\Windows\system32\Tasks
2020-05-03 09:25:09 ----D---- C:\Program Files (x86)\Common Files
2020-05-03 09:12:07 ----D---- C:\Windows\system32\drivers\etc
2020-05-02 13:05:29 ----D---- C:\Tiskárna EPSON
2020-05-02 08:36:38 ----HD---- C:\Windows\ELAMBKUP
2020-05-02 08:26:48 ----D---- C:\Windows\LiveKernelReports

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2020-03-20 106840]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\Windows\system32\drivers\iorate.sys [2019-03-19 56632]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\Windows\system32\drivers\mssecflt.sys [2020-03-12 254776]
R0 secnvme;secnvme; C:\Windows\System32\drivers\secnvme.sys [2020-01-20 133944]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\Windows\system32\drivers\SgrmAgent.sys [2019-03-19 89096]
R1 afunix;afunix; C:\Windows\system32\drivers\afunix.sys [2020-03-12 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\Windows\system32\drivers\bam.sys [2019-03-19 70456]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2020-04-03 154336]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2020-03-20 188872]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2020-03-20 79520]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2020-03-20 115960]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\Windows\system32\drivers\cldflt.sys [2020-05-15 457216]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2020-03-20 53048]
R2 MBAMChameleon;MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [2020-05-30 214496]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\Windows\system32\drivers\bindflt.sys [2020-02-29 117264]
R3 e1dexpress;@oem27.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\System32\DriverStore\FileRepository\e1d68x64.inf_amd64_b44028fc7fdf4fca\e1d68x64.sys [2019-09-13 599920]
R3 I2cHkBurn;I2cHkBurn; C:\Windows\system32\drivers\I2cHkBurn.sys [2015-07-27 41760]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2019-10-30 6849832]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [2020-05-27 248968]
R3 MEIx64;@oem4.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [2019-04-17 266128]
R3 NVHDA;@oem9.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2019-10-04 237424]
R3 nvlddmkm;nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\nvlddmkm.sys [2020-05-18 23454440]
R3 nvvad_WaveExtensible;@oem14.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2020-02-25 69840]
R3 nvvhci;@oem35.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\Windows\System32\drivers\nvvhci.sys [2020-03-11 67456]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\Windows\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 eelam;eelam; C:\Windows\system32\DRIVERS\eelam.sys [2019-10-16 15800]
S0 cht4iscsi;cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\Windows\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\Windows\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 MbamElam;MbamElam; C:\Windows\system32\DRIVERS\MbamElam.sys [2020-05-02 20936]
S0 megasas2i;megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\Windows\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\Windows\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\Windows\System32\drivers\scmbus.sys [2020-04-17 151352]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\Windows\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\Windows\system32\drivers\Acx01000.sys [2020-03-12 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\Windows\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\Windows\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\Windows\system32\drivers\applockerfltr.sys [2020-01-09 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\Windows\system32\drivers\AppvStrm.sys [2020-02-29 138040]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\Windows\system32\drivers\AppvVemgr.sys [2020-02-29 174392]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\Windows\system32\drivers\AppvVfs.sys [2020-02-29 153912]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\Windows\System32\drivers\BthA2dp.sys [2020-01-09 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2020-03-12 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\Windows\System32\drivers\BTHMINI.sys [2020-03-12 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\drivers\BTHport.sys [2020-03-12 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\Windows\System32\drivers\BTHUSB.sys [2020-03-12 99328]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\Windows\System32\drivers\CAD.sys [2019-03-19 64312]
S3 e1i65x64;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\Windows\System32\drivers\e1i65x64.sys [2019-03-19 553984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2020-01-09 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\Windows\System32\drivers\hidspi.sys [2020-01-09 64000]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\Windows\system32\drivers\hvservice.sys [2020-04-17 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\Windows\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\Windows\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\Windows\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\Windows\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\Windows\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\Windows\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\Windows\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\Windows\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\Windows\system32\drivers\MbbCx.sys [2020-01-09 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\Windows\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\Windows\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\Windows\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2020-04-01 30336]
S3 PktMon;Packet Monitor Driver; C:\Windows\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\Windows\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\Windows\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\Windows\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2020-01-09 986936]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2016-12-21 40240]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\Windows\System32\drivers\rhproxy.sys [2019-03-19 113152]
S3 RTSUER;@oem32.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\Windows\system32\Drivers\RtsUer.sys [2019-04-07 452008]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\Windows\System32\drivers\SDFRd.sys [2019-03-19 33592]
S4 hvcrash;hvcrash; C:\Windows\System32\drivers\hvcrash.sys [2019-03-19 32568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_3e386;CDPUserSvc_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2020-05-07 10612592]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2020-04-03 2358784]
R2 EpsonScanSvc;Epson Scanner Service; C:\Windows\system32\EscSvc64.exe [2018-01-29 145224]
R2 GamingApp_Service;GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [2018-07-04 46264]
R2 GamingHotkey_Service;MSI Gaming Hotkey Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2018-03-22 2027192]
R2 MSI_ActiveX_Service;MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [2018-04-17 83616]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-03-18 850928]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\NVDisplay.Container.exe [2020-05-18 881896]
R2 OneSyncSvc_3e386;OneSyncSvc_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R2 RtkAudioUniversalService;Realtek Audio Universal Service; C:\Windows\System32\RtkAudUService64.exe [2019-10-30 856288]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\Windows\system32\SgrmBroker.exe [2019-03-19 263904]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_3e386;cbdhsvc_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 DevicePickerUserSvc_3e386;DevicePickerUserSvc_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 DevicesFlowUserSvc_3e386;DevicesFlowUserSvc_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Security\ekrn.exe [2020-04-03 2358784]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2020-05-02 6933272]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_3e386;PimIndexMaintenanceSvc_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\Windows\system32\SecurityHealthService.exe [2020-03-12 929144]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S2 SetupARService;SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [2020-02-29 10752]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_3e386;AarSvc_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_3e386;BcastDVRUserService_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_3e386;BluetoothUserService_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_3e386;CaptureService_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_3e386;ConsentUxUserSvc_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\Windows\system32\CredentialEnrollmentManager.exe [2020-05-15 380632]
S3 CredentialEnrollmentManagerUserSvc_3e386;CredentialEnrollmentManagerUserSvc_3e386; C:\Windows\system32\CredentialEnrollmentManager.exe [2020-05-15 380632]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_3e386;DeviceAssociationBrokerSvc_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-03-12 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-03-01 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_3e386;MessagingService_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 ose;Office Source Engine; c:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 215056]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_3e386;PrintWorkflowUserSvc_3e386; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2020-04-17 5930136]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2019-03-19 1264128]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\Windows\system32\AppVClient.exe [2020-02-29 828216]

-----------------EOF-----------------

Re: Prosím o jednu preventivku, Děkuji

Napsal: 30 kvě 2020 22:24
od kodl74
Ještě pro jistotu logy z FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-05-2020 01
Ran by kaPL74 (administrator) on PCKAPL (Gigabyte Technology Co., Ltd. B250M-D3H) (30-05-2020 23:21:12)
Running from C:\Users\kaPL74\Desktop
Loaded Profiles: kaPL74
Platform: Windows 10 Pro Version 1909 18363.836 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\MSI_LED.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIUNE.EXE <2>
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(Winstep Software Technologies) [File not signed] C:\Program Files (x86)\Winstep\WsxService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [185648 2020-04-03] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2109064 2020-04-27] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1319208 2019-05-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\Run: [Nexus] => C:\Program Files (x86)\Winstep\Nexus.exe [17959552 2019-03-01] (Winstep Software Technologies) [File not signed]
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3372832 2020-05-15] (Valve -> Valve Corporation)
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91667312 2020-05-12] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\RunOnce: [Application Restart #1] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\MountPoints2: {68bfee73-6468-11ea-ab15-1c1b0da4b7b8} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [807936 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\EPSON L3150 Series 64MonitorBE: C:\Windows\system32\E_YLMBUNE.DLL [184832 2017-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
Startup: C:\Users\kaPL74\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2020-02-29]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03829E19-FCB5-4D10-9D46-CE9F54957888} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {15CC3FA4-406B-4CE4-AF34-CCE72B0C6961} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1948E78B-B2BB-4FFD-AD9A-9D0026656FB7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {1BE12DD1-69FC-4F0B-88B8-D01AB400111A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772552 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {224F05D7-3AE5-49C1-8BD1-E7CF7A94346C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2B5A553C-00B2-4B15-8282-8DC9A6C9FFB8} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3353784 2018-03-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {2EED02E1-EAB9-4D17-A10F-E0E5CE468330} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124752 2020-05-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {371900C1-E676-4A57-B3CE-009A3F7BE0E5} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3D2CAE0A-B875-48DF-8348-D47DD5AA901F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4357016 2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F2190D9-AE89-4278-A3FB-CFD2B96CB955} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {493B37F1-706D-4E1C-8AE4-24CDD02EDFA0} - System32\Tasks\EPSON L3150 Series Update {BD2837DA-20B0-40AF-A8FE-8F821B310009} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {602EEB25-0630-4CCF-A0DF-2D5450BAF939} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4357016 2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {6F0738B1-5855-4F60-A6D0-D73CD477FC86} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8F6A2669-40BB-4D0F-B464-1FC915B6CC15} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AEB78506-86E7-4488-A9E5-FA196B7F48A7} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4487904 2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
Task: {B5E34146-1E2A-4937-A251-4C5A8EDBB573} - System32\Tasks\EPSON L3150 Series Update {8EB7930A-DB32-4F75-BBF2-B09321E48960} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {C3E61974-CC66-4813-A250-3393186E7540} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124752 2020-05-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD03A155-5B1A-4F49-871D-3E36C2CBDB17} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {F2EA4781-3886-4093-A4F6-195163C3498A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F962887A-1E6A-4631-9FE2-13319DCB1F43} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FA2FBD68-A28A-4F83-9AAD-6BBE526415F6} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\EPSON L3150 Series Update {8EB7930A-DB32-4F75-BBF2-B09321E48960}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE:/EXE:{8EB7930A-DB32-4F75-BBF2-B09321E48960} /F:UpdateWORKGROUP\DESKTOP-B9OGC81$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON L3150 Series Update {BD2837DA-20B0-40AF-A8FE-8F821B310009}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE:/EXE:{BD2837DA-20B0-40AF-A8FE-8F821B310009} /F:UpdateWORKGROUP\DESKTOP-B9OGC81$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{04687598-79ac-424b-a997-68cfe11fc2ae}: [DhcpNameServer] 192.168.100.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3640345311-2590231575-3648685039-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-02-29] (Microsoft Corporation -> Microsoft Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-02-29] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-03] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: suv7x4pj.default
FF ProfilePath: C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\suv7x4pj.default [2020-05-03]
FF Homepage: Mozilla\Firefox\Profiles\suv7x4pj.default -> about:home
FF NewTab: Mozilla\Firefox\Profiles\suv7x4pj.default -> about:newtab
FF Notifications: Mozilla\Firefox\Profiles\suv7x4pj.default -> hxxps://www.slevomat.cz
FF Extension: (Blokátor reklam AdGuard) - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\suv7x4pj.default\Extensions\adguardadblocker@adguard.com.xpi [2020-01-05]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\suv7x4pj.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-01-05]
FF Extension: (To Google Translate) - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\suv7x4pj.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2019-12-07]
FF Extension: (esafox) - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\suv7x4pj.default\Extensions\{b526b65f-3165-4dcc-a534-3474d1de766b}.xpi [2019-05-14]
FF Extension: (Space Fantasy Redux) - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\suv7x4pj.default\Extensions\{f5453979-a039-4066-8aee-cb64fc98f936}.xpi [2019-08-13]
FF ProfilePath: C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\bdftw427.default-release [2020-05-30]
FF Homepage: Mozilla\Firefox\Profiles\bdftw427.default-release -> hxxps://www.seznam.cz/
FF NewTab: Mozilla\Firefox\Profiles\bdftw427.default-release -> about:newtab
FF Notifications: Mozilla\Firefox\Profiles\bdftw427.default-release -> hxxps://www.slevomat.cz
FF Extension: (Blokátor reklam AdGuard) - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\bdftw427.default-release\Extensions\adguardadblocker@adguard.com.xpi [2020-04-11]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\bdftw427.default-release\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-01-05]
FF Extension: (To Google Translate) - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\bdftw427.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2019-12-07]
FF Extension: (esafox) - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\bdftw427.default-release\Extensions\{b526b65f-3165-4dcc-a534-3474d1de766b}.xpi [2019-05-14]
FF Extension: (Space Fantasy Redux) - C:\Users\kaPL74\AppData\Roaming\Mozilla\Firefox\Profiles\bdftw427.default-release\Extensions\{f5453979-a039-4066-8aee-cb64fc98f936}.xpi [2019-08-13]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2020-03-18] [Legacy] [not signed]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-02-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-02-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3640345311-2590231575-3648685039-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-04-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-05-30]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10612592 2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2358784 2020-04-03] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2358784 2020-04-03] (ESET, spol. s r.o. -> ESET)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2018-01-29] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [46264 2018-07-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2027192 2018-03-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-02] (Malwarebytes Inc -> Malwarebytes)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [83616 2018-04-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-04-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2020-02-29] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 Winstep Xtreme Service; C:\Program Files (x86)\Winstep\WsxService.exe [775680 2018-06-06] (Winstep Software Technologies) [File not signed]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [231936 2020-01-09] (Microsoft Corporation) [File not signed]
R3 e1dexpress; C:\Windows\System32\DriverStore\FileRepository\e1d68x64.inf_amd64_b44028fc7fdf4fca\e1d68x64.sys [599920 2019-09-13] (Intel(R) INTELND1820 -> Intel Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [154336 2020-04-03] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [106840 2020-03-20] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15800 2019-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [188872 2020-03-20] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [53048 2020-03-20] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [79520 2020-03-20] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [115960 2020-03-20] (ESET, spol. s r.o. -> ESET)
R3 I2cHkBurn; C:\Windows\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2020-05-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-05-27] (Malwarebytes Inc -> Malwarebytes)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\nvlddmkm.sys [23454440 2020-05-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-04-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2020-02-25] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
R0 secnvme; C:\Windows\System32\drivers\secnvme.sys [133944 2020-01-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-30 23:21 - 2020-05-30 23:21 - 000026301 _____ C:\Users\kaPL74\Desktop\FRST.txt
2020-05-30 23:20 - 2020-05-30 23:21 - 000000000 ____D C:\FRST
2020-05-30 23:19 - 2020-05-30 23:19 - 002289152 _____ (Farbar) C:\Users\kaPL74\Desktop\FRST64.exe
2020-05-30 23:15 - 2020-05-30 23:15 - 000001656 _____ C:\Users\kaPL74\Desktop\AdwCleaner[C01].txt
2020-05-30 22:40 - 2020-05-30 22:40 - 000050688 _____ (Atribune.org) C:\Users\kaPL74\Desktop\ATF-Cleaner.exe
2020-05-30 22:34 - 2020-05-30 22:34 - 000000000 ____D C:\AdwCleaner
2020-05-30 22:33 - 2020-05-30 22:33 - 008402608 _____ (Malwarebytes) C:\Users\kaPL74\Desktop\AdwCleaner.exe
2020-05-30 22:26 - 2020-05-30 22:26 - 000000000 ____D C:\rsit
2020-05-30 22:26 - 2020-05-30 22:26 - 000000000 ____D C:\Program Files\trend micro
2020-05-30 22:25 - 2020-05-30 22:25 - 001222144 _____ C:\Users\kaPL74\Desktop\RSITx64.exe
2020-05-30 22:19 - 2020-05-30 22:22 - 000000000 ____D C:\Users\kaPL74\AppData\LocalLow\IGDump
2020-05-30 18:48 - 2020-05-30 18:52 - 1319258918 _____ C:\Users\kaPL74\Desktop\Na nože (2019) 1080p cz dab.mkv
2020-05-30 10:16 - 2020-05-30 10:16 - 000000000 ____D C:\Windows\LastGood.Tmp
2020-05-30 10:12 - 2020-05-18 22:44 - 001729232 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-05-30 10:12 - 2020-05-18 22:44 - 001729232 _____ C:\Windows\system32\vulkaninfo.exe
2020-05-30 10:12 - 2020-05-18 22:44 - 001329360 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-05-30 10:12 - 2020-05-18 22:44 - 001329360 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-05-30 10:12 - 2020-05-18 22:44 - 001079000 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-05-30 10:12 - 2020-05-18 22:44 - 001079000 _____ C:\Windows\system32\vulkan-1.dll
2020-05-30 10:12 - 2020-05-18 22:44 - 000937680 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-05-30 10:12 - 2020-05-18 22:44 - 000937680 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-05-30 10:12 - 2020-05-18 22:44 - 000451480 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-05-30 10:12 - 2020-05-18 22:44 - 000348048 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-05-30 10:12 - 2020-05-18 22:41 - 011944864 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2020-05-30 10:12 - 2020-05-18 22:41 - 010286480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-05-30 10:12 - 2020-05-18 22:40 - 001005968 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2020-05-30 10:12 - 2020-05-18 22:40 - 000816872 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2020-05-30 10:12 - 2020-05-18 22:40 - 000676240 _____ C:\Windows\system32\nvofapi64.dll
2020-05-30 10:12 - 2020-05-18 22:40 - 000543136 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-05-30 10:12 - 2020-05-18 22:39 - 002073008 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-05-30 10:12 - 2020-05-18 22:39 - 001566104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-05-30 10:12 - 2020-05-18 22:39 - 001482144 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-05-30 10:12 - 2020-05-18 22:39 - 001350576 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2020-05-30 10:12 - 2020-05-18 22:39 - 001142008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-05-30 10:12 - 2020-05-18 22:39 - 001048488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-05-30 10:12 - 2020-05-18 22:39 - 000680864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-05-30 10:12 - 2020-05-18 22:39 - 000561400 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2020-05-30 10:12 - 2020-05-18 22:39 - 000546728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-05-30 10:12 - 2020-05-18 22:38 - 005856664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-05-30 10:12 - 2020-05-18 22:38 - 000811256 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-05-30 10:12 - 2020-05-18 22:38 - 000655080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2020-05-30 10:12 - 2020-05-18 22:38 - 000444816 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2020-05-30 10:12 - 2020-05-18 22:37 - 017600240 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-05-30 10:12 - 2020-05-18 22:37 - 015157992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-05-30 10:12 - 2020-05-18 22:37 - 005159312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-05-30 10:12 - 2020-05-18 22:37 - 000849824 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2020-05-30 10:12 - 2020-05-16 09:07 - 000077294 _____ C:\Windows\system32\nvinfo.pb
2020-05-30 09:38 - 2020-05-30 09:38 - 000000000 ____D C:\Program Files\UNP
2020-05-27 18:09 - 2020-05-30 22:19 - 000214496 ____N (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-05-27 18:09 - 2020-05-27 18:09 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-05-26 20:23 - 2020-05-30 23:11 - 000000000 ____D C:\Users\kaPL74\AppData\Roaming\uTorrent
2020-05-26 20:23 - 2020-05-26 20:23 - 000000000 ____D C:\Users\kaPL74\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2020-05-25 19:26 - 2020-05-09 17:44 - 000055151 _____ C:\Users\kaPL74\Desktop\Informace o splatnosti k pojistné smlouvě č 4480912754.pdf
2020-05-24 14:31 - 2020-05-24 14:40 - 558585588 _____ C:\Users\kaPL74\Desktop\96 hodin 3-Zúčtování.mkv
2020-05-20 20:59 - 2020-05-20 20:59 - 000001024 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2020-05-20 07:51 - 2020-05-20 07:51 - 000000000 ____D C:\Users\kaPL74\AppData\Local\Deployment
2020-05-20 07:51 - 2020-05-20 07:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2020-05-20 07:50 - 2020-05-20 07:50 - 000000000 ____D C:\Program Files\Logitech
2020-05-20 07:40 - 2020-05-20 07:40 - 000000000 ____D C:\Users\kaPL74\AppData\Roaming\Skype
2020-05-15 14:31 - 2020-05-15 14:31 - 025902080 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 025444864 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 022638592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 019851264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 019812352 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 018029056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 017791488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 014819328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 009929528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 009339392 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 008013824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 007902912 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 007822888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 007756800 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 007604584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 007297536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 007267840 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 007257816 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 007011840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 006710272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 006525936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 006435328 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 006291456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 006232568 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 006168576 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 006082808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 005945856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 005911040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 005757872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 005340568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 005280192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 005111296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 005098352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 004858368 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 004624880 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 004612608 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 004565456 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 004012032 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 004005376 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 003986944 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 003974376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 003822080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 003807232 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 003747328 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 003727360 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 003711488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 003655680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 003581752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 003513856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 003371416 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 003109376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 003084800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002986808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 002854400 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002798592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 002774088 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002769000 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002760704 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-05-15 14:31 - 2020-05-15 14:31 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-05-15 14:31 - 2020-05-15 14:31 - 002736640 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002717184 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 002584008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002576896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002504440 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002465792 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002448712 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002354688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002289152 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002284032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002259664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002256384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002235008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002190648 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002157056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002150232 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002147328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002087168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002073176 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 002060800 _____ (Microsoft Corporation) C:\Windows\system32\cdprt.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001999968 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001990576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001975808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001952872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001945600 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001943040 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001934824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001885184 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001856000 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001835128 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001835008 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001825280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001819648 _____ (Microsoft Corporation) C:\Windows\system32\CoreShell.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001786880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001766400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001751040 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001745208 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001737216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001722880 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001719336 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001686016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001665720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001656904 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001654952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001646552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001637888 _____ (Microsoft Corporation) C:\Windows\system32\TaskFlowDataEngine.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001637376 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001616912 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001581056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Perception.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001559040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001556200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001540096 _____ (Microsoft Corporation) C:\Windows\system32\WindowManagement.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001539072 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 001536512 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001525760 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001510912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001507328 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001505592 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001500672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001498624 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001497416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001492480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001486336 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 001477112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001466368 _____ (Microsoft Corporation) C:\Windows\system32\rdpsharercom.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001461760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001428480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001417760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001413712 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001406464 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001397560 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 001393960 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001393664 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001391104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001386296 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001385176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001382400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001375232 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001373184 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001370112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001357312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001346048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001344000 _____ (Microsoft Corporation) C:\Windows\system32\HoloSI.PCShell.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001343488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001336832 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001336320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001333248 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001319936 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001306424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001306112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001288648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001284096 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001282560 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001274128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryPS.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001270784 _____ (Microsoft Corporation) C:\Windows\system32\SEMgrSvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001264640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001263616 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSave.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001260032 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001245696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001222656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001218560 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001214264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001213440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001195008 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001184256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001182208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001180672 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001178608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001158144 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001154656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001151824 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001150784 _____ (Microsoft Corporation) C:\Windows\system32\InputHost.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001149712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 001132544 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001125376 _____ (Microsoft Corporation) C:\Windows\system32\CBDHSvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001121280 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001107456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001099600 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001098752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001098240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Signals.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001092096 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001085752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Services.TargetedContent.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001081856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001077048 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 001072128 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001071616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001068032 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001059328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001053696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001048480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001047568 _____ (Microsoft Corporation) C:\Windows\system32\AppVPolicy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001034752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001027816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Perception.Stub.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001023128 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001011712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001007928 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001007104 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 001005056 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000999616 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000994304 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000979264 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000975360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000959800 _____ (Microsoft Corporation) C:\Windows\system32\AppVManifest.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000957056 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000949760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Ocr.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000945192 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000944640 _____ (Microsoft Corporation) C:\Windows\system32\assignedaccessmanagersvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000943640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000943616 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000938496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000925184 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000921600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000916768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000915456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000915192 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000911872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000902656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000901120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000896000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000895080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000894016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000891544 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000891392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000888352 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000881664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000879064 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000874296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000866304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000863232 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000861696 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000859944 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000858112 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000858112 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000854528 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000852992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000847872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000847168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000843776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000843576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000841216 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000827192 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000826880 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000824832 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000822272 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000822208 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000819696 _____ (Microsoft Corporation) C:\Windows\system32\windows.applicationmodel.datatransfer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000819200 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000816952 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000814080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000813568 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000809984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000801832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000796904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000793088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000792808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputHost.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000783480 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000782336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000781312 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000778552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Services.TargetedContent.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000777840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000777216 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000776792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000768000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000759808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000752584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000748544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000747832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000743224 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000742200 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000738304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000736768 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000729600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000716800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000716312 _____ (Microsoft Corporation) C:\Windows\system32\StateRepository.Core.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000710656 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000706544 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000705536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsreg.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000693672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000691712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000685368 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000683848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000683288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000679424 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000676072 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000673456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000673296 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000672944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000668672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000666424 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000661816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000655360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000652800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000650240 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000649728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000649016 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000647168 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000643584 _____ (Microsoft Corporation) C:\Windows\system32\AssignedAccessManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000639400 _____ (Microsoft Corporation) C:\Windows\system32\msvcp_win.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000638464 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000637480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000636416 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000634680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2020-05-15 14:31 - 2020-05-15 14:31 - 000629760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000628024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000622592 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000621568 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000618496 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000614400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000614400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000613888 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000604160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000602224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000600064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Payments.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000594472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000592944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000589384 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000584704 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000581544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000580608 _____ (Microsoft Corporation) C:\Windows\system32\ddraw.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000573952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000572200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryPS.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000569856 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000568136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000565248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000564480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StateRepository.Core.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000557056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000553664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000547992 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000544256 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000543824 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000540200 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000540160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000539184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000535552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000534528 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.UserService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000530944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddraw.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000526848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000526336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000524208 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000519680 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000518456 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000513024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Activities.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000513024 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000512512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000509952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000506368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.PredictionUnit.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000502784 _____ C:\Windows\system32\AssignedAccessCsp.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000502272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000501200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp_win.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000500736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000500224 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000494904 _____ (Microsoft Corporation) C:\Windows\system32\TransportDSA.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000484352 _____ (Microsoft Corporation) C:\Windows\system32\MixedReality.Broker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000479744 _____ (Microsoft Corporation) C:\Windows\system32\BcastDVRClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000477696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000477496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-05-15 14:31 - 2020-05-15 14:31 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountWAMExtension.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000474112 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000473600 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000470016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000467952 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000466944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000466344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000460200 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000453944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000453632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000452608 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000451584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000448512 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\PhoneOm.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000441856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000441584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000441144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000437248 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000435712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000434176 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\AccountsRt.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000430592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000418816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000415808 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000410608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000408576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\TaskApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000408064 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000406480 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000405424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Payments.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000400696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000399672 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DataModel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000396800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000396088 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000394240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Preview.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000390968 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000386320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000380632 _____ (Microsoft Corporation) C:\Windows\system32\CredentialEnrollmentManager.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000375520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000374272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Diagnostics.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000372224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\PickerPlatform.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Geolocation.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000353792 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000353280 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AccountsRt.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000345016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneOm.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000339824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000338432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000335360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000334336 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Cortana.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000333312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000333128 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000330240 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000325432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000324608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000318680 _____ (Microsoft Corporation) C:\Windows\system32\ExecModelClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000317440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000312832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\sppcommdlg.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000311096 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000310928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Devices.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000306688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.CredDialogController.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000301064 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000299064 _____ (Microsoft Corporation) C:\Windows\system32\SIHClient.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TaskApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000293888 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Diagnostics.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000292864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000292864 _____ (Microsoft Corporation) C:\Windows\system32\CXHProvisioningServer.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000290304 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Preview.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000283648 _____ (Microsoft Corporation) C:\Windows\system32\ComposerFramework.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000278080 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000273744 _____ (Microsoft Corporation) C:\Windows\system32\wkspbroker.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000273208 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostUser.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PickerPlatform.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000270336 _____ (Microsoft Corporation) C:\Windows\system32\DesktopSwitcherDataModel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000268008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000266552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SystemSettings.DataModel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000262848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000260328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000259384 _____ (Microsoft Corporation) C:\Windows\system32\AppVFileSystemMetadata.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConsoleLogon.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000251392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000250696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000248832 _____ (Microsoft Corporation) C:\Windows\system32\PasswordEnrollmentManager.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000247856 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000246584 _____ (Microsoft Corporation) C:\Windows\system32\DataExchangeHost.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000245336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExecModelClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000244736 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000242688 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000240128 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000238904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Workplace.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Devices.Sensors.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\tapi32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000231912 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000231424 _____ (Microsoft Corporation) C:\Windows\system32\HoloShellRuntime.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000231224 _____ (Microsoft Corporation) C:\Windows\system32\AppVShNotify.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000230416 _____ (Microsoft Corporation) C:\Windows\system32\AppVStreamMap.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\RdpRelayTransport.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-05-15 14:31 - 2020-05-15 14:31 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000222720 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000222208 _____ (Microsoft Corporation) C:\Windows\system32\DataExchange.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000221496 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\MtcModel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000220160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\tspubwmi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\DiagSvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000211256 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000209208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryUpgrade.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000208384 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\useractivitybroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\SwitcherDataModel.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000202552 _____ (Microsoft Corporation) C:\Windows\system32\AppVStreamingUX.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000199992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000197432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000193592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000188928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000188416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000188416 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Haptics.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2020-05-15 14:31 - 2020-05-15 14:31 - 000185952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000184832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Energy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DataExchange.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000182784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000181760 _____ (Microsoft Corporation) C:\Windows\system32\rdpinput.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000181560 _____ (Microsoft Corporation) C:\Windows\system32\AppVDllSurrogate.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Compression.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Clipboard.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\AppExtension.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000177664 _____ (Microsoft Corporation) C:\Windows\system32\ConsentUxClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000176440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Management.Workplace.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000172856 _____ (Microsoft Corporation) C:\Windows\system32\AppVNice.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\HoloShellRuntime.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dialclient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.CapturePicker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000166912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000165176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcui.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Devices.Sensors.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Core.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000152416 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\useractivitybroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\VoipRT.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000150528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000147968 _____ (Microsoft Corporation) C:\Windows\system32\Family.Client.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000147776 _____ (Microsoft Corporation) C:\Windows\system32\aadWamExtension.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000144896 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\easwrt.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000142760 _____ (Microsoft Corporation) C:\Windows\system32\LicensingUI.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\socialapis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Energy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000139952 _____ (Microsoft Corporation) C:\Windows\system32\MixedRealityRuntime.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\TelephonyInteractiveUser.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000136704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.RetailInfo.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Compression.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Haptics.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000133632 _____ (Microsoft Corporation) C:\Windows\system32\appvetwclientres.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000133120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppExtension.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000132712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000132096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Storage.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingExperienceMEM.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\CredDialogBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\UtcDecoderHost.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\CameraCaptureUI.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000128000 _____ (Microsoft Corporation) C:\Windows\system32\CaptureService.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000126976 _____ (Microsoft Corporation) C:\Windows\system32\wkspbrokerAx.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000124504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gamingtcui.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000121344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\PeopleAPIs.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000117048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadWamExtension.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\WaaSAssessment.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VoipRT.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000109056 _____ C:\Windows\system32\RDVGHelper.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\socialapis.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000107616 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AI.MachineLearning.Preview.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\BcastDVRBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000105840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MixedRealityRuntime.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000104248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000102216 _____ (Microsoft Corporation) C:\Windows\system32\changepk.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\Family.Authentication.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticInvoker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.RetailInfo.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000099104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkspbrokerAx.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\winsrvext.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraCaptureUI.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000090936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Printers.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000089912 _____ (Microsoft Corporation) C:\Windows\system32\DeviceReactivation.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000089328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AI.MachineLearning.Preview.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000088352 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000088280 _____ (Microsoft Corporation) C:\Windows\system32\coloradapterclient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\rdpsign.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeopleAPIs.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\mbussdapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRBroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\TSSessionUX.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DiagnosticInvoker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000073024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\ffbroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000069704 _____ (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbussdapi.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000068408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceReactivation.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Printers.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000066832 _____ (Microsoft Corporation) C:\Windows\system32\iumcrypt.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\coloradapterclient.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\printui.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\ConfigureExpandedStorage.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000060432 _____ (Microsoft Corporation) C:\Windows\system32\CloudNotifications.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\AssignedAccessRuntime.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000059192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000058880 _____ C:\Windows\system32\runexehelper.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000058696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ffbroker.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ConfigureExpandedStorage.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\ddrawex.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AssignedAccessRuntime.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000047000 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\RdpSa.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryCore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.Common.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\UpgradeResultsUI.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddrawex.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSa.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000037688 _____ (Microsoft Corporation) C:\Windows\system32\SyncAppvPublishingServer.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSaveTask.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryCore.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\KNetPwrDepBroker.sys
2020-05-15 14:31 - 2020-05-15 14:31 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\RdpSaProxy.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdpSaProxy.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\dsregtask.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000022032 _____ (Microsoft Corporation) C:\Windows\system32\ScriptRunner.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slcext.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsregtask.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\localui.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\appvetwstreamingux.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2020-05-15 14:31 - 2020-05-15 14:31 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2020-05-15 14:31 - 2020-05-15 14:31 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-05-13 17:31 - 2020-05-15 12:17 - 000000412 __RSH C:\ProgramData\ntuser.pol
2020-05-07 22:58 - 2020-05-20 12:25 - 000000000 ____D C:\Users\kaPL74\Documents\My Games
2020-05-07 22:58 - 2020-05-07 22:58 - 000000000 ____D C:\Users\Public\Documents\Epic
2020-05-07 22:58 - 2020-05-07 22:58 - 000000000 ____D C:\Users\kaPL74\AppData\Local\Saber
2020-05-04 21:22 - 2020-05-06 18:05 - 000000000 ____D C:\Users\kaPL74\AppData\Roaming\SpinTires MudRunner
2020-05-04 21:22 - 2020-05-04 21:22 - 000000000 ____D C:\Users\Public\Documents\Steam
2020-05-03 19:28 - 2020-05-03 19:28 - 000000000 ____D C:\Users\kaPL74\AppData\Local\PeerDistRepub
2020-05-03 19:04 - 2020-05-03 19:04 - 000000000 ____D C:\Windows\system32\Tasks\S-1-5-21-3640345311-2590231575-3648685039-1001
2020-05-03 09:27 - 2014-02-13 23:59 - 000024064 _____ C:\Windows\zoek-delete.exe
2020-05-02 08:36 - 2020-05-02 08:36 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-05-02 08:36 - 2020-05-02 08:36 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2020-05-02 08:36 - 2020-05-02 08:36 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-05-02 08:36 - 2020-05-02 08:36 - 000000000 ____D C:\Users\kaPL74\AppData\Local\mbamtray
2020-05-02 08:36 - 2020-05-02 08:36 - 000000000 ____D C:\Users\kaPL74\AppData\Local\mbam
2020-05-02 08:36 - 2020-05-02 08:36 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-05-02 08:36 - 2020-05-02 08:36 - 000000000 ____D C:\Program Files\Malwarebytes
2020-05-01 21:15 - 2020-05-01 21:15 - 000000000 ____D C:\Users\kaPL74\Documents\Ashampoo Burning Studio 21
2020-05-01 21:10 - 2020-05-01 21:10 - 000000000 ____D C:\Users\kaPL74\AppData\Roaming\Ashampoo
2020-05-01 21:08 - 2020-05-01 21:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2020-05-01 21:08 - 2020-05-01 21:08 - 000000000 ____D C:\ProgramData\Ashampoo
2020-05-01 21:07 - 2020-05-01 21:07 - 000000000 ____D C:\Program Files (x86)\Ashampoo

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-30 23:21 - 2020-02-29 20:58 - 000000000 ____D C:\Users\Public\Documents\Winstep
2020-05-30 23:21 - 2020-02-29 19:31 - 000000000 ____D C:\Users\kaPL74\AppData\LocalLow\Mozilla
2020-05-30 23:20 - 2020-02-29 18:58 - 001694640 _____ C:\Windows\system32\PerfStringBackup.INI
2020-05-30 23:20 - 2019-03-19 13:57 - 000717182 _____ C:\Windows\system32\perfh005.dat
2020-05-30 23:20 - 2019-03-19 13:57 - 000145262 _____ C:\Windows\system32\perfc005.dat
2020-05-30 23:20 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF
2020-05-30 23:16 - 2020-03-08 21:47 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-30 23:14 - 2020-02-29 18:58 - 000017609 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-05-30 23:14 - 2020-02-29 18:58 - 000011779 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-05-30 23:14 - 2020-02-29 18:58 - 000008675 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-05-30 23:14 - 2020-02-29 18:49 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-30 23:14 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-30 23:14 - 2019-03-19 06:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-05-30 23:13 - 2020-02-29 19:16 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-05-30 23:01 - 2020-02-29 21:05 - 000000000 ____D C:\Users\kaPL74\AppData\Roaming\vlc
2020-05-30 22:26 - 2020-02-29 21:33 - 000000000 ____D C:\Users\kaPL74\AppData\Local\CrashDumps
2020-05-30 18:41 - 2020-02-29 18:49 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-05-30 11:06 - 2020-02-29 23:49 - 000000000 ____D C:\Users\kaPL74\Documents\Euro Truck Simulator 2
2020-05-30 10:33 - 2020-02-29 23:17 - 000000000 ____D C:\Program Files (x86)\Steam
2020-05-30 10:16 - 2020-03-06 01:17 - 000020248 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
2020-05-30 09:38 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-30 09:38 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\AppReadiness
2020-05-27 22:05 - 2020-03-04 23:32 - 000013974 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-05-26 23:08 - 2020-03-03 10:42 - 000013593 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-05-26 16:23 - 2020-02-29 23:35 - 000000000 ____D C:\Users\kaPL74\Documents\American Truck Simulator
2020-05-25 20:35 - 2020-02-29 18:59 - 000014292 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-05-24 19:26 - 2020-03-01 11:58 - 000000000 ____D C:\Users\kaPL74\Documents\ConvertXToDVD
2020-05-24 19:24 - 2020-04-13 17:19 - 000000000 ____D C:\Users\kaPL74\AppData\Roaming\dvdcss
2020-05-24 13:40 - 2020-02-29 18:59 - 000000000 ____D C:\Users\kaPL74\AppData\Local\Packages
2020-05-21 20:29 - 2020-03-06 13:11 - 000013982 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
2020-05-20 20:59 - 2020-02-29 23:10 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-05-20 20:59 - 2020-02-29 23:09 - 000000000 ____D C:\ProgramData\Adobe
2020-05-20 20:59 - 2020-02-29 18:59 - 000000000 ____D C:\Users\kaPL74\AppData\Roaming\Adobe
2020-05-20 20:58 - 2020-03-01 01:22 - 000000000 ____D C:\Program Files\Adobe
2020-05-20 20:58 - 2020-02-29 23:10 - 000000000 ____D C:\Users\kaPL74\AppData\Local\D3DSCache
2020-05-20 07:40 - 2020-02-29 23:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-05-18 22:36 - 2020-03-25 11:27 - 004195672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-05-18 22:36 - 2020-03-08 21:44 - 004928256 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2020-05-16 17:08 - 2020-02-29 20:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-05-15 15:08 - 2020-02-29 18:59 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-05-15 15:08 - 2020-02-29 18:59 - 000000000 ___RD C:\Users\kaPL74\3D Objects
2020-05-15 15:07 - 2020-02-29 19:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-05-15 15:07 - 2020-02-29 18:49 - 000446208 _____ C:\Windows\system32\FNTCACHE.DAT
2020-05-15 15:06 - 2019-03-19 13:59 - 000000000 ___SD C:\Windows\system32\AppV
2020-05-15 15:06 - 2019-03-19 06:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-05-15 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\TextInput
2020-05-15 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-05-15 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SystemResources
2020-05-15 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\oobe
2020-05-15 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\Dism
2020-05-15 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-05-15 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\Provisioning
2020-05-15 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-05-15 15:06 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\bcastdvr
2020-05-15 14:37 - 2020-02-29 21:12 - 000000000 ____D C:\Windows\system32\MRT
2020-05-15 14:37 - 2019-03-19 06:37 - 000000000 ____D C:\Windows\CbsTemp
2020-05-15 14:35 - 2020-02-29 21:12 - 120636720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-05-15 14:31 - 2020-02-29 18:55 - 002874880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-05-13 19:07 - 2020-03-30 22:16 - 000013985 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
2020-05-13 17:31 - 2019-03-19 06:52 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2020-05-13 17:31 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2020-05-12 10:51 - 2020-03-30 13:25 - 000013593 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
2020-05-11 22:58 - 2020-03-29 21:03 - 000013982 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2020-05-10 22:08 - 2020-03-06 21:48 - 000011786 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1
2020-05-08 11:14 - 2020-02-29 19:17 - 000000000 ____D C:\Users\kaPL74\AppData\Local\NVIDIA
2020-05-07 23:59 - 2020-04-09 16:11 - 000000000 ____D C:\Games
2020-05-04 19:02 - 2020-02-29 18:54 - 000000000 ____D C:\Windows\minidump
2020-05-02 13:05 - 2020-03-01 11:15 - 000000000 ____D C:\Tiskárna EPSON
2020-05-02 08:39 - 2020-02-29 19:05 - 000000000 ____D C:\Users\kaPL74\AppData\Local\Comms
2020-05-02 08:38 - 2020-02-29 18:59 - 000000000 ____D C:\Users\kaPL74\AppData\Local\VirtualStore
2020-05-02 08:36 - 2019-03-19 06:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-05-02 08:26 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\LiveKernelReports

==================== Files in the root of some directories ========

2020-03-01 11:59 - 2020-03-01 11:59 - 000099384 _____ () C:\Users\kaPL74\AppData\Roaming\inst.exe
2020-03-01 11:59 - 2020-03-01 11:59 - 000007859 _____ () C:\Users\kaPL74\AppData\Roaming\pcouffin.cat
2020-03-01 11:59 - 2020-03-01 11:59 - 000001167 _____ () C:\Users\kaPL74\AppData\Roaming\pcouffin.inf
2020-03-01 11:59 - 2020-03-01 11:59 - 000082816 _____ (VSO Software) C:\Users\kaPL74\AppData\Roaming\pcouffin.sys

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Prosím o jednu preventivku, Děkuji

Napsal: 30 kvě 2020 22:24
od kodl74
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-05-2020 01
Ran by kaPL74 (30-05-2020 23:21:53)
Running from C:\Users\kaPL74\Desktop
Windows 10 Pro Version 1909 18363.836 (X64) (2020-02-29 16:54:14)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3640345311-2590231575-3648685039-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3640345311-2590231575-3648685039-503 - Limited - Disabled)
Guest (S-1-5-21-3640345311-2590231575-3648685039-501 - Limited - Disabled)
kaPL74 (S-1-5-21-3640345311-2590231575-3648685039-1001 - Administrator - Enabled) => C:\Users\kaPL74
WDAGUtilityAccount (S-1-5-21-3640345311-2590231575-3648685039-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_1_3) (Version: 21.1.3 - Adobe Inc.)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
All Elemental Set (Splash + Fire + Explosion) version 9.1 (HKLM-x32\...\{7E4DD524-E3CC-42A4-87C4-BC6A4CCF4EAB}_is1) (Version: 9.1 - ask4pc)
Ashampoo Burning Studio 21 (HKLM-x32\...\{91B33C97-3390-FD9A-8E0F-3F6BA7865E46}_is1) (Version: 21.6.0 - Ashampoo GmbH & Co. KG)
Creepy Hallow Pack version 9.1 (HKLM-x32\...\{AFA9DCE6-12A6-4025-B818-B60277A41C67}_is1) (Version: 9.1 - ask4pc)
DIY Set version 9.1 (HKLM-x32\...\{7E37B885-1632-4490-8D82-EA9CD6BB7145}_is1) (Version: 9.1 - ask4pc)
Easy Photo Scan (HKLM-x32\...\{9E3F2EC3-7E4F-4F20-A56F-7A24D6E3D39B}) (Version: 1.00.0017 - Seiko Epson Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{7E0261C4-8495-4365-BE48-647701D8B9BD}) (Version: 2.8.3.0 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{49048EBF-3803-4AA4-8943-675E6E8D5B30}) (Version: 3.11.0030 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
Epson Photo+ (HKLM-x32\...\{5874C85E-A911-4A7E-8643-DB2C4322CBBF}) (Version: 3.1.0.0 - Seiko Epson Corporation)
Epson Printer Connection Checker (HKLM-x32\...\{FFA5C174-DB3F-4AFE-B59D-C0FB1744CD76}) (Version: 3.1.0.0 - Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
EPSON Scan PDF EXtensions (HKLM-x32\...\{F9956472-6E16-4F83-BF9A-F887EF4A45B7}) (Version: 1.03.02 - SEIKO EPSON Corp.)
Epson ScanSmart (HKLM-x32\...\{7565F1C6-8DDF-4057-9152-2281A66F4BD3}) (Version: 3.4.1 - Seiko Epson Corporation)
ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 13.1.21.0 - ESET, spol. s r.o.)
Galaxy Adventure Set version 9.1 (HKLM-x32\...\{1B5139EF-8CA2-46C1-A13B-67ACC703A395}_is1) (Version: 9.1 - ask4pc)
Chinese Calligraphy Pack version 9.1 (HKLM-x32\...\{CE274064-4D1B-4202-8E1B-C5C7AB403A09}_is1) (Version: 9.1 - ask4pc)
Chinese New Year Pack version 9.1 (HKLM-x32\...\{74F5288B-6C9C-4AA7-81E5-F212B9C24A3F}_is1) (Version: 9.1 - ask4pc)
Japanese TV Opener Pack version 9.1 (HKLM-x32\...\{744A7BB2-5576-4CE0-A640-931710A190CE}_is1) (Version: 9.1 - ask4pc)
Logitech Options (HKLM\...\LogiOptions) (Version: 8.20.329 - Logitech)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 76.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 76.0.1 (x64 cs)) (Version: 76.0.1 - Mozilla)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.76 - MSI)
Musical Fantasy Set version 9.1 (HKLM-x32\...\{EE2E163D-830E-4692-877A-81DE7AF9875A}_is1) (Version: 9.1 - ask4pc)
Neon Set version 9.1 (HKLM-x32\...\{4FA648C0-8941-46DA-A963-B95618512532}_is1) (Version: 9.1 - ask4pc)
Nexus (HKLM-x32\...\Winstep Xtreme_is1) (Version: - )
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 446.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 446.14 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Odinstalace tiskárny EPSON L3150 Series (HKLM\...\EPSON L3150 Series) (Version: - Seiko Epson Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.317.1 - Tracker Software Products Ltd)
Příručky společnosti EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.56.1.0 - Seiko Epson Corporation)
Revo Uninstaller Pro 3.2.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.2.1 - VS Revo Group, Ltd.)
Samsung NVM Express Driver (HKLM-x32\...\{ff94c273-58d5-40b5-b03a-9bd41d5cff1e}) (Version: 3.3.0.2003 - Samsung Electronics)
Samsung NVM Express Driver 3.3.0.2003 (HKLM\...\{89D55DD5-FE94-497B-B5E5-91915D52DBF2}) (Version: 3.3.0.2003 - Samsung Electronics Co., Ltd) Hidden
Simple Media Pack version 9.1 (HKLM-x32\...\{558FE06B-DF03-411F-9B1F-7C63EBAC6319}_is1) (Version: 9.1 - ask4pc)
Skype verze 8.60 (HKLM-x32\...\Skype_is1) (Version: 8.60 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Super Comics Set version 9.1 (HKLM-x32\...\{56291CF6-557E-459F-8A05-AF464ED3AE39}_is1) (Version: 9.1 - ask4pc)
Unicorn Set version 9.1 (HKLM-x32\...\{011964A4-C3B6-4196-9F73-46AE94CA2BCF}_is1) (Version: 9.1 - ask4pc)
Urban Style Set version 9.1 (HKLM-x32\...\{EB833445-184D-417D-B79F-8429F8950279}_is1) (Version: 9.1 - ask4pc)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.56 - VSO Software)
Wargaming.net Game Center (HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\Wargaming.net Game Center) (Version: 20.1.1.9717 - Wargaming.net)
WinRAR Winrar v.5.80 Final - 11.12.2019 (HKLM-x32\...\WinRAR Winrar v.5.80 Final - 11.12.2019) (Version: Winrar v.5.80 Final - 11.12.2019 - Libbi)
Wondershare Filmora9(Build 9.3.6) (HKLM\...\Wondershare Filmora9_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
World of Tanks EU (HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-29] (Microsoft Corporation) [MS Ad]
Microsoft Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.39.21431.0_x64__8wekyb3d8bbwe [2020-05-30] (Microsoft Corporation)
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2020-03-08] (NVIDIA Corp.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\kaPL74\AppData\Local\Microsoft\OneDrive\19.232.1124.0008_1\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\kaPL74\AppData\Local\Microsoft\OneDrive\19.232.1124.0008_1\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\kaPL74\AppData\Local\Microsoft\OneDrive\19.232.1124.0008_1\amd64\FileSyncShell64.dll => No File
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-04-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-04-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-02] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\nvshext.dll [2020-05-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-04-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-02] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-02-29 23:17 - 2020-05-12 18:39 - 001899520 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2020-02-29 23:17 - 2020-05-12 18:39 - 000115712 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
2020-02-29 23:17 - 2020-05-12 18:39 - 006668800 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2020-04-01 10:34 - 2017-08-02 14:48 - 000237568 _____ () [File not signed] C:\Program Files (x86)\MSI\Gaming APP\LEDControl.dll
2020-04-01 10:34 - 2015-06-23 16:41 - 000082432 _____ (Fintek) [File not signed] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll
2020-04-01 10:34 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\Gaming APP\Lib\SDKDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2020-05-03 09:12 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\Control Panel\Desktop\\Wallpaper -> c:\users\kapl74\appdata\roaming\microsoft\windows photo viewer\tapeta programu windows prohlížeč fotografií.jpg
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "EEventManager"
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001\...\StartupApproved\Run: => "CCXProcess"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{047C5850-B00E-4B3B-91C7-4F3947BC516E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E42AF226-75AE-4047-8B9E-430FD642AE8F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{44905040-817F-4303-BF23-27F28C78F798}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C0EAB2B5-272D-481D-87BC-E6F4D88BF43A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8D9C423E-4690-426D-A043-2572FB08E48C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{91C71BB2-0159-465F-ACCE-610835CDBC98}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{792FDF47-5350-4D52-8CAE-4521924497EA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{FE34723E-2B6D-4FFC-B3AE-B250CEBECB60}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B4B4FC33-2AD5-442C-8083-B74880E57049}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{17FFFC6A-917A-44F4-A8B5-81900BE80486}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{3F90DC5F-93C2-4BD3-944A-02921D9CD710}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{94A278DA-F922-45C5-93C1-97481553ED7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{8502FE09-C3C3-48B2-8614-1F77E1F45C03}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{88E16755-3D9B-41FD-B3B8-2D85A857C763}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{D9A94214-C8E8-4230-80EE-5C782497DB7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{5D4C55C2-E162-43DE-87A5-9C75400F39A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{57A952ED-4D02-45BB-844A-6999ACEB261B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{83863D5C-4185-4E37-BFAB-E273A99C823E}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{831072C7-BAF4-40F6-AB8B-355336447349}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{02C5D03C-43C3-44F1-B618-0E701264453E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [File not signed]
FirewallRules: [{B8A2F1D7-7346-4C20-94AE-85543B748447}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [File not signed]
FirewallRules: [{2FC008B7-0095-48D9-98CE-C2DBE243E117}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{89CD64DC-A193-486C-BCAA-F104D7AE91BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E406EC9C-DA73-4001-B3B1-21E9173E8D1B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix) [File not signed]
FirewallRules: [{7060C15F-0FB3-4D23-A2BA-1EE85318E1F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix) [File not signed]
FirewallRules: [{B0196ADA-A7D6-4B38-8B9D-94E86AC02BEB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B741A4D3-2B14-45FA-B169-FA9045EE0D7A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7A8704D5-8144-4143-9843-315428EB9380}] => (Allow) LPort=26789
FirewallRules: [{BDC8A98C-0916-4443-B737-C9C20E9F57D0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{28262BED-BD03-4DE6-990A-69F7018CB697}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BB9A13CA-60D6-4655-A876-941DBF37F4B5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{88C14017-64DE-49C0-9AE6-603FC0559430}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9C63D47D-AE5B-4838-9DE6-DEFE30DD8309}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7DCCF1A1-AD84-4D5A-9463-E1DDD045575F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{CC820DDF-6AE5-4FDC-9126-14994E50C538}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FED1ABAA-C194-4B5F-8968-6D6468B022ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{2CF03388-FDBB-408C-BE42-9EFC53A28A8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{535F874C-97E2-415C-8161-37A5FE2DC4B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E70B0BFE-D833-45E5-B0F0-18FDAFDEA36C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{8ED38636-8B59-46F8-9432-8909D0FD5C40}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A8E7259A-8217-48AB-8766-736D214C7C66}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{315E0119-5F94-4572-AF6F-0CECAA976043}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{34831EC6-D16C-421A-9DCC-9E909F248855}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia II\pc\mafia2.exe (Valve Corp. -> 2K Czech) [File not signed]
FirewallRules: [{7B2AE3C6-8AF7-48C0-AD2E-1D0FCE2F1273}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia II\pc\mafia2.exe (Valve Corp. -> 2K Czech) [File not signed]

==================== Restore Points =========================

15-05-2020 14:28:40 Windows Update
21-05-2020 16:35:50 Nainstalováno rozhraní DirectX
26-05-2020 20:29:58 Removed 4K Video Downloader 4.11

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/30/2020 11:14:21 PM) (Source: SetupARService) (EventID: 0) (User: )
Description: Službu nelze spustit. System.NullReferenceException: Odkaz na objekt není nastaven na instanci objektu.
v SetupAfterRebootService.SetupARService.OnStart(String[] args)
v System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (05/30/2020 11:14:02 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (05/30/2020 10:29:31 PM) (Source: SetupARService) (EventID: 0) (User: )
Description: Službu nelze spustit. System.NullReferenceException: Odkaz na objekt není nastaven na instanci objektu.
v SetupAfterRebootService.SetupARService.OnStart(String[] args)
v System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (05/30/2020 10:29:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (05/30/2020 10:29:03 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (05/30/2020 10:29:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (05/30/2020 10:29:03 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (05/30/2020 10:26:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.18362.1, časové razítko: 0x527faf7f
Kód výjimky: 0xc000041d
Posun chyby: 0x00004647
ID chybujícího procesu: 0x2da8
Čas spuštění chybující aplikace: 0x01d636bf1971f354
Cesta k chybující aplikaci: C:\Users\kaPL74\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\Windows\System32\GDI32.dll
ID zprávy: f261576b-84e3-47fd-80e4-6af25b83ee52
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (05/30/2020 11:13:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI_ActiveX_Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/30/2020 11:13:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (05/30/2020 11:13:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Realtek Audio Universal Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (05/30/2020 11:13:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Winstep Xtreme Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/30/2020 11:13:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI Gaming Hotkey Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/30/2020 11:13:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba GamingApp_Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/30/2020 11:13:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Epson Scanner Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/30/2020 11:13:53 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.


CodeIntegrity:
===================================

Date: 2020-05-30 23:16:25.113
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-05-30 23:16:25.083
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-05-30 23:16:22.544
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-05-30 23:16:22.538
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-05-30 23:14:21.613
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-05-30 23:14:21.476
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-05-30 23:14:21.331
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-05-30 22:31:34.253
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F10 12/14/2018
Motherboard: Gigabyte Technology Co., Ltd. B250M-D3H-CF
Processor: Intel(R) Core(TM) i5-7600 CPU @ 3.50GHz
Percentage of memory in use: 10%
Total physical RAM: 32727.99 MB
Available physical RAM: 29448.95 MB
Total Virtual: 37591.99 MB
Available Virtual: 32927.3 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.88 GB) (Free:705.77 GB) NTFS
Drive d: (Místní disk) (Fixed) (Total:931.51 GB) (Free:565.11 GB) NTFS
Drive e: () (Fixed) (Total:930.56 GB) (Free:745.91 GB) NTFS

\\?\Volume{61d92415-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{b5d0499e-b828-4e1c-9bed-e82b27d3d91a}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{61d92415-0000-0000-0000-60c3e8000000}\ () (Fixed) (Total:0.46 GB) (Free:0.03 GB) NTFS
\\?\Volume{14fdb315-38db-40bd-8c62-8f40fe6f7fce}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2EFF3D7B)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 61D92415)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=469 MB) - (Type=27)

==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Prosím o jednu preventivku, Děkuji

Napsal: 04 čer 2020 14:04
od Rudy
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\kaPL74\AppData\Local\Microsoft\OneDrive\19.232.1124.0008_1\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\kaPL74\AppData\Local\Microsoft\OneDrive\19.232.1124.0008_1\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\kaPL74\AppData\Local\Microsoft\OneDrive\19.232.1124.0008_1\amd64\FileSyncShell64.dll => No File
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
FirewallRules: [{17FFFC6A-917A-44F4-A8B5-81900BE80486}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{3F90DC5F-93C2-4BD3-944A-02921D9CD710}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
GroupPolicy: Restriction ? <==== ATTENTION

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Prosím o jednu preventivku, Děkuji

Napsal: 04 čer 2020 17:13
od kodl74
Fix result of Farbar Recovery Scan Tool (x64) Version: 02-06-2020
Ran by kaPL74 (04-06-2020 18:11:04) Run:1
Running from C:\Users\kaPL74\Desktop
Loaded Profiles: kaPL74
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\kaPL74\AppData\Local\Microsoft\OneDrive\19.232.1124.0008_1\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\kaPL74\AppData\Local\Microsoft\OneDrive\19.232.1124.0008_1\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\kaPL74\AppData\Local\Microsoft\OneDrive\19.232.1124.0008_1\amd64\FileSyncShell64.dll => No File
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
FirewallRules: [{17FFFC6A-917A-44F4-A8B5-81900BE80486}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{3F90DC5F-93C2-4BD3-944A-02921D9CD710}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
GroupPolicy: Restriction ? <==== ATTENTION

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => removed successfully
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => removed successfully
HKU\S-1-5-21-3640345311-2590231575-3648685039-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{17FFFC6A-917A-44F4-A8B5-81900BE80486}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3F90DC5F-93C2-4BD3-944A-02921D9CD710}" => removed successfully
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7364608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 1419265897 B
Java, Flash, Steam htmlcache => 439353856 B
Windows/system/drivers => 4807280 B
Edge => 0 B
Chrome => 0 B
Firefox => 1218310370 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 50332 B
NetworkService => 50332 B
kaPL74 => 9687538 B

RecycleBin => 6363080452 B
EmptyTemp: => 8.8 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:11:56 ====

Re: Prosím o jednu preventivku, Děkuji

Napsal: 04 čer 2020 17:54
od Rudy
Smazáno. Log by již měl být OK.

Re: Prosím o jednu preventivku, Děkuji

Napsal: 07 čer 2020 20:12
od kodl74
Děkuji

Re: Prosím o jednu preventivku, Děkuji

Napsal: 07 čer 2020 20:47
od Rudy
Nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz